Hackers, crackers, and script kiddies are the leading causes of security breaches in companies and schools. They are the biggest threat to security professionals because they have the time, knowledge, and patience to write attack programs that can steal information from a computer. This group has a couple of items in common: they steal information for profit or intellectual property, disrupt business functions, or break into a program just out of boredom. But their experience is what makes each group different. Experience plays a major role in the hacker community. The more experience one has the more sophisticated the attacks become; less experience results in more frequent attacks but not as damaging. The most common method of attack is through malicious code embedded in an e-mail/attachment, downloads of free programs, or opening a pop-up. Using preventive measures allows users to protect themselves from unknowingly providing information through new programs being installed, pop-ups, or things that cause the computer to act strange.
A cracker is someone who intentionally breaches computer security mechanisms (firewall, anti-virus, etc) targeting weak points in computer systems or networks for the purpose of making money, gaining recognition with a certain group, or because the challenge is present. Their goal is to find and exploit these weak points and share the information with others via the internet. The weak points can give crackers the ability to steal information, disrupt business functions, and create malicious programs to capture information (user ids, passwords, names, social security #’s, bank account #’s, etc.).
A Script kiddie is a who uses scripts or programs created by others, to attack computer systems. They may have some programming skills, but they require more experience and knowledge that only a more sophisticated hacker has. Their goal is to impress others, receive recognition, and take credit for crashing or gaining access to other systems. The internet provides script kiddies with websites that teach them to hack into other computers. These websites allow the user to download malicious programs, show what needs to be corrected in their code, provide examples of hacked code and additional features to have their code run faster/more efficient.How do you know you are being attacked? Signs that you are being hacked are: new programs installed on your computer without your knowledge, a computer that constantly reboots, a computer that exhibits strange behavior, etc. Some basic security prevention tips are: turn on the firewall, set your operating system and anti-virus to automatically update, set your pop-up setting to med-high/high, don’t click on any pop-up ads (when on the internet), don’t open any e-mails from anyone you do not know, delete your browsing history. Users that have limited knowledge about computers may be unaware if they were hacked.
Besides the problems to the user, the company that makes the operating system, program, or website is forced to release a patch correcting the vulnerability. Releasing a patch immediately can cause additional problems: additional bugs could have been created within the patch, different areas of the operating system, program, or website could become vulnerable, the original issues could only be partially resolved, etc.Hackers, crackers, and script kiddies can cause chaos if they succeed in breaking into a system. Using preventive measures can prevent the chaos from occurring, and it can also educate the user in how to secure their stored information. Remember to protect your passwords, account information, or any additional identifiable information (name, address, and phone numbers) by not storing this information in a file on the computer. If the computer is hacked then all that information can be found and used against you.