How Cybersecurity Benefits from Hackers

Uploaded on 2017-06-14 in FREE TO VIEW, NEWS-Cybersecurity News, TECHNOLOGY--Hackers

With the number of cyber-crimes climbing every day, and the costs of each cyber-attack higher than the last, the word “hacker” has come to carry a very negative connotation. 

Business owners who are afraid of litigation cringe when they hear the word. Private individuals who are worried their identities will be stolen, or who have already had their identities stolen before, get sick to their stomach at the thought.

While it’s true that cyber-crime damages everyone involved, there are at least a few ways cybersecurity can benefit from the existence of hackers. That’s not to say that there is anything good or proper about stealing people’s data; however, there are at least a few silver linings to the cloud that is cyber-crime.

Exposes vulnerabilities that need to be shored up

Let’s make one thing clear from the start: when a company is hit by a cyber-attack, it’s awful for them. It throws their entire company into disarray, often corrupting entire databases or even throwing the company’s continued use of a digital business platform into question. But when a cyber-attack hits, particularly when it strikes a company that’s in the public eye, the event presents cyber security professionals with a valuable opportunity.

When cyber criminals finally make a move on a company, they show their hand. The event boosts public awareness, often leading other companies to increase their own cyber security issues. 

Meanwhile, cyber security professionals are able to take a look at the pathways the hackers used to enter the victim’s network. With the vulnerabilities exposed, they can work to close those vulnerabilities, removing them as a potential entry point and improving security for everyone else. Much like the way the human body responds to an infection, the cyber security community produces defenses to prevent similar infections in the future.

This is one of the reasons it’s so important for businesses to keep their security software updated regularly. As security firms find ways to defend against new types of attacks, they will release patches and updates to their security products. When businesses update their security software, they benefit from the new protections.

White Hat Hackers

While most people picture all hackers as criminals in dark rooms doing whatever they can to break into company networks and steal data, not all hackers are actually criminals. Sometimes, organisations will actually hire a hacker that they have vetted ahead of time.

These “white hat” hackers will attempt to break into the company’s network in order to find vulnerabilities before less scrupulous hackers find and exploit them. They point these vulnerabilities out to the companies that hired them, and the organisation goes to work fixing those vulnerabilities. By having someone they trust try to break in, companies can find the gaps in their security without risking any actual data loss. 

While these white hat hackers use the same methods as those of the black hat variety, the motives of the two groups are very different.

Huge companies like Google, Facebook, and even Microsoft offer “bug bounties,” large rewards to be paid to hackers who find serious vulnerabilities in their software platforms. With these vulnerabilities brought to light, the companies can then focus their data loss prevention efforts into shoring up their software’s defenses before cyber criminals are able to exploit the revealed weaknesses.

Open-Source Projects

To put it simply, many of those who identify themselves as “hackers” are very talented programmers. The creators of some of the most well-known software are self-proclaimed hackers. Among these hackers-turned-programmers are Mark Zuckerburg, founder of Facebook; Linus Torvalds, the creator of Linux; and Tim Berners-Lee, one of the driving forces behind the creation of the World Wide Web.

Often, these programmers will seek a solution that doesn’t involve working with one of the entrenched proprietary software companies. Instead, they will create open-source projects, where the source code is made publicly available. The programming community, including several who identify as hackers, work together to produce software solutions that is available to everyone. 
Even people who never use open-source software benefit from these projects, as the public community will often create new innovations that the proprietary companies either use for inspiration or simply copy outright.

While black hat hackers are typically a blight on the tech community, they’re not the only type of hackers out there. White hat hackers work hard to improve security, and there are many former black hat hackers who have reformed and now work to keep people’s data safe. At its heart, the world of hacking is much more complicated than people realise.

CTOVison:

You Might Also Read:

Directors Report January 2017. Cyber Security Checklist For Management (£):

Stop Data Breaches, Start With Databases:

Hack Headlines Cause Financial Damage:

 

« Russian Cyber Gang Arrested By …. Russia
Small Businesses Should Consider Cyber Insurance »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

RCMP Cybercrime Strategy

RCMP Cybercrime Strategy

The RCMP Cybercrime Strategy sets out in an Operational Framework and Action Plan to combat cybercrime.

Deep Identity

Deep Identity

Deep Identity is a boutique system integrator, with expertise in tailored identity governance & administration (IGA) and identity access management (IAM) solutions.

OPSWAT

OPSWAT

OPSWAT is a software company that provides solutions to secure and manage IT infrastructure.

Department of Justice & Equality - Cybercrime Division - Ireland

Department of Justice & Equality - Cybercrime Division - Ireland

The Cybercrime division is responsible for developing policy in relation to the criminal activity and coordinating a range of different cyber initiatives at national and international level.

Encore Media Group

Encore Media Group

Encore Media Group provide an international enterprise technology event series exploring IoT, Blockchain AI, Big Data, 5G, Cyber Security and Cloud.

Sigma IT

Sigma IT

SIGMA IT is one of the largest IT services organizations in EMEA region providing a full range of solutions and services including cybersecurity, data protection and business continuity.

Cyber Security Cloud (CSC)

Cyber Security Cloud (CSC)

Cyber Security Cloud provides web application security services worldwide using world's leading cyber threat intelligence and AI technology.

Delfigo Security

Delfigo Security

Delfigo Security, a pioneer in intelligent authentication, provides a strong, multi-factor authentication solution to prevent identity theft and reduce fraud.

Sparrow

Sparrow

Sparrow specializes in application security testing solutions to cope with new technology trends such as cloud, mobile, and DevSecOps.

ServerScan

ServerScan

ServerScan specializes in providing server scanning & compliance services to organizations of all types and sizes.

Zenity

Zenity

Zenity is the first and only security governance platform for low-code/no-code applications.

Quzara

Quzara

Quzara provides trusted advisory services and highly adaptive cybersecurity services to federal, commercial and Defense Industrial Base customers to meet their security compliance and cyber needs.

WinMagic

WinMagic

At WinMagic, we’re dedicated to making authentication and encryption solutions that protect data without causing user friction so that everyone can work freely and securely.

Hudson Rock

Hudson Rock

Hudson Rock’s products — Cavalier & Bayonet — are powered by our cybercrime database, composed of millions of machines compromised by Infostealers in global malware spreading campaigns.

Amtivo Ireland

Amtivo Ireland

Amtivo Ireland (formerly Certification Europe and EQA) offers a range of certifications and related services.

Graphiant

Graphiant

Graphiant’s Data Assurance service gives businesses end-to-end control and visibility into how data travels throughout the entire business network.