ETHICAL HACKING Daniel Cloherty CAN HACKING BE ETHICAL? What makes - PowerPoint PPT Presentation

ETHICAL HACKING Daniel Cloherty

CAN HACKING BE ETHICAL? • What makes hacking ethical? • Legality VS Ethics • State Sanctioned hacking

BLACK HAT - Stereotypical ‘Hacker’ -Stealing data for personal gain -Obviously not ethical -Using others as a means to and end

WHITE HAT -Umbrella term for a variety of ethical hacking -Security Researchers, Penetration testers -Red Teams, Tiger Teams

SECURITY RESEARCH - Research into a variety of different computer vulnerabilities. - Attempting to bring vulnerabilities to light. - File CVE reports

PENETRATION TESTING -Explicit permission to conduct an attack on device. -Used to find possible vulnerabilities.

BUG BOUNTIES https://insights.dice.com/2019/03/12/bug-bounty-teen-millionaire- https://blog.cobalt.io/the-history-of-bug-bounty-programs-50def4dcaab3 hacker/

LEGALITY VS ETHICS - People prosecuted for ‘crimes’ that are ethically sound. - Some laws make it hard to illegal to do security research https://www.wired.com/story/wannacry- malwaretech-arrest/ https://nationalpost.com/news/politics/a-nova-scotia-teen-found-a-big- security-hole-on-a-government-server-should-he-be-jailed-or-rewarded

COMPUTER FRAUD AND ABUSE ACT -Current laws have come under some criticism as being oppressive. -Makes parts of security research illegal even without intent.

STUXNET - Ethics of state sanctioned hacking