1.4 Cyber Attackers

1.4.1 Types of Attackers

Attackers exploit vulnerabilities for personal or financial gain. They are categorized into white hat, gray hat, and black hat attackers.

• Amateurs (Script Kiddies): Inexperienced hackers who use existing tools to launch attacks, sometimes for fun or to cause harm.
• Hackers:
  • White Hat: Ethical hackers who identify security flaws with permission.
  • Gray Hat: Hackers who find vulnerabilities but disclose them only when it aligns with their agenda.
  • Black Hat: Criminal hackers exploiting vulnerabilities for illegal gain.
• Organized Hackers: Groups such as cybercriminals, hacktivists, terrorists, and state-sponsored attackers.
  • Hacktivists: Use hacking for political or social statements.
  • State-Sponsored Attackers: Gather intelligence or conduct cyber sabotage for governments.

1.4.2 What Color Is My Hat?

• Gray Hat: An attacker hacks ATM systems, then works with manufacturers to fix security flaws.
• Black Hat: A hacker transfers $10 million using stolen customer credentials.
• White Hat: A cybersecurity expert identifies weaknesses in a company’s system.
• Black Hat: A hacker uses malware to steal and sell credit card information.
• White Hat: A researcher discovers a security flaw in an authorized network.

1.4.3 Internal and External Threats

Cyber attacks originate from both inside and outside an organization.

• Internal Threats: Employees, contractors, or partners can:
  • Mishandle confidential data.
  • Introduce malware through infected USB devices.
  • Click on malicious emails or links, leading to cyber intrusions.
  • Disrupt internal servers or network infrastructure.
• External Threats: Skilled attackers outside the organization can:
  • Exploit vulnerabilities in the network.
  • Gain unauthorized access to systems.
  • Use social engineering to manipulate employees into revealing sensitive information.