Add to collection(s) Add to saved
  1. No category

Black, White, Grey Hat Hackers PRIMARY

advertisement

Black, White, Grey Hat

Hackers

Not all hackers are bad…which one’s which?

In your groups…

• Have a chat about what you think the difference is between black, white and grey hat hackers.

Black Hat Hackers

• Black hat hackers/black hats are the type of hacker most often mentioned in the media.

• They break into computers for personal gain (e.g. to steal credit card numbers).

• They break into computers for malicious reasons (e.g. using a botnet they've created to perform DDoS attacks on websites they don't like).

• If they found a zero day, they would sell it to criminal organisations on the black market or use it to compromise computer systems.

Zero Day

• A Zero Day is a weakness in a website that the owners don’t know about yet.

• They can allow black hats to do serious damage.

White hat hackers

• White hat : the opposite of black hat hackers: 'ethical hackers'.

• Experts who use their abilities for good, ethical and legal purposes.

• They break into computers because they have permission to find weaknesses.

• Instead of using their access to steal or vandalise, the white hat reports back to the organisation and helps them improve their defenses

(penetration testing).

• If they found a zero day, they would tell the developer, allowing them to patch their product and improve its security before it's compromised.

• Organisations often pay 'bounties' to white hats for their work.

Grey hat hackers

• Grey hat hackers

• Fall somewhere between a black hat and a white hat.

• Don't work for their own gain or to cause carnage but may technically commit crimes and do arguably unethical things.

• Might attempt to break into a computer system without permission then inform the organisation afterwards, allowing them to fix the problem.

• Grey hats might not use their access for bad purposes but they still compromise cyber security without permission, which is illegal.

• If a grey hat discovered a security flaw, they might try to sell it to the organisation or might disclose it to the public; it's difficult to know.

1) You guess someone’s password for their iCloud account and you purchase some apps using their account details.

4) You discover a vulnerability on your school’s website that allows you to change all your report grades to As. You change your grades.

7) Your friend leaves their email account unlocked and you send an email pretending to be them.

2) You guess your friend’s

Facebook password and sign into their account but you tell them what you’ve done.

5) You find a zero day on

Twitter that allows you to post as someone else and you post the zero day on one of

Twitter’s public forums.

8) Your friend shows you their new facial recognition feature on their phone and you demonstrate how you can use a photo of them to gain access.

3) Your school gives you permission to use your cyber skills to search for weaknesses in the school system. You report back what you find and don’t tell anyone else.

6) You have a bet with your friend that you can hack into their email account and when you do it you immediately log out and tell them.

9) After leaving school, you get a job as a pen tester.

1) You guess someone’s password for their iCloud account and you purchase some apps using their account details.

BLACK

4) You discover a vulnerability on your school’s website that allows you to change all your report grades to As. You change your grades.

7) Your friend leaves their email account unlocked and you send an email pretending to be them.

BLACK

BLACK

2) You guess your friend’s

Facebook password and sign into their account but you tell them what you’ve done.

GREY

5) You find a zero day on

Twitter that allows you to post as someone else and you post it on one of Twitter’s public forums.

GREY

8) Your friend shows you their new facial recognition feature on their phone and you demonstrate how you can use a photo of them to gain access.

GREY

3) Your school gives you permission to use your cyber skills to search for weaknesses in the school system. You report back what you find and don’t tell anyone else.

WHITE

6) You have a bet with your friend that you can hack into their email account and when you do it you immediately log out and tell them.

WHITE

9) After leaving school, you get a job as a pen tester.

WHITE

Related documents
Creating a thinking culture Engaging and challenging our students
Creating a thinking culture Engaging and challenging our students
total quality management
total quality management
vermeer`s hat
vermeer`s hat
You Read to Me, I`ll Read to You choral reading
You Read to Me, I`ll Read to You choral reading
Cold Talk - Rovent 2015
Cold Talk - Rovent 2015
TopHat Introduction
TopHat Introduction
Read, Write Inc Red Words-Set 1
Read, Write Inc Red Words-Set 1
WASSP_Home_files/Six Thinking Hats
WASSP_Home_files/Six Thinking Hats
Fall 2013 - Massasoit Community College
Fall 2013 - Massasoit Community College
Lateral Thinking
Lateral Thinking
File - Mrs. Carr`s Classroom
File - Mrs. Carr`s Classroom
Click to
Click to
Skill 04_ De Bono`s Hats
Skill 04_ De Bono`s Hats
What is Ethical Hacking??
What is Ethical Hacking??
Hacking & Phreaking
Hacking & Phreaking
White hat
White hat
Wonderful Peltex Hats
Wonderful Peltex Hats
Web-Defacement
Web-Defacement
Faded Hats and Scuffed Sneakers: The Ethical Hacker Today
Faded Hats and Scuffed Sneakers: The Ethical Hacker Today
Download
advertisement