301-571-5040    Get SUPPORT

Washington Works Blog

Tech Term: Hacker

Tech Term: Hacker

The term “hacker” is possibly one of the best-known technology-related terms there is, thanks to popular culture. Properties like The Girl with the Dragon Tattoo and the Die Hard franchise have given the layman a distinct impression of what a hacker is. Unfortunately, this impression isn’t always accurate. Here, we’ll discuss what real-life hackers are like, and the different varieties there are.

Defining Hackers
In broad terms, a hacker is an individual that uses their computing and programming skills, sometimes cooperatively with others like them, to identify and exploit gaps in the protocols that protect computer systems. Their actions after that point can be used to classify them further.

There are three main classifications, with subtypes to specify different types of hackers more specifically.

The Types of Hackers
Black Hat
Black hat hackers are the first kind that you probably think about, as they are the bad guys of the hacking spectrum. They are the ones who use their computer skills to entrap their victims and steal information for their own benefit, largely contributing to the public perception of hackers as a whole. If someone is a black hat hacker, their work is motivated by personal gains, tends to take effect at the expense of others, and is illegal.

White Hat
White hat hackers fall on the opposite side of the hacking spectrum, electing to use their skills to help businesses and other organizations keep their IT systems secure by seeking out weak points and vulnerabilities so that steps can be taken to fix these problems. White hat hackers also only operate by request - they will not hack your systems unless you ask them to try. In a way, if Washington Works were to run a penetration test on your business, we would be operating as white hat hackers.

Gray Hat
As their name would suggest, gray hat hackers are a combination of black hat and white hat. While they avoid being classified as black hat by not personally profiting from a hack, they also aren’t white hat, as their hacks aren’t done with the permission (or knowledge) of their target. The vulnerabilities they find will sometimes be reported to the hacked organization or distributed online for others to take advantage of.

Hacker Subtypes
Script Kiddies
These are the amateurs, the hackers that rely on pre-written code to launch basic attacks on their targets. Their motivation is often to attract attention or to impress others, with no appreciation for why the codes they leverage work and no desire to learn.

Blue Hat
Similar to a script kiddie, a blue hat hacker is an amateur who uses the code written by others to lash out against those who have wronged them in their eyes. Again, like a script kiddie, a blue hat hacker has no desire to learn how hacking works, they just want to use it as a means to a vengeful end.

Red Hat
A red hat hacker is a hacker that targets other hackers. Rather than reporting a discovered attack, as a white hat hacker would, a red hat hacker will instead attack back. With the goal of preventing black hat hackers from being able to hack, red hats will use cyberattacks and malware to take them out of commission.

Green Hat
The greenhorns of the hacking world, green hats are script kiddies who actually want to learn and improve. Always ready to ask questions of more experienced hackers and to learn all they can, green hat hackers are the ones who grow to be more skilled in the future.

State-Sponsored
These hackers are employed by a governing body to serve the state, stealing valuable information and targeting the enemies of a nation. These hackers have been known to strike out against key individuals and companies, as well as the opposing nation as a whole. Their status as a government agent provides them with considerable support and resources.

Hacktivist
Again, acting either as an individual or as a part of a group, hacktivists leverage their abilities to act upon a deeply-held conviction. By putting their skills to use, hacktivists are able to damage entities who hold beliefs counter to their own, whether that entity is a business or a governing body. As one might image, their driving motivation is to encourage (or “encourage”) social change.

Whistleblower/Malicious Insider
Instead of relying on hacking skills or borrowed codes, these hackers are those that use their status as an employee to gain access to a company’s confidential, invaluable data. Some act to appease a grudge they have fostered against their employer, while others are moles for one of the company’s rivals. Either way, these hackers are some of the most dangerous to the company, as their threats are the ones that usually aren’t seen coming.

Hackers Switching Hats
Complicating matters somewhat, a hacker’s hat isn’t forever. Many hackers have moved from the realm of black hat to gray. Samy Kamkar gained enough notoriety to earn a lifetime ban from the Internet after crashing MySpace with a worm at the tender age of 19 in 2005. However, his sentence was lifted after three years of good behavior. Today, Kamkar wears a gray hat, identifying vulnerabilities independently and reporting them to those who need to know.

However, the opposite case is equally possible, and shows that these considerations can be complicated. For example, In May 2017, Marcus Hutchins (AKA “MalwareTech”) was responsible for putting a stop to WannaCry but was arrested in August 2017 for allegedly writing and distributing the Kronos banking Trojan, potentially trading a white hat for a gray hat.

There are others, too. MIT professor Robert Morris created the first ever computer worm during his graduate studies at Cornell University, and was the first to be convicted under the Computer Fraud and Abuse Act as a result. A one-time member of the LulzSec Group that hacked the CIA and Sony, Mustafa Al-Bassam now works as a security adviser.

At the end of the day, hackers are more than just a black and white topic, and the lines get more and more blurred every day. What do you think? Is “hacker” a pejorative term, or is it more complicated than just that? Share your thoughts in the comments!

Smaller Practices are Choosing Cloud-Based EHR
Here Are Some VoIP Features That May Surprise You
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Monday, January 21 2019
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Security Tip of the Week Technology Best Practices Business Computing Cloud Privacy Malware Hackers Productivity Business Network Security Email Software Tech Term Hosted Solutions Internet Mobile Devices Computer Data Data Backup Ransomware Managed IT Services Backup Google IT Support Microsoft Data Recovery User Tips Hardware Productivity Efficiency Innovation Cloud Computing Outsourced IT IT Services Smartphone Small Business Managed Service Provider Social Media Business Management Paperless Office Business Continuity Android Workplace Tips Encryption Windows 10 Smartphones Save Money Windows 10 Remote Monitoring Collaboration Communication Managed IT Services Browser Office 365 Data Management Employer-Employee Relationship Holiday Server Disaster Recovery Bandwidth Government Healthcare BYOD Infrastructure Tip of the week App VoIP Cybersecurity Wi-Fi Antivirus Work/Life Balance Scam Facebook Passwords Vulnerability IT Management BDR Unified Threat Management Phishing Internet of Things Communications Artificial Intelligence Hosted Solution Network Windows Office Mobile Device Password Two-factor Authentication Money Chromebook Virtual Reality Apps Politics Risk Management Applications How To Maintenance Customer Relationship Management File Sharing Quick Tips Word Big Data Document Management SaaS Managed Service Compliance Blockchain Upgrade Chrome Information Saving Money Automobile Gmail Wireless Robot Machine Learning Regulations IoT Identity Theft Storage Mobile Device Management Social Recovery Point of Sale Remote Computing Patch Management Telephone Systems G Suite Vendor Management Access Control HIPAA Private Cloud Computer Care Data loss Tech Support Firewall Automation Taxes Mobile Security Downtime Bring Your Own Device How To Hacker Smart Technology Microsoft Office Alert Training VPN Remote Monitoring and Management Websites Employees Health Data Security Server Management Business Technology Remote Workers Router Company Culture Website Samsung Virtual Private Network Meetings Physical Security Twitter Botnet Electronic Medical Records Computing Managed IT Service Cabling Modem Managing Stress Help Desk User Error Digital Mail Merge Fleet Tracking Operating System Update Webcam Electronic Health Records Education Computing Infrastructure WannaCry Value Shortcut Backup and Disaster Recovery Spam Legal Specifications VoIP Techology Gadget Permissions Hard Disk Drive Bluetooth Security Cameras High-Speed Internet Finance Google Calendar Firefox Superfish Professional Services Monitoring Break Fix Cookies Enterprise Content Management Bookmarks Notifications WiFi Printer Wearable Technology Spyware Address Asset Tracking Tech Terms Avoiding Downtime Management Cyberattacks IT Solutions Relocation Cleaning Alerts Monitors MSP Human Error Sports Travel Black Friday Social Networking Virtualization Fraud Star Wars Printing Development Authentication Computer Repair Supercomputer Legislation Chatbots USB Consulting Dark Web Disaster Nanotechnology Heating/Cooling Unified Communications Favorites Augmented Reality GPS OneNote Theft Cyber Monday Motherboard Time Management Enterprise Resource Planning Files Upgrades Processors Licensing Proactive Permission Search Motion Sickness Managed Services Provider Cost Management Remote Worker Cables Authorization IBM IT Budget Mouse Identity Networking Dongle Web Server Microsoft Excel Uninterrupted Power Supply Screen Reader Servers Project Management The Internet of Things Office Tips Tracking SharePoint Employee-Employer Relationship Network Management Mobile Read Only Error Cooperation YouTube Gadgets Test Budget Service Level Agreement E-Commerce Cortana Black Market IT Consultant Hotspot Assessment Managed IT ROI Wires Digital Payment Tablet Cameras Smart Tech Financial Vulnerabilities Conferencing Crowdsourcing Downloads IT Technicians Analytics Emoji Distributed Denial of Service IT Support Touchscreen Staffing Unified Threat Management Staff Settings WPA3 Users RMM Utility Computing Features Language Corporate Profile Internet Exlporer Outlook Zero-Day Threat Customer Service Cybercrime Comparison Google Drive Law Enforcement CCTV Solid State Drive Connectivity Statistics Procurement Geography Instant Messaging Personal Information Administrator Multi-Factor Security Mirgation Lenovo Domains Regulation Fun Public Speaking Presentation Lithium-ion battery CrashOverride Hard Drives Wireless Technology 5G Safety Emergency Marketing Competition IP Address Printers Miscellaneous Notes Mobile Office Hiring/Firing