HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 30 guests online
 
Advertisement

You are here: Home arrow EH-Netarrow Ethical Hacktivismarrow What is the role of grey hat hacktivism groups in the security world?
EH-Net
May 22, 2013, 05:00:38 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: What is the role of grey hat hacktivism groups in the security world?  (Read 5725 times)
0 Members and 1 Guest are viewing this topic.
jsm725
Newbie
*
Offline Offline

Posts: 36



View Profile
« on: June 15, 2011, 12:46:29 PM »
With groups like Wiki-leaks, Anonymous and LulzSec popping up in the news almost everyday, I wanted to get a feel from the ethical hacking community on what we see as their role. Do they help? Do they hurt?

On one hand they help me sell work. My clients see this stuff on the news and might decide to get serious about stuff I have been pitching. They are forcing companies to deal with security issues.

On the other hand, what they are doing is illegal and might make people who don't understand the nuances between white, grey and black hat hacking turn against us altogether. If I start getting FBI agents knocking on my lab door because I am running a legitimate external scans on a range of client IP's, my prices are going up.

What do you think eh-net?
Logged
CISSP, PCI-QSA, OSWP
AndyB
Full Member
***
Offline Offline

Posts: 100



View Profile
« Reply #1 on: June 15, 2011, 02:11:00 PM »
Too many of the companies out there seem to be playing loose with security and our data.  Ok, the software they are using in most cases is flawed but there's no reason not to have a robust patching and security policy in place to minimize the risks.

I give regular briefs to the users in the company I work for (as an information manager) stressing about the need for data protection, good password policy and the rest of the good stuff that they should do.  I've had a user come up to me after one brief and ask if it was possible to bypass/remove the encryption on his works laptop as it made it 'run slower'!!

All the high profile hacks going on at the moment and things like the bigger fines that the Information Commissioner is slapping on data protection breaches in the UK is giving me good ammo when I go out and preach to the unwashed masses
Logged
Net+ Sec+ More to come
cd1zz
Hero Member
*****
Offline Offline

Posts: 561


View Profile WWW
« Reply #2 on: June 15, 2011, 03:17:40 PM »
While I don't condone their activities, I think it's great for business like you said above. It is hard enough to get people to pay attention to security but with major headlines, your clients begin to listen. I find it highly entertaining as well to watch this stuff unfold.
Logged
OSCE | OSCP | GXPN | OSWP | CISSP
http://www.pwnag3.com
http://www.networkadminsecrets.com
jsm725
Newbie
*
Offline Offline

Posts: 36



View Profile
« Reply #3 on: June 15, 2011, 04:34:14 PM »
*disclaimer* Although the attacks are illegal and break the "ethical grey hat" rules of no disclosure.../*disclaimer*

When you preach this is an imminent risk, you need to be prepared, for God's sake please listen to me and then those risks are realized, it does make you feel a little better.
Logged
CISSP, PCI-QSA, OSWP
jsm725
Newbie
*
Offline Offline

Posts: 36



View Profile
« Reply #4 on: June 15, 2011, 08:13:35 PM »
Another thing to consider...will these type of attacks tilt public opinion to favor a governmental crack down on our currently unregulated and uncensored open internet?
Logged
CISSP, PCI-QSA, OSWP
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.091 seconds with 23 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Free Business and Tech Magazines and eBooks

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.