Cybersecurity Expert Answers Hacking History Questions | Tech Support | WIRED

Share

Summary

Jeff Crume, a cybersecurity architect and adjunct professor at NC State University, answers common questions about the history of hacking and cybersecurity. He discusses influential hackers, the evolution of the term 'hack', types of hackers, the dark web, notable cyber incidents, security measures, and the future of online security.

Highlights

Who Stopped WannaCry?
00:13:14

Marcus Hutchkins is credited with stopping the WannaCry ransomware attack in May 2017. He discovered a 'kill switch' in the malware's code – a specific domain name it tried to contact. By registering this domain, he activated the kill switch, preventing further replication of the ransomware.

Most Influential Hacker in Cyber History
00:00:16

Jeff Krume identifies Kevin Mitnick as one of the most influential and infamous hackers due to his mastery of social engineering. Mitnick served five years in prison for abusing the phone system to make free long-distance calls.

Origin of the Term 'Hack' and Types of Hackers
00:01:00

The term 'hack' originated in the 1960s at MIT, referring to someone who used technology creatively and unconventionally. By the 1970s and 80s, it evolved to mean unauthorized access. Cybersecurity categorizes hackers by 'hat colors': black hats (malicious), white hats (ethical, hobbyists), and grey hats (claiming good intentions but crossing lines).

Evolution of Hacking Methods (60s, 70s, 80s, 90s, Internet)
00:02:08

In the 60s and 70s, hacking was primarily physical access due to limited computer connectivity. Phone phreakers (freakers) manipulated the phone system. In the 80s and 90s, with modems and the public phone network, remote access became possible. The advent of the internet drastically changed hacking, making systems accessible globally.

Government Websites and Website Security
00:03:35

Hackers have indeed breached government websites, with a notable incident in 1996 where the CIA website was defaced. To prevent hacks, it's crucial to change default credentials, disable unnecessary services, keep software updated, and use multi-factor authentication.

Signal's Open-Source Encryption and Kirkoff's Principle
00:04:42

Despite being open-source, Signal's encryption is secure due to Kirkoff's Principle: only the cryptographic keys should be secret, not the algorithm. A robust algorithm remains unbroken even when known, as breaking it relies solely on guessing the key. The key's randomness and secure storage are paramount.

The Wild West of the Internet (90s, Deep Web, Dark Web)
00:06:05

The internet in the 90s was akin to the Wild West, with firewalls being a primary defense. Today, only 5% of the web is the 'surface web' (indexed by search engines). The 'deep web' contains unindexed content like business records, while the 'dark web' requires special tools for access and is often associated with illicit activities, though it also serves whistleblowers and dissidents.

The Stuxnet Virus
00:08:17

Stuxnet was malware designed to damage Iranian nuclear centrifuges by manipulating their speed, disrupting uranium enrichment. Although widely attributed to the US and Israel, those involved remain silent. The virus was successful until it spread to other systems and was detected by antivirus software.

Data Breaches and Protecting Personal Information
00:09:35

Data breaches like the OPM incident highlight the risks of trusting organizations with personal data. To mitigate these risks, users should be selective about what data they share, understand the value of their data, and utilize tools like credit monitoring and freezes.

TikTok and Organizational Bans
00:10:44

Banning platforms like TikTok due to concerns about foreign ownership and privacy is often ineffective as it drives activity underground. Concerns about data manipulation and privacy violations are universal across platforms and governments, regardless of their origin.

Election Vulnerabilities and Paper Ballots
00:11:57

Elections are vulnerable to security threats. Paper ballots are preferred over electronic voting systems because they offer a tangible record for recounts in case of machine error or power outages, providing a more reliable low-tech solution.

'I Love You' Virus and Malware Spread
00:12:51

The 'I Love You' virus overwrote various files to maximize its spread and make systems harder to disinfect. Virus designers aim for widespread infection and persistence.

Colonial Pipeline Hack
00:14:17

The Colonial Pipeline was shut down not by the ransomware itself, but by its operators as a cautionary measure following a ransomware attack. They paid a $5 million ransom, but the decryption tool provided was too slow, forcing them to rely on their own backups. The FBI later recovered half the ransom.

What is a Firewall?
00:15:47

A firewall, in network security, acts as a gatekeeper, creating a zone of separation between trusted (internal network) and untrusted (internet) networks. It enforces security policies, allowing specific types of traffic and blocking others.

VPNs: Anonymity vs. Trust Transfer
00:16:38

VPNs were initially for secure data transport over public networks. Modern VPNs also hide IP addresses, providing anonymity. However, using a VPN shifts trust from your ISP to the VPN provider, who can then see your traffic. Users must choose reliable VPNs, as a bad actor or compromised VPN can expose all data.

Why Phishing and Telephone Scams Still Work
00:18:52

Phishing emails and telephone scams remain profitable because they exploit human trust. Attackers use social engineering, adapting tactics (smishing for SMS, vishing for voicemail, quishing for QR codes) to find new ways to exploit people's innate inclination to trust.

Password Managers and Passkeys
00:20:10

Nothing is completely safe or secure, including password managers, but they can be 'safe enough' if used correctly (strong master password, multi-factor authentication). A newer, more secure technology is passkeys, which use cryptographic techniques instead of memorable passwords, making them highly phishing-resistant.

Likelihood of Catching a Virus Today
00:21:52

It's still very possible to catch a virus or malware, even with up-to-date antivirus software. The game is constantly changing, with antivirus evolving from signature-based detection to behavior-based analysis. Regular software updates/patching and system reboots (as some malware doesn't survive reboots) are crucial for defense.

Most Damaging Hack
00:22:59

The 'most damaging hack' is subjective, depending on the metric (financial, systems, lives). One example given is a hospital ransomware attack that redirected emergency patients, leading to a death during transport, highlighting the potential for indirect loss of life.

The CIA Triad
00:23:37

In cybersecurity, CIA stands for Confidentiality, Integrity, and Availability. These three principles form the fundamental pillars of cybersecurity teachings and practices.

First Computer Virus
00:24:08

The Morris worm, released in 1988 by an MIT student, is often considered the first widely known computer virus (or malware in a broader sense). It self-replicated and spread to 10% of the internet before being shut down, making the world aware of software's potential for harm.

Phone Phreaking (Revisited)
00:24:48

Phone phreaking was an old hacking method from when computers were scarce. Phreakers exploited the phone system by using specific tones (like the 2600 hertz whistle found in Captain Crunch cereal boxes) to gain control, make free calls, and reconfigure switches. It's less common now due to changes in phone systems.

Realistic Hacking in Movies
00:26:08

Movies often portray hacking unrealistically to make it more exciting. Real-world hacking involves long, tedious hours of running programs and searching for vulnerabilities, which isn't cinematic. The common movie trope of 'I'm in' simplifies a complex process.

Recently Summarized Articles

Loading...