Attacks/Breaches
5/11/2010
01:05 PM
Connect Directly
Google+
Twitter
RSS
E-Mail
50%
50%

How To Become A Hacker In 15 Minutes -- Or In 140 Characters Or Less

Security firm to tweet tips on how consumers should think like hackers to protect themselves

Now there's another calling for Joe the Plumber: A security firm tomorrow will teach its Twitter followers how to become a hacker -- or at least how to think like one.

Ligatt Security International's Twitter campaign, called "How To Become A Hacker in 15 Minutes," is aimed at explaining to consumers how hackers operate so they can avoid becoming victims. "You don't have to be a computer security expert or an IT manager or really have a big knowledge of security and computers. You could be like 'Joe the Plumber.' So we're going to teach you exactly, step-by-step, on how it happens and what you can do," Gregory Evans, said CEO of Ligatt, in an interview with a local television station.

The security firm will tweet daily tips on how an attacker could break into a user's wireless network, find someone via his or her email address, and break into a PC to steal personal information. The tweets from Ligatt will include instructions on how attackers do their dirty deeds and how to protect yourself from such attacks.

Ligatt's hacker education initiative follows a long line of security firms finding ways to reach out to the general public and tutor users on the risks of cybercrime. "It takes a hacker to know a hacker," said Ligatt's Evans in a statement. "Cybercrimes, such as identity theft, are at an all time high. I want to educate my consumer base about these issues, as well as provide them with daily tips on how to protect their personal information."

Meanwhile, the publicly traded firm announced yesterday that it will buy back its shares on the open market and via private individuals in an effort to boost its share price.

Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.

Kelly Jackson Higgins is Executive Editor at DarkReading.com. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise ... View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
danyl
50%
50%
danyl,
User Rank: Apprentice
3/27/2013 | 11:36:01 PM
re: How To Become A Hacker In 15 Minutes -- Or In 140 Characters Or Less
danyl
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-3341
Published: 2014-08-19
The SNMP module in Cisco NX-OS 7.0(3)N1(1) and earlier on Nexus 5000 and 6000 devices provides different error messages for invalid requests depending on whether the VLAN ID exists, which allows remote attackers to enumerate VLANs via a series of requests, aka Bug ID CSCup85616.

CVE-2014-3464
Published: 2014-08-19
The EJB invocation handler implementation in Red Hat JBossWS, as used in JBoss Enterprise Application Platform (EAP) 6.2.0 and 6.3.0, does not properly enforce the method level restrictions for outbound messages, which allows remote authenticated users to access otherwise restricted JAX-WS handlers ...

CVE-2014-3472
Published: 2014-08-19
The isCallerInRole function in SimpleSecurityManager in JBoss Application Server (AS) 7, as used in Red Hat JBoss Enterprise Application Platform (JBEAP) 6.3.0, does not properly check caller roles, which allows remote authenticated users to bypass access restrictions via unspecified vectors.

CVE-2014-3490
Published: 2014-08-19
RESTEasy 2.3.1 before 2.3.8.SP2 and 3.x before 3.0.9, as used in Red Hat JBoss Enterprise Application Platform (EAP) 6.3.0, does not disable external entities when the resteasy.document.expand.entity.references parameter is set to false, which allows remote attackers to read arbitrary files and have...

CVE-2014-3504
Published: 2014-08-19
The (1) serf_ssl_cert_issuer, (2) serf_ssl_cert_subject, and (3) serf_ssl_cert_certificate functions in Serf 0.2.0 through 1.3.x before 1.3.7 does not properly handle a NUL byte in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Dark Reading continuing coverage of the Black Hat 2014 conference brings interviews and commentary to Dark Reading listeners.