New terminology is constantly cropping up in the technology arena. Lucky for you, the Internet Savant is here to help you impress your colleagues at the water cooler with the latest techno babble. This month, we'll demystify the ethical differences between hackers and crackers, and we'll take a look at the seedy side of things by exploring the associated terminological hierarchy.
Initially, the word hacker was used to describe a law-abiding person who lives and who breathes computers, who knows all about computers, and who can get a computer to do anything—basically, a computer geek. But nowadays, the media's consistent use of the term has caused nearly everyone to use it to describe computer criminals. The original "real" hackers (old-fashioned computer gurus) refer to criminals who cause harm to computers, release viruses, etc., as crackers. These old-timers (who are often only old in computer years), the real hackers, are upset by the misuse of the term.
"Real hackers mostly think crackers are lazy, irresponsible, and not very bright, and object that being able to break security doesn't make you a hacker any more than being able to hotwire cars makes you an automotive engineer." E.S. Raymond (one of the core developers of Linux)
Unfortunately for this maligned breed of computer gurus, it looks as though the more common use of the word hacker is now so ingrained in society that it's replacement of the original meaning of the term has become permanent. However, if you start to dig deep into their culture, the difference between hackers and crackers can be important to know and acknowledge. (You may want to ask an old hacker some advice, but be wary of someone who's labeled a cracker.)
Kevin Mitnik is perhaps the most notorious self-described hacker ever captured. Yet according to Carolyn Meinel, the creator of the Happy Hacker Web site (www.happyhacker.org), he also was famous for "begging people to compile exploit programs for him. He never learned how to program, he just learned to beg other people for point and click exploit programs." (Exploit programs are programs that are used to break into computer systems.)
Once you peer into the dark underbelly of the computer criminal world, you'll find a whole subcategory of terms being used. Computer criminals are labeled according to the specialized targets they pursue and the different methods they use to achieve their goals, as well as their experience level. (We've been pulled into the current along with everyone else, and so we'll refer to illegal or intentional disruptive computer activity as hacking in the following descriptions.)
Carders. Specialize in stealing and selling credit card information from the Internet.
Phreakers. Use knowledge of the telephone system to make calls at the expense of another person.
Phrackers. Combine phone and computer hacking.
Crashers. Enjoy breaking into computers and destroying them.
Cypherpunks. Attempt to break codes and foil security systems.
Samurai. Pry into corporate, political, and legal negotiations (often hired by lawyers pursuing privacy-rights and First Amendment cases).
Sneakers. Break into places with high-tech gadgetry in order to test security measures (a group of sneakers are sometimes called a Tiger Team).
Script Kiddies. Novice crackers with limited technical expertise who use simple scripts, programs, and automated tools authored by others to create mischief (the security community is generally familiar with their predictable exploits and so the damage caused by their actions is minimal).
Lamers. Scam codes off of others, never contribute original code, annoy the criminal elite, and don't really understanding the fundamental concepts.
Uberhackers. Highly technical, very skilled hackers who design and employ advanced techniques for getting into systems
Hackers and crackers are also often categorized according to their beliefs and motivation. For example, a hacktevist is an individual who combines hacking with political activities, and similarly, a cyberterrorist is someone who disrupts computer networks for either political or religious reasons.
Finally, hackers can be divided by what "hats" they wear. A white hat professes to be a "good guy" (although how they define what it means to be a good guy is open to interpretation). A black hat is usually understood to be a "bad guy," which usually means a lawbreaker (people other than the black hats themselves usually bestow the black hat appellation). A grey hat is someone who falls in between, because he doesn't meet the arbitrarily high white hat ideals. So, the next time you're approached by a self-professed hacker, find out if he's really a cracker and take notice of the color of his hat.
Hackers are people too! We, at SafePatrol Solutions, can protect you from all "species" of hackers. Only professionals can deliver truly effective security solutions. SafePatrol Solutions experts are PhDs in Computer Science and Certified Information System Security Professionals (CISSP).
Our people have years of hands-on experience and a deep knowledge of information protection and defense. We leverage the latest security research, technologies and products.
Enjoy surfing our Internet web site and do not be afraid of hackers anymore!