What is Hacking?

Hacking is the act of getting unsanctioned access to computer systems and networks, exploiting vulnerabilities in an organization’s systems, software, people, etc.

Vulnerability exploitation may be as simple as using trickery or social engineering to get someone’s credentials to log in as them, using a malware-as-a-service provided by other hackers, or using proof-of-concept code for a vulnerability that is fairly easy to exploit and use and is provided by someone else.

It may also be very technical and require more advanced skills and knowledge of targeted systems. Winners of Pwn2Own – a hacking contest – often chain together multiple vulnerabilities to take over a system or browser. Likewise, the success of targeted phishing attacks and supply chain attacks involves in-depth research of victims and software and months of planning.

Security Checkup 2021 Security Report

What is Hacking

The Evolution of Hacking

Historically, what may have started out as the fun of the challenge or a test of one’s computer savvy or ability to trick the system, has turned into a multi-billion dollar industry where a single bug in a popular device, application, operating system, or system can pay the finder a six-digit dollar figure for their effort.

Today the skills of security hackers are valued by businesses, law enforcement, nation-states, and criminal enterprises alike. We are in a constant state of change where on one side cybersecurity defenses are probed for weaknesses and on the other side countermeasures are developed to combat those hacking techniques and procedures.

Hacking is not all bad or all good. For instance, businesses have created bug bounty programs to pay hackers for vulnerabilities found in their products or services. In a similar fashion white hat hackers offer penetration testing services to businesses to find weaknesses in their security protections so that they can close these open gaps before a black hat hacker finds them.

Complicating the financial aspects of hacking are political motivations and interests of individual hackers. For example, hackers who work for law enforcement or a nation-state likely have interests that align with the goals of these organizations and governments. There is also a hacking culture that promotes free access to software and services. In addition hacktivists (like Anonymous) are groups who have coalesced around common political goals and interests.

The Hacker Threat

Vulnerabilities exist in hardware, software, network, personnel, and even in a physical site. They can also be found in organizational processes where there is a lack of regular auditing or security.

Vulnerabilities can be classified as known and unknown. Ideally, when a vulnerability is found, it is responsibly disclosed to the owner and then fixed and a patch made available before the vulnerability becomes public knowledge.

Known vulnerabilities are entered into a database where a score is available. For instance, the CVSS (Common Vulnerability Scoring System) provides a severity rating that ranks the attack vector (network vs physical access), attack complexity, whether user interaction is required or not, and if the attack requires privileged access.

The impact of a cyberattack is also included in the severity score. This includes the scope (one system vs many), the confidentiality and integrity of the information available as a result of the attack, and, finally, the impact on the availability of the resource (see CVSS User Guide scoring rubrics).

Vulnerability severity scores help users assess their systems and plans for updating them. There is still a window of opportunity for black hat hackers between when the vulnerability is disclosed and users patch their affected systems. Unfortunately, malicious hackers do not responsibly disclose vulnerabilities found, but instead use them until they are discovered.

The success of a hacker depends upon several factors, including:

  • Attack Surface Complexity: An organization’s attack surface is defined by the number of systems they use. This continues to expand as more systems are connected to the Internet, with the rising use of cloud infrastructures and services, and the increasing number of BYOD devices and digitally connected Internet of Things (IoT) thanks to advances in 5G wireless technologies.
  • Available Information: Anonymity and the Internet also work in the hacker’s favor. People freely post information about their family and activities on social networking sites and hackers can buy PII or PHI information from other sources. Often the goal in these attacks is to steal user credentials and then use them to directly access accounts or trick users. Business Email Compromise (BEC), a type of phishing attack, can net a threat actor millions of dollars.

Types of Hacking - Black Hat, White Hat, Grey Hat

Hackers can be classified in a few different ways. One of the most common breakdowns focuses on how and why a hacker operates, including:

  • Black Hat: Black hat hackers perform attacks without permission and for malicious purposes.
  • White Hat: White hat hackers have permission to perform their attacks and attempt to identify and ethically report discovered vulnerabilities.
  • Gray Hat: Gray hat hackers do not have permission for their attacks but typically perform them with the intention of reporting any discovered vulnerabilities to the target organization.

Hackers can also be classified based upon their level of knowledge and underlying motivations. For example, script kiddies are entry-level hackers reliant on tools, while more sophisticated hackers may work for organized crime, nation-states, etc.

How to Prevent Hacking

Cyberattacks can target anyone, including both individuals and organizations. Some simple steps that individuals can take to protect themselves against attack include:

  • Use Mobile and Endpoint Security Solutions: Protect your devices against cyber threats by deploying consumer-focused security solutions.
  • Update Your Software: Exploitation of unpatched vulnerabilities is a common attack vector. Check to verify that your browser and OS have auto-update enabled.
  • Beware of Malicious Links: Do not automatically click on links in emails, SMS messages or QR codes. When in doubt, search for the site and then verify the URL.
  • Protect Your Personal Data: Do not disclose your personal data (payment card data, phone number, etc.) to anyone without verifying their identity.
  • Use Secure Passwords: Never use default or simple passwords that can be easily guessed. Enable multi-factor authentication (MFA) when possible, especially for financial sites and email.

Companies are more likely to be the target of cyberattacks because they are more valuable targets with a wider attack surface. Some key anti-hacking steps for business include:

  • Segmentation: Network segmentation makes it more difficult for attackers to move through your network. Define network segments based on business needs to maximize network security while minimizing the impact on legitimate business operations.
  • Trust but Verify: Many cyberattacks take advantage of excessive permissions and the assumption that users, applications, or systems are “trusted”. Implement zero trust security principles and evaluate requests on a case-by-case basis.
  • Secure IoT: The IoT is exploding, and these devices are notoriously insecure. Securing IoT devices is essential to closing this common attack vector for corporate environments.
  • Enable Security: Security solutions are only useful if they are turned on, monitored, and actively managed. Companies must ensure that their security solutions are fully operational.
  • Have a Plan: View Security as a Process: Security is not a one-time effort. Have a plan for maturing your organization’s security posture over time.

Prevent Hacking with Check Point

Security is a process, and security solutions should be selected to address the cyber threats that organizations and individuals are most likely to face. Learn more about the current cyber threat landscape in Check Point’s 2021 Cyber Security Report.

Check Point also offers solutions for organizations looking to understand their vulnerability to cyber threats. Take the free Security CheckUp for a comprehensive vulnerability analysis and then assess the vulnerability of your remote workforce to cyber threats.

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK