9 Notorious Hackers Of 2013

Network Computing Dark Reading

Advertise

About Us

Newest First | Oldest First | Threaded View

[close this box]

50%

SaneIT,
User Rank: Apprentice
1/6/2014 | 7:40:57 AM

Re: Have to agree

I really thought this would be addressed when we the country got a CIO... Then we had the summer of Anonymous attacking sites and we never really got a main stream explanation of what was going on or why. I think part of it is just a lack or understanding by the media and the attitude toward attacks on web sites is that it's just childish pranks.

Reply | Post Message | Messages List | Start a Board

50%

Marilyn Cohodas,
User Rank: Strategist
1/3/2014 | 7:52:40 AM

Re: Have to agree

That's a great question. There's really no shortage of public news and information for anyone who wants to learn more and stay on top of the situation. It's the age-old dilemna of how to raise security awareness. You would think our leaders would take it upon themselves to have at least a basic understanding of digital security issues. Yet even security professionals struggle with the issue. Ira Winkler wrote a great piece about it recently: Why Security Awareness is Like an Umbrella.

Reply | Post Message | Messages List | Start a Board

50%

SaneIT,
User Rank: Apprentice
1/3/2014 | 7:14:28 AM

Re: Have to agree

I guess the question then would be how do we raise awareness without overblowing the situation. We don't want to make them all out to be public enemy number one but we do need to draw enough attention that people are aware of what is possible, what is happening and hopefully educate themselves on how to avoid it.

Reply | Post Message | Messages List | Start a Board

50%

Marilyn Cohodas,
User Rank: Strategist
1/2/2014 | 10:33:17 AM

Re: Have to agree

I tend to agree with you @jg, that outside the security community, the general public is unaware of most of the notorious hackers and why they are important. What's worse, I don't have a lot of confidence that our public leaders (elected and appointed) truly get what they need to know to develop policies that protect us.

Reply | Post Message | Messages List | Start a Board

50%

SaneIT,
User Rank: Apprentice
12/30/2013 | 8:32:36 AM

Re: Have to agree

I don't think the NSA are doing themselves any favors but I also wonder how many people would recognize any of the other individuals listed. We all know about Snowden because he's been a daily news story but what about Sabu? Aside from those that were burned when the started working with the government to turn in other hackers and IT folks who follow things like this does anyone know who he is or why he was news worthy?

Reply | Post Message | Messages List | Start a Board

50%

Whoopty,
User Rank: Ninja
12/30/2013 | 6:00:03 AM

Have to agree

Have to agree with the NSA being at the #1 spot. The revelation of its involvement in worldwide sureillance was the biggest rug pulling on internet privacy that's ever come to light.

Reply | Post Message | Messages List | Start a Board

50%

virsingh211,
User Rank: Apprentice
12/30/2013 | 3:36:03 AM

Re: 10

I would like thank author for including Edward Snowden in blog, Snowden was one to change my thinking towards hacker, he revealed the spying that is taking place. Many consider him a villain. I, on the other hand, hold him up in the hero category for one simple reason, His disclosure of classified documents unveiled the NSA's mass surveillance program. I was reading an article on WSJ which says Snowden Will Speak More in 2014, source: http://blogs.wsj.com/washwire/2013/12/29/snowden-will-speak-more-in-2014-adviser-says/.

Reply | Post Message | Messages List | Start a Board

50%

Joe Stanganelli,
User Rank: Ninja
12/28/2013 | 11:36:06 PM

A suggestion for the tenth: Those behind the Target hack on customer credit card numbers. We're still somewhat in the dark about that.

Reply | Post Message | Messages List | Start a Board

Hot Topics

Editors' Choice

NSA Appoints Rob Joyce as Cyber Director

Dark Reading Staff 1/15/2021

Webinars

Building the SOC of the Future: Next-Generation Security Operations

ROI and Beyond for the Cloud

5 Steps to Solving Modern Scalability Problems

Webinar Archives

White Papers

The Dark Side of SD-WAN

What To Consider Before Renewing Your SD-WAN

Five Reasons to Protect your VPN with Multi-Factor Authentication

Two-Factor Evaluation Guide

From MFA to Zero Trust

More White Papers

Cartoon Contest

Write a Caption, Win an Amazon Gift Card! Click Here

Latest Comment: I keep a cardboard cutout of the boss in my desk, to remind me of what working in the office felt like.

Cartoon Archive

Current Issue

2020: The Year in Security

Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

Assessing Cybersecurity Risk in Today's Enterprises

COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.

Download Now!

The Malware Threat Landscape

0 comments

How Data Breaches Affect the Enterprise (2020)

0 comments

Building an Effective Cybersecurity Incident Response Team

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2020-8567
PUBLISHED: 2021-01-21

Kubernetes Secrets Store CSI Driver Vault Plugin prior to v0.0.6, Azure Plugin prior to v0.0.10, and GCP Plugin prior to v0.2.0 allow an attacker who can create specially-crafted SecretProviderClass objects to write to arbitrary file paths on the host filesystem, including /var/lib/kubelet/pods.

CVE-2020-8568
PUBLISHED: 2021-01-21

Kubernetes Secrets Store CSI Driver versions v0.0.15 and v0.0.16 allow an attacker who can modify a SecretProviderClassPodStatus/Status resource the ability to write content to the host filesystem and sync file contents to Kubernetes Secrets. This includes paths under var/lib/kubelet/pods that conta...

CVE-2020-8569
PUBLISHED: 2021-01-21

Kubernetes CSI snapshot-controller prior to v2.1.3 and v3.0.2 could panic when processing a VolumeSnapshot custom resource when: - The VolumeSnapshot referenced a non-existing PersistentVolumeClaim and the VolumeSnapshot did not reference any VolumeSnapshotClass. - The snapshot-controller crashes, ...

CVE-2020-8570
PUBLISHED: 2021-01-21

Kubernetes Java client libraries in version 10.0.0 and versions prior to 9.0.1 allow writes to paths outside of the current directory when copying multiple files from a remote pod which sends a maliciously crafted archive. This can potentially overwrite any files on the system of the process executi...

CVE-2020-8554
PUBLISHED: 2021-01-21

Kubernetes API server in all versions allow an attacker who is able to create a ClusterIP service and set the spec.externalIPs field, to intercept traffic to that IP address. Additionally, an attacker who is able to patch the status (which is considered a privileged operation and should not typicall...

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]