Contact us today!

FRS Pros Blog

Getting to Know Technology: Hackers

Getting to Know Technology: Hackers

It doesn’t matter how much of a technology novice someone is, chances are, they’ve heard the term “hacker” before. A favorite character trope of Hollywood films and television dramas, these cybercriminals have appeared in productions like Die Hard and Mr. Robot with varying degrees of accuracy. Below, we explore what makes a hacker, and the kinds that exist in reality.

What Makes a Hacker?
A hacker is an individual or group that, using their programming skills, finds a way into systems by identifying and exploiting gaps in the security protocols protecting them. That said, should we always be afraid of them?

There are three overarching delineations that a hacker can fall into, as well as different subtypes that they could be classified into, based on their motives and modus operandi.

The Three Main Types
Black Hat
These are the hackers that most likely first pop into your mind. Using their skills to steal the information they want from their victims or to manipulate their victims into paying them, black hat hackers are the criminals that give the term “hacking” the reputation it has today. Their work is for their own personal gain, illegal, and usually results in the harm of others.

White Hat
On the side of the angels, you’ll find white hat hackers. These hackers use their skills to assist businesses and other entities in identifying weak points and vulnerabilities in their IT systems so that these weaknesses can be resolved. In fact, if we were to run a penetration test on your business, we would be acting as white hat hackers. A white hat hacker works for your benefit, and exclusively at your request - they do not hack into systems unless it is requested of them.

Gray Hat
As one might imagine based on their name, gray hat hackers are those hackers who are a little white hat and a little black hat. They aren’t quite black hat, because they aren’t personally profiting from the hack, but they aren’t quite white hat either, because they are hacking without the target’s consent or knowledge. Some grey hat hackers will inform an organization of their vulnerability, while others will enable others to leverage it by leaking it over the Internet.

Additional Subtypes
Script Kiddies
Script kiddies are very amateur hackers, in that they don’t care to learn how or why the codes they use work. Instead, they leverage the code that has been written by others to launch basic attacks, often to draw attention to themselves or to impress their peers.

Blue Hat
A blue hat hacker can be summed up as a script kiddie with an axe to grind. Rather than trying to impress others by launching basic cyberattacks, blue hat hackers are out for revenge against those who have angered them. Again, these hackers don’t want to learn how to actually hack, they simply want to strike back.

Green Hat
Another variation of script kiddie, green hat hackers are the field’s equivalent of a greenhorn - new and inexperienced, but ready to learn. Green hat hackers are those that grow and become better over time and are known to ask a lot of questions among hacking communities.

Red Hat
These hackers are effectively the vigilantes of the hacking world, striving toward a similar goal as a white hat hacker would but taking a much different approach. Rather than reporting an attack, a red hat hacker will go on the counteroffensive and give their black hat target a taste of their own medicine. Using cyberattacks and malware as their tools of choice, a red hat hacker aims to hamstring their target’s computing ability.

These hackers are those that are employed by a government body to obtain information that is valuable to the state. They have been known to attack entire nations, key individuals, and companies. Thanks to their government affiliation, they have considerable resources available to them.

Hacktivists and hacktivist groups use their hacking skills to spread their message, creating trouble for businesses, government bodies, and other entities that don’t share their beliefs. These online activists are committed to creating social change, whomever they have to hack to do it.

Whistleblower/Malicious Insider
These hackers are those that may not require any advanced hacking skills at all, instead relying on their position within the targeted company to steal trade secrets. Whether they are acting on the behalf of a rival company, or they have simply developed a grudge, these are employees who are seeking out the worst for your organization.

Changing Hats
Of course, hackers don’t always keep to one hat. There are a few examples of those who have moved from black hat to gray, one of which being Samy Kamkar. After hacking (and crashing) MySpace with the fastest-spreading worm to date at age 19 (in 2005), he was arrested and ultimately given a lifetime ban from the Internet. After three years of good behavior, his sentence was lifted, and Kamkar now works as a gray hat hacker, independently finding vulnerabilities and reporting them.

On the other hand (and providing an example of how convoluted these issues can get), Marcus “MalwareTech” Hutchins was praised in May of 2017 for effectively stopping the WannaCry attack but was later arrested in August of 2017 for allegedly writing and distributing the banking Trojan known as Kronos. While Hutchins was clearly working as a white hat hacker during his work on WannaCry, it is entirely possible he was acting as a gray hat hacker to create Kronos for someone else to use.

There are more examples as well: Professor Robert Morris of MIT became the first person ever convicted under the Computer Fraud and Abuse Act after creating the first computer worm during his graduate studies at Cornell. Mustafa Al-Bassam is now a security adviser, but was once part of the LulzSec group that hacked Sony and the CIA.

In short, there are many different kinds of hacker, and the lines between them can be pretty easily blurred. What other technology topics would you like to know more about? Let us know in the comments!

Help! My Staff Hates My Company’s IT!
Why Should Your Vendors Decide What’s Right for Yo...


No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Tuesday, May 21 2019

Captcha Image

Mobile? Grab this Article!


Tag Cloud

Tip of the Week Security Technology Best Practices Privacy Internet Network Security Business Computing Google Productivity User Tips Cloud Business Management Microsoft Tech Term Hackers Innovation Hardware Software Mobile Devices Efficiency Malware Computer Windows 10 Hosted Solutions Browser Data Backup Smartphone Data Recovery Cybersecurity Smartphones Office 365 Windows IT Services Data Internet of Things Android Backup Data Security Email IT Support Outsourced IT Apps Communication Cybercrime Upgrade Communications Network Business Continuity Disaster Recovery Workplace Tips Operating System VoIP Server Users Gadgets Mobile Device Management Vulnerability Small Business Business Money Saving Money Phishing Alert Law Enforcement Ransomware Managed IT Services Employer-Employee Relationship Cloud Computing Spam Best Practice Applications Wireless Microsoft Office Chrome Automation Collaboration Artificial Intelligence Information Managed IT Services Passwords Virtualization IT Support Miscellaneous Social Media Unsupported Software Telephone Systems Facebook Router App Health Tech Support Blockchain Google Drive Two-factor Authentication Holiday OneNote Windows 10 Bring Your Own Device Save Money Networking Computers Information Technology Word Managed Service Provider Managed IT IT Management BDR Data Management Cost Management VPN iPhone Devices Augmented Reality WannaCry Productivity Data Breach Commerce Business Technology Sports Quick Tips Travel Application Telephony File Sharing Hosted Solution Excel Encryption Fraud Proactive IT Avoiding Downtime Mobility Password SaaS Search Safety Evernote Touchscreen Data Storage User Error Risk Management Access Control WiFi Managed Service Hacking Printing Gmail Mobile Device Cortana Government Mobile Security Audit Wi-Fi Google Assistant Conferencing Meetings Robot Update Data Protection Politics Hybrid Cloud Budget Shortcut Google Docs Project Management Wireless Technology Patch Management Wireless Charging The Internet of Things Scam Value Wasting Time Gifts Computing Medical IT Administrator Windows Ink Hard Disk Drive Data Privacy Windows 7 Lithium-ion battery Comparison Reputation Paperless Office Amazon Downtime Streaming Media Licensing Updates Marketing BYOD Education Microsoft Excel IT budget History Samsung Gamification Keyboard Shortcuts Outlook Data storage IT Solutions Accessory Credit Cards App store Remote Computing Software as a Service 5G Access Google Maps Spyware Hard Drive Display Specifications Virus Legal Virtual Assistant E-Commerce Chromecast Microsoft Word Webinar Antivirus Memory Human Resources Consultant Settings Testing Computer Forensics Peripheral Remote Monitoring Bandwidth YouTube Internet Exlporer Apple Battery Chromebook Co-Managed Services Sales Proactive Transportation Alexa for Business Payment Cards Tablets Maintenance IT solutions Laptop Uninterrupted Power Supply Storage Social Engineering Private Cloud Financial Payroll Sync Hacker Camera Edge iOS WIndows Server 2008 Management FAQ Emergency Employees Touchpad Point of Sale Telephone Retail Websites Going Green Social Employee NFL eWaste Windows 10s HBO Projects Identities Computer Care Nanotechnology Sabotage Entertainment Security Cameras Screen Mirroring Data Loss Ciminal Identity Theft PowerPoint Admin Files Charger Unified Threat Management Vendor OneDrive DDoS Humor Office Hyperlink Disaster Data Theft Break/Fix Recovery Device Security Solid State Drive Identity Legislation Language Root Cause Analysis PC Machine Learning Adobe Workers Emails Cast Computer Fan Personal Information Vendor Management Wireless Internet Saving Time Upgrades Employee-Employer Relationship Voice over Internet Protocol How To Books Regulation Video Games Experience PDF Hiring/Firing Thank You Mobile Computing Work/Life Balance Virtual Reality Crowdsourcing Employer Employee Relationship Twitter Cache Current Events Electronic Medical Records Phone System Text Messaging Benefits Congratulations Training Monitors es Save Time Computer Accessories Smart Technology Television CrashOverride Flexibility Music Office tips Company Culture Advertising Instant Messaging Scalability Analytics Keyboard HaaS End of Support Black Market Cleaning Automobile Relocation Big Data Compliance Printers Managing Stress USB Worker