CISSP certification: Who is attacking data (hackers)?

Post author:Thor Pedersen
Post published:September 23, 2017
Post category:CISSP Certification / CISSP, CISM, CISA, and PMP BLOG / IT security / Updates

Hackers:
- Now: Anyone trying to get access to or disrupt any leg of the CIA Triad (Confidentiality, Integrity, Availability).
- Original use:
  - Someone using something in a way not intended.
- White Hat hackers:
  - Professional Pen Testers trying to find flaws so we can fix it (Ethical Hackers).
- Black Hat hackers:
  - Malicious hackers, trying to find flaws to exploit them (Crackers – they crack the code).
- Gray/Grey Hat hackers:
  - They are somewhere between the white and black hats, they go looking for vulnerable code, systems or products.
  - They often just publicize the vulnerability (which can lead to black hats using it before a patch is developed).
  - Gray hats sometimes also approach the company with the vulnerability and ask them to fix it and if nothing happens they publish.
- Script Kiddies:
  - They have little or no coding knowledge, but many sophisticated hacking tools are available and easy to use.
  - They pose a very real threat. They are just as dangerous as skilled hackers; they often have no clue what they are doing.

Tags: (ISC)², CISSP, CISSP CBK, CISSP Certification, CISSP class, CISSP domains, CISSP Practice questions, CISSP Salary, CISSP study, CISSP training

Thor Pedersen

IT, information security, and project management trainer Best selling CISSP. CISM, and PMP instructor on Udemy. CISSP, CISM, C|EH, CDPSE, PMP, 2x CCNP, CompTIA Security+, SCP, 3x CCNA, et. Al.

CISSP certification: Who is attacking data (hackers)?

Thor Pedersen

You Might Also Like

Cybersecurity Tech Accord

Thor’s courses improvement feedback!

IT Security – from UpGuard “The RNC Files: Inside the Largest US Voter Data Leak, 198 million voters personal information exposed.”