Attacks/Breaches
7/1/2014
08:45 AM
Marilyn Cohodas
Marilyn Cohodas
Slideshows
Connect Directly
Twitter
LinkedIn
RSS
E-Mail
100%
0%

Hacker Movies We Love & Hate

Check out Dark Reading community members' favorite hacker movie hits and misses. Then add your picks in the comments section.
Previous
1 of 11
Next

If you’re into InfoSec today there’s a good chance you were inspired at some point in your formative years by a hacker movie -- good or bad.

Who wouldn’t be captivated by Tron (one of my favorites), where computer hacker Jeff Bridges is abducted into the digital world to defend against an evil bureaucrat stealing computer programs; or motivated to join the forces of good against a sleazy villain like John Travolta’s Gabriel Shear in Swordfish?

The best hacker movies -- like WarGames -- are based on "kernels of truth" that endure even in the constantly changing world of cyber security and technological advancement. "In the 80s, it seemed far-fetched having nuclear weapons controlled by AIs, later hacked by teenagers over phone lines," says Corey Nachreiner, director of security strategy at WatchGuard Technologies. "Yet today, we live in the shadow of malware damaging uranium enrichment facilities and armed drones flying themselves."

But what makes a good hacker movie is a lot more subtle. From the geeky security cinephiles I contacted in my research for this slideshow, I learned that the gotcha is definitely not primarily about a dead-on depiction of technical details (though that helps), gee-whiz 3D CGI technology, or even a highly entertaining and somewhat plausible Hollywood story line.

In fact, the plot doesn’t even have to even be primarily about hacking to get on the list.

"It’s the mindset,” explains Contrast Security CTO Jeff Williams, who counts among his favorites “heist” type movies like the Ocean's series that "don’t treat hacking like magic" but take you "inside the process of experimentation, learning, strategy, and insight required to pull off a great hack."

Hacker movies also appeal to our better angels, bringing back childhood memories and life lessons like the ones that Bugcrowd community manager Marisa Fagan picked up from her father that "nothing is ever truly broken, it was just waiting to find the right workaround."

Another common thread is the journey of discovery where, as AccessData's Lucas Zaichkowsky observes, a "bunch of immature, bright kids [play] elaborate pranks on each other using computers" and later -- in real life -- "end up pursuing a fulfilling career in IT and information security."

Sound familiar?

A quick word about the research methodology, which involved informal email inquiries to a few of our active members and bloggers; these selections are not meant to be the definitive word on hacker movie hits and misses. They are only the first stage of a virtual discussion I hope will continue in the comments.  

And now, as they say in the movies, "Turn off your cellphone and enjoy the show."

 

Marilyn has been covering technology for business, government, and consumer audiences for over 20 years. Prior to joining UBM, Marilyn worked for nine years as editorial director at TechTarget Inc., where she launched six Websites for IT managers and administrators supporting ... View Full Bio

Previous
1 of 11
Next
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Kelly Jackson Higgins
50%
50%
Kelly Jackson Higgins,
User Rank: Strategist
7/2/2014 | 11:04:12 AM
Re: Nicely Done!
This slide show makes me want to rent some of these old movies. It's been a long time since I've seen some of them.
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
7/1/2014 | 1:17:46 PM
Re: Nicely Done!
It defnitely does! You Dark Reading folks definitely love your hacker movies (and your jobs!)
jd.sherry
0%
100%
jd.sherry,
User Rank: Author
7/1/2014 | 12:35:27 PM
Nicely Done!
Raises an interesting debate of life imitating art or vice versa?
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-0547
Published: 2015-07-04
The D2CenterstageService.getComments service method in EMC Documentum D2 4.1 and 4.2 before 4.2 P16 and 4.5 before P03 allows remote authenticated users to conduct Documentum Query Language (DQL) injection attacks and bypass intended read-access restrictions via unspecified vectors.

CVE-2015-0548
Published: 2015-07-04
The D2DownloadService.getDownloadUrls service method in EMC Documentum D2 4.1 and 4.2 before 4.2 P16 and 4.5 before P03 allows remote authenticated users to conduct Documentum Query Language (DQL) injection attacks and bypass intended read-access restrictions via unspecified vectors.

CVE-2015-0551
Published: 2015-07-04
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum WebTop 6.7SP1 before P31, 6.7SP2 before P23, and 6.8 before P01; Documentum Administrator 6.7SP1 before P31, 6.7SP2 before P23, 7.0 before P18, 7.1 before P15, and 7.2 before P01; Documentum Digital Assets Manager 6.5SP6 before P2...

CVE-2015-1966
Published: 2015-07-04
Multiple cross-site scripting (XSS) vulnerabilities in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before FP17, 6.2.1 before FP9, and 6.2.2 before FP15, as used in Security Access Manager for Mobile and other products, allow remote attackers to inject arbitrary web script or HTML via a crafte...

CVE-2015-4196
Published: 2015-07-04
Platform Software before 4.4.5 in Cisco Unified Communications Domain Manager (CDM) 8.x has a hardcoded password for a privileged account, which allows remote attackers to obtain root access by leveraging knowledge of this password and entering it in an SSH session, aka Bug ID CSCuq45546.

Dark Reading Radio
Archived Dark Reading Radio
Marc Spitler, co-author of the Verizon DBIR will share some of the lesser-known but most intriguing tidbits from the massive report