Hackers Not Afraid of Being Caught

An anonymous reader wrote in to point us to an interview with Honeynet Founder Lance Spitzner where he says "Years ago it was hackers who were doing it for the bragging rights, now it's the criminals. The motivation has changed, hacking is now profitable and there's so much money to be made with very little risk to the actual hackers."

I smell a business opportunity.

[dada21]

Of course hacking is profitable -- the laws of supply and demand cover this as any service or product. The laws making hacking illegal only add more gold to the pot. For acts considered criminal, the value to the service provider will still meet what the market dictates. In this case, the chance of getting caught is low, so hacking might not be as profitable as selling pot, but it also depends on the demand. If hackers are making money, that means there is a demand for their service. If only a few hackers are willing to take the risk, a high demand and low supply of service providers means a high cost/profit. That's the nature of the free market.

Yet I don't think this profit will necessarily last forever -- even if laws change to make it easier to catch a hacker and even if the penalties are raised. The Internet is global, not local. With more third party countries gaining Internet access and more people willing to invest the time to learn to hack, I believe hackers will find their jobs outsourced as quickly as call centers and web developers have. So what?

The State will write laws to defend against hacking, but the reality is that the free market will provide better defense. There are laws against breaking and entering, but do they work? No, locks do. In situations where locks don't work, alarms work. In situations where alarms aren't enough, a Colt 45 used once usually fixes that situation. The law has almost no effect on crime other than raising the profit for those willing to take the risk. Hackers make a profit only means that anti-hackers have a new business opportunity -- and if you're good with security, you should make a windfall NOW before the law interferes with YOUR ability to secure your clients. Regulations against hacking might harm you more than they harm the "criminals."

Take advantage of this business opportunity today -- on either side of the "battle."

Re:I smell a business opportunity.

[MadEE]

The State will write laws to defend against hacking, but the reality is that the free market will provide better defense. There are laws against breaking and entering, but do they work? No, locks do. In situations where locks don't work, alarms work. In situations where alarms aren't enough, a Colt 45 used once usually fixes that situation. The law has almost no effect on crime other than raising the profit for those willing to take the risk. Hackers make a profit only means that anti-hackers have a new business opportunity -- and if you're good with security, you should make a windfall NOW before the law interferes with YOUR ability to secure your clients. Regulations against hacking might harm you more than they harm the "criminals."

What complete and utter unsubstantiated bullshit. First of all the novelty of an alarm system is notification of the police, who job it is to *gasp* uphold the law. There are plenty of processionals that can or profession demands the ability to pick locks, bypass alarm systems and assault a building in a manner that would make a gun have very little effect. Despite this you see professionals in all of these trades work in legitimate trades despite the fact that illegal ones would be far more profitable. Perhaps the knowledge that maybe losing a chunk of your life to jail may put some second thoughts into these people.

Re:I smell a business opportunity.

[99BottlesOfBeerInMyF]

First of all the novelty of an alarm system is notification of the police, who job it is to *gasp* uphold the law.

This is untrue. The chances of the police responding in time to do anything is very slim. The main purpose is to alert the owner and other people nearby, thus increasing the risk of this particular robbery or crime. It is the job of the police to investigate crimes, but they have neither the manpower or the will to prevent crime.

There are plenty of processionals that can or profession demands the ability to pick locks, bypass alarm systems and assault a building in a manner that would make a gun have very little effect.

Relative to the general populace or to the criminal populace, this just isn't true. Locks are easy to pick, alarm systems can be bypassed, but very few criminals take the time to do either when there are easier targets.

Perhaps the knowledge that maybe losing a chunk of your life to jail may put some second thoughts into these people.

Threat of punishment is a motivational factor, but surprisingly, not a very significant one. Studies have shown people in general believe they can get away with crimes without being caught. The main motivation for not committing them is actually a moral one. People do not feel justified in robbery. One of the strongest correlations with robbery and violent crime worldwide is wealth disparity. In places where some people are very poor and others are very rich, despite the rich not necessarily working harder or being smarter than the poor, the rates of these crimes is higher. It is easy to justify robbery when you were born into debt while others were born into extreme wealth. And that is exactly what people do.

Re:I smell a business opportunity.

[mapkinase]

I wholeheartedly agree with the last paragraph. Further, we need to stop glamorizing hackers, the same way movie industry stopped glamorizing the mob (think Godfather -> Goodfellas transition). The main reason it has not been done yet is the hacker world is almost completely non-violent one. When hackers are associates of the multi-area mafia, they are at the same service level as lawyers, drivers, gray-business owners (pimps, dealers, bookmakers), small-business owners of the meeting places (restaurants, motels), etc... which are not particularly glamorized, but also not vilified enough as hitmen and high-level mob managers are.

Besides this, there are other important differences between breeching brick-and-mortar and breeching digital.

1. One-target-per-act - many-targets-per-act (hence "going after easy targets" emphasized)
2. Localized - internationalized (hence "hard to catch" factor)

Those two factors make huge difference.

Re:

[jschutzm]

THANK YOU! I agree with you! Jail and even death sentences don't deter crime as much as strong moral beliefs. It IS TRUE that most criminals did not consider the consequences prior to breaking the law. Do you think the shop lifters, car thieves, and gas station robbers REALLY carefully way the consequences? Do you seriously think they are saying to themselves: "On one hand I can get about $50 bucks from the register.. on the other hand.. I could get A) shot by the clerk or B) spend 6 months in jail" NO

Re:

[MadEE]

This is untrue. The chances of the police responding in time to do anything is very slim. The main purpose is to alert the owner and other people nearby, thus increasing the risk of this particular robbery or crime. It is the job of the police to investigate crimes, but they have neither the manpower or the will to prevent crime.

You are right alarm systems are largely useless. However my point is that the deterring factor of an alarm system is the risk of getting caught. It may be rare that police respon

Re:

[99BottlesOfBeerInMyF]

You are right alarm systems are largely useless. However my point is that the deterring factor of an alarm system is the risk of getting caught. It may be rare that police respond however, that small chance adds to the risk.

Alarm systems draw attention that might lead to them being punished. Alarm systems alert both the home/business owner and neighbors increasing the chances one of them will grab a shotgun and come after them. They aren't afraid the police will stop them in most cases.

Just because so

Re:

[StikyPad]

There's almost no reason to pick a lock if theft is the goal. The only time lockpicking is useful is when you don't want evidence of your presence, otherwise a crowbar usually works just fine. Not much skill needed to use those. Also bumping [wikipedia.org] works on more "quality" locks than you'd think, and there's no skill required for that either.

Re:

[cyberscan]

"First of all the novelty of an alarm system is notification of the police, who job it is to *gasp* uphold the law." The alarm usually notifies a central monitoring company which in turn notifies the police. If a phone line to which the alarm iss attached is cut, or the burglary is a quick 30 second smash and grab job, then the alarm may prove to be useless. Car alarms for example are very useless unless the car is in its owners yard and makes a distinct sound. "There are plenty of professionals that ca

Re:

[99BottlesOfBeerInMyF]

Look at studies of proportions people in jail vs. social and racial groups, you'll see what the real picture is.

First, the number of people in jail is a different thing than the number of people who commit robberies and violent crimes. In fact, most people in jail are there for nonviolent drug offenses. Second, I'm speaking to motivations, which cannot be determined by looking at races unless you believe race plays a significant role in motivating people and can statistically show how. Third, the most po

Re:I smell a business opportunity.

[technococcus]

Hey, just FYI:

Alarm systems notify the police. The police come to the house. This process will almost certainly take far longer than the process of Break-and-Enter, Rape-and-Pillage, Then Haul Ass that the criminals in any given breaking and entering situation will be using. If you don't believe me, check the home invasion response times on the FBI's website. Nearly all calls (real live actual person calls, not automated alarm triggers!) take 5+ minutes, and a shocking amount have longer response times.

Also, just so you're aware of this next time you rely on the police to protect you/your rights:

It has been upheld three times (to my knowledge, there may have been more, more recent cases that uphold this as well) that a police department and its officers and employees are not responsible for providing for the personal protection or safety of any private citizen's health, life, welfare, or property and that none of these have any obligation to place themselves at any risk to protect any of those. A friend of mine who was a SWAT member on the Indianapolis PD for 20+ years (and spent the last 2 as an entry leader) has mentioned that doing a response to a home invasion call by the book according to many agencies and departments involves showing up and then checking your watch. You sit in the car for 5 minutes. THEN, you go see what's going on. The departments don't want their officers going in where there might still be criminals. So, yeah, the police probably won't be anything like as helpful to you in the defense of your life and property (and the lives and property of your loved ones) as a firearm that you have some skill with. A gun rarely has "very little effect" unless you're storing it improperly for defense (i.e., not near you/on you, not loaded, locked; most of your hunting weapons which stay locked in the safe wouldn't help, but the pistol you carry on a daily basis and the 12-gauge you keep loaded behind the bed would) or are completely unskilled in its use or unwilling to use it as intended (i.e., to fire upon in an attempt to incapacitate an intruder/threat).

Again, this has been a public service announcement for the instruction of all people interested in their own welfare.

Re:

[vertinox]

What complete and utter unsubstantiated bullshit. First of all the novelty of an alarm system is notification of the police, who job it is to *gasp* uphold the law.

I take it you don't live in major city with high crime...

This morning I walked out to see a car window smashed. Hey at least it wasn't mine, but it has happened to me before. The problem is that you can better protect yourself with the free market than police.

I have an alarm on my house as well because if someone did break in without it, the poli

Re:

[whoever57]

have an alarm on my house as well because if someone did break in without it, the police would come by and make a report, shrug and then leave.

You are lucky! In my city, the police no longer respond to alarms unless there is some other verification of the need to respond.

Re:

[From A Far Away Land]

Better still for the black hats, they can do their crimes in countries where they don't reside, further complicating prosecution if they even do get caught.

Re:

[maxume]

Locks keep honest people out. Alarms send bad guys next door. They solve the immediate problem. Note that alarms don't work so well in the absence of the police+justice system, which is so graciously provided by the market </snark>.

Yes, the free market does provide the Colt 45, but society has collectively decided that there are better ways of controlling the assholes than shooting them all the time. Get used to it.

Re:

[Jaeph]

"There are laws against breaking and entering, but do they work? No, locks do. In situations where locks don't work, alarms work. In situations where alarms aren't enough, a Colt 45 used once usually fixes that situation. The law has almost no effect on crime other than raising the profit for those willing to take the risk."

It's not a crime unless it's against the law, by definition. If breaking and entering wasn't a crime, then you the home owner would be the criminal if you shot someone entering your hom

Re:

[budgenator]

locked doors don't do squat against bricks through a window
In Detroit, they'll steal the bricks off a building and sell them! More likely to get in a building it's as simple as stealing a car and driving it through the wall. I saw on tv a guy that had driven a stolen car through the wall of a liqueur store and was stuck inside, so he just got drunk waiting for the police to arrive.

Re:

[david_g17]

"Oh, and locked doors don't do squat against bricks through a window. Locks generally only keep honest people honest - they are a trivial defense against people."

locks are necessary. Without locks, you can't charge someone with "breaking and entering" - a much more serious crime than "tresspassing".

Re:

[Marxist Hacker 42]

And of course, when the courts side with the criminals [slashdot.org] it becomes MORE profitable and LESS risky.

Re:

[egamma]

So basically, you think all laws are useless? Maybe we should legalize murder. According to your logic, by making murder illegal, we are raising the prices that hit men charge, and by making murder legal, we would make it less profitable. At least, that's your logic. ...the gaping hole in your logic is that sometimes people do things because they WANT to do things. Making murder legal would only increase the amount of murder--after all, it would be more affordable and you could get away with it. You could p

Re:I smell a business opportunity.

[El Torico]

dada21, one minute I want to put you on my "friends" list, and the next minute, I want to put you on my "foes" list (grin).

The laws making hacking illegal only add more gold to the pot.
It does, because the potential cost is now higher.

There are laws against breaking and entering, but do they work?
Actually, they do, but only if they are rigorously enforced. Locks serve mainly to delay an intrusion, thus increasing the chance of getting caught. Alarms serve to notify owners and police, which then can catch the intruder.

...where alarms aren't enough, a Colt 45 used once usually fixes that situation.
This is where the problem lies. People do not have the time or training to protect their property 24 x 7 and maintaining a private security force is expensive, so they have "contracted" authorities to provide the physical deterrent. There is a fundamental need for order to be maintained, and this is a core function of government.

Regulations against hacking might harm you more than they harm the "criminals."
I agree with you on this, but only because these regulations may be made by people who don't understand the issue or by people who misuse law as a weapon. Both are cases of bad government.

Re:

[TheHorse13]

Comment by TheHorse13 on November 29, 2006 12:45 pm
Is this really news to anyone? IRC botnets have been around for years and have been used for stealing for profit equally as long. Common sense tells you that you don't fear something that cannot induce consequences. Case in point, how are you going to press a guy in the middle of the congo for scamming you? U.S. domestic law?

How about we talk about how this has already been taken to the next level by hiring professional programmers who now offer encryption

Re:

[cyberscan]

"Of course hacking is profitable -- the laws of supply and demand cover this as any service or product." I totally agree. Lok at spamming. There is so much moneyt in spam that it now swamps just about anyone's email box. Yeas, there are draconian penalties for spamming, and yes, people get caught. However people still do it because they make money at it, and many just do not think it is wrong.

Re:

[Fred_A]

Not exactly "free" then, is it? Unless you want a "market of one."

Yes, that's how "free" markets usually end up.

Re:I smell a business opportunity.

[s20451]

The market provides for both sides, the law provides for no one.

Anyone who thinks anarchocapitalism is a good idea should move to Somalia. The governmental vacuum is basically filled by loosely organized and bad-tempered gangs of mercenaries, although cell phone service is apparently cheap and plentiful. I would prefer the law, thanks.

Re:I smell a business opportunity.

[Archangel Michael]

"I would prefer the law"

Somalia has laws. What they don't have is ORDER. Laws do not create order. Enforcement of laws does.

Re:

[diersing]

And if the ORDER, whether from enforcement agencies lack of size/strength/resources/capabilities/perception, can not enforce a law the free market will provide a solution for a fee.

Re:

[Foobar of Borg]

And if the ORDER, whether from enforcement agencies lack of size/strength/resources/capabilities/perception, can not enforce a law the free market will provide a solution for a fee.

Ah, yes, Adam Smith's old "invisible hand holding the AK-47" :-)

Re:

[spun]

Funny, but on a more serious note, anyone who has read The Wealth of Nations knows that Adam Smith believed that free markets needed external regulation and order in order to remain free. Was he right? Who knows, but I'd like to see libertarian types stop using him as an example of someone who thought the free market needs no regulation.

Is this offtopic? Who knows, but I'll probably get modded offtopic anyway.

Re:

[Archangel Michael]

"the free market will provide a solution for a fee."

or leave, leaving the market to thieves and vultures. The result being that products cost more, and are of lessor quality than in markets with civility where thieves are a nuisance, rather than a major market force.

Most people have a distorted view of Adam Smith. His theories had some basic assumptions, ones often tossed aside during these types of discussions.

Re:

[molarmass192]

Almost ... in reality whomever you try to hire for protection has far more incentive to divest you of all your wealth since there are no enforcement agency to enforce the "for hire" enforcement agencies. In anarchocapitalism, maximizing profits is king, so why settle for a few hundred a month at an added cost to my organization when I can simply take all your millions and put a bullet in your head at a cost of $1 to my organization?

Re:

[techno-vampire]

the free market will provide a solution for a fee.

I take it, then, you'd like to live in the Kingdom of Id and live under their version of the Golden Rule; "He who has the gold makes the rules."

Re:

[Peeteriz]

Exactly, the market will provide some solution.
Do look at the situation in Somalia (at least a year ago, before the islamists started returning order to the country), with the gunmen-for-hire as a major part of any business, especially anything somehow involving transportation through countryside.
I still would prefer a low quality law-order of a corrupt government than such anarcho-capitalism.

Re:

[markov_chain]

Guys, it's called the rule of law [wikipedia.org] and every civilized country out there has figured out why it is important.

Re:I smell a business opportunity.

[xappax]

OK, I hate government just as much as you, but on this matter it seems like you don't really know what you're talking about.

You claim that tighter laws and enforcement against computer criminals will encourage computer crime by driving down the supply of willing "workers". While this may jive with your anarcho-capitalist theory, it just ain't true.

The entire point of the article was that hacking is prevalent because there isn't serious enforcement of the law. The author points out that criminals use insecure methods of communication, not even bothering to conceal themselves, because they're confident that the law won't touch them. If the governments in eastern europe cracked down on internet crime, and actively investigated and arrested computer criminals, many of the current participants would be scared out of the game, no longer confident that they're above the law. There is a threshold of risk beyond which very few people are willing to go, even for a huge reward, and this is even more true of a job that requires in-depth training and is inaccessible to the vast majority of people.

There are plenty of good reasons to oppose cyber-crime crackdowns, and I for one do, but the argument you're making in this case is naive to both the technical and economic realities of international computer crime.

Re:

[kz45]

"Really? And how do you know that mugging is bad? Because people have been mugged, and the lesson learned is "that is bad!" Some kids touch hot stoves and burn themselves, and the outcome now is parents who are more careful. Some kids stuck keys in outlets, and the outcome is very cheap outlet protectors (provided by the free market, not by some ridiculous one-size-fits-all government law)."

Are you serious?

There are certain things in life that are bad/harmful, but teach us a lesson (such as kids touching a

Re:I smell a business opportunity.

[bberens]

Hammurabi's code had laws like "If you steal something form the temple, you will be put to death." A simple risk/profit analysis would indicate that stealing something from the temple is probably not worth it. However, 'hacking' on the internet is relatively low risk of getting caught and the punishments are relatively small. People will generally act within their own best interest and the legal ramifications are only one part of the consequences of action. In the case of home robbery, there's the shotgun blast to the face consequence on top of the legal ramifications. In the case of hacking, unless you hack the mob/FBI/CIA/IRS you're unlikely to find yourself in a 'car accident.'

Re:

[Kijori]

Over here in England you can't shoot people for breaking into your home - you're not even allowed to hurt them more than is absolutely necessary. A lot of people leave doors unlocked when they're in the garden, and those that don't frequently have doors that could be broken into in seconds. We rely mainly on two things to prevent robbery: trying to create a social climate where robbery isn't acceptable, and the threat of being caught by the police if you do break the law. It works pretty well; I've only eve

Give them new authority

[suso]

Hackers can think whatever they want. The real problem right now is that the governments of the countries they live in don't care and don't do anything about it. Perhaps that's understandable since many of those countries have enough non-tech issues to deal with already. But I think that if that's the case, they just shouldn't be allowed on the internet yet. There really needs to be a bar for entry. I can't tell you how many applications we get for people using stolen credit card numbers and coming from IPs in Africa, Indonesia, etc. Fortunately, we check applications by hand and weed those out. But many hosting companies probably just accept them and create accounts, opening their systems to escalated privlige attacks.

I'm surprised we haven't started seeing vigilantes tracking down hackers and spammers. When governments can't handle things, the mob takes over.

Re:

[mcrbids]

Perhaps that's understandable since many of those countries have enough non-tech issues to deal with already. But I think that if that's the case, they just shouldn't be allowed on the internet yet. There really needs to be a bar for entry.

And, just how do propose to do that?

The Internet is an agreement to exchange digital information with previously agreed-upon protocols. Nothing more, nothing less. ANY node on the Internet is abstractly equal to any other. It's the World of Ends [worldofends.com] that gives the Internet it

Re:

[suso]

I know I sure as hell fantasize about that.

I really don't know what you are talking about. ;-)

Seriously though, hackers are just misguided. Spammers however....

Re:

[hotdiggitydawg]

When governments can't handle things, the mob takes over.

Ain't that the truth. The Mob probably own most of the criminal hackers!

Re:

[siriuskase]

Hackers can think whatever they want. The real problem right now is that the governments of the countries they live in don't care and don't do anything about it. Perhaps that's understandable since many of those countries have enough non-tech issues to deal with already. But I think that if that's the case, they just shouldn't be allowed on the internet yet.

s/countries/communities/

there are plenty of jurisdictions in civilized places where the government is more concerned with traffic and violent crimes. Should all these communities be banned from the internet? Of course not, just because a few people abuse a right or a priviilige doesn't mean the whole community should be banned. Even in lawless communities, the internet has positive uses that far outway the negatives

Re:

[suso]

Seriously now, that idea... Besides being technically and conceptually ludicrous, that's the equivalent of saying that people below certain IQ level should be banned from voting, writing or appearing on TV...

No, I didn't say people should be banned. I said counties should be banned if they don't meet certain requirements. Basically, if they don't have a policy for enforcing certain rules and authority, they should be banned. Its like anything else, for a nation to be admitted to the UN, they have to meet

HACK the PLANET

[hoy74]

or just the gibson.

Re:

[Zaphod2016]

Does your laptop have 128 MB of RAM? If not, you don't stand a chance against Penn Gillete's super-computor. He's a powerful wizard you know...

Re:

[Tackhead]

> or just the gibson.

Been there, done that. [introversion.co.uk]

Uplink is to cracking, what GTA is to car theft. Enough escapism to be fun, enough realism to make you very nervous when you're in the middle of a mission. The game came out in 2001, and was set in 2010. Judging from the headlines on Slashdot, we're about halfway there.

Oh for crap's sake..

[Rob T Firefly]

Being a hacker is not a punishable offense. If criminals are using so-called "hacker" skills in criminal pursuits, they're still criminals. Call them criminals.

I'd expect the OMG SCARY word "hacker" to be misused like this in Hollywood films and mainstream news, but not on Slashdot of all places.

Re:Oh for crap's sake..

[B11]

[blockquote] Being a hacker is not a punishable offense. [/blockquote] Not yet anyways. But being a tinkerer and an "outside-the-box" thinker, non-comformist, etc is certainly NOT something being encouraged today, vis-a-vis things like the DMCA, the Patriot Act, etc, etc. Kinda sad actually.

Re:Oh for crap's sake..

[Speare]

The 1980s called. They want their 'hacker' vs 'cracker' argument back.

Re:

[RAMMS+EIN]

``The 1980s called. They want their 'hacker' vs 'cracker' argument back.''

They can have it if they give us people correctly using the terms.

Re:

[Rakarra]

You do not define what the term 'hacker' means. Hackers do not define what the term means. Society as a whole defines what words actually mean. If society decides that 'hacker' refers not only to someone who tinkers, someone who solves problems in unconventional ways but that the term also refers to the destructive cracker, then yes, that is what the term 'hacker' means. Give it up and fight a fight that is worthwhile and not already lost.

Re:

[Chas]

While I agree with this to a certain extent, we start running into issues like we do with "hate crimes".

Do you REALLY give a shit why a criminal does something?

If I kill you, does it matter that I:

A) Just felt a deep-seated need to kill SOMETHING
B) Found out you shagged my wife and decided to remove both your heads with Mr. .45
C) Needed drug money and killing you was faster than arguing you into handing over your wallet
D) Decided to kill you because of your race/nationality/creed/sexual orientation/social-s

Words change

[Moraelin]

Welcome to the real world: words change meanings continuously. "Thing" once meant a council meeting (waay back in the norse times), now it mean, well, "thing". "Gay" once meant cheerful/happy, then it meant "homosexual", and now it's in the middle of becoming just "uncool". Etc.

That's how we ended up with so many languages. As a species we have a sort of a "Babel tower" mechanism built in. Get two communities isolated for long enough, and even starting from the same language you end up with two new languages or dialects. Each of the two changed words independently, and eventually you end up with the whole language of each not even resembling the language of the other. (Don't believe me? English and Greek both evolved from the same Indo-European roots.)

People hear some cool new word, or a new way to use an existing word, or some wisecrack and latch to it. And if it gets enough followers, there you go, you have a new word or a new meaning for a word.

Some cool kid uses, say, "twink" in a MMO once for someone buffed or equipped beyond the means of a normal player that level. Some people hear it, like it, and start using it too. Repeat a few iterations, and next thing you know it becomes the new primary meaning of that word in relation to MMOs.

And so it was with "hacker" too. Except this time it was also boosted by a whole generation of clueless journalists, who promptly bombarded everyone with their new meaning. Everyone has had it hammered into their heads that "hacker" doesn't mean the old-style "guy who really likes computers and doing amazingly hard/low-level stuff", but, yes, basically "high tech criminal".

As early as the end of the 90's I've had the surprise to hear even computer engineers using it that way. Yes, literally. I was for example at some training back then and the guy teaching goes, "anyone knows what a 'hacker' is?" Me: "Someone who really loves computers and programming?" Him: "Nope, a criminal breaking into other people's computers." Go figure.

So, way I figure it, we might as well let go. That battle is lost, and we don't even have the means to fight it. For every time you tell someone "no, no, no, 'hacker' was never supposed to mean 'criminal'", they'll promptly have a dozen TV show hosts, pseudo-tech journos, etc, hammering the opposite right back into them. That word is lost. By now it's not just "mis-used", it simply _is_ the new meaning of the word.

Give up, move on, find another one.

Re:

[RAMMS+EIN]

``Welcome to the real world: words change meanings continuously.''

Yes, but these are not just any words, they are technical jargon words. Part of the reason such jargon exists is to more clearly define how certain words and concepts relate. "Harddisk" does not refer to CD-ROMs, even though a CD-ROM is hard and a disc. "Computer" is not the same as "PC"; there are lots of computers that aren't PCs. Similarly, there are lots of hackers who aren't criminals.

Unfortunately, the mainstream press has adopted the w

Re:

[Moraelin]

Yes, but these are not just any words, they are technical jargon words. Part of the reason such jargon exists is to more clearly define how certain words and concepts relate. "Harddisk" does not refer to CD-ROMs, even though a CD-ROM is hard and a disc. "Computer" is not the same as "PC"; there are lots of computers that aren't PCs.

Very insightful and true... if you're a techie. For the rest of the population, though, it's just another word, subject to the same rules and changes as the rest of the language.

Re:

[RAMMS+EIN]

``Very insightful and true... if you're a techie. For the rest of the population, though, it's just another word, subject to the same rules and changes as the rest of the language.''

I bet, though, that most occupations have jargon words that have very specific meanings inside that occupation, but are much more loosely defined, if at all, outside that occupation. I hope that people will understand that taking a word from a jargon and entering into mainstream language with a different meaning does not aid und

Re:

[Moraelin]

Oh, I understand what you're saying, but that doesn't change that that's how it works. That's all I'm really saying. It may be unfair, it may be stupid, it may hurt a lot, but that word is still lost anyway.

And yeah, it's happened to other professions too. English is also not my mother tongue, and I don't live in an English-speaking country either, but I think I can come up with a few examples off the top of my head.

E.g., "butcher" is a very honourable profession normally (at least unless you ask a vegan;),

Re:

[Sancho]

"negative reinforcement" is often used by laymen to sound smarter when they mean "punishment." In fact, in Psychology, "negative reinforcement" is something of an oxymoron.

In vector physics, "acceleration" has a very different meaning from the general use of the word.

Specialized mathematicians have different meanings for various words like "product" (because you can be talking about several different types of arguments, such as scalar, vector, matrix, etc).

Generally, when you're talking to a specialist, th

Re:

[Moraelin]

If we're talking generally about why word meanings change, it's basically what I've said way up in the thread: because people like cool new ways of saying things.

If we're talking about how "hacker" changed meanings, my (uninformed) guess is, basically:

1. Because we nerds are a breed that other people don't understand.

Your average nerd (and it's pretty much one of the standard symptoms of Asperger's Syndrome too) has a narrow focus of interest, which he pursues in depth and just for the heck of it. Someone c

Re:

[Hoi Polloi]

You've lost the war of numbers. The vast majority of the population understands hacker to mean a criminal and no amount of arguing is going to change that. Another example, the word jihad technically means a personal struggle against spiritual obsticles but, at least in the West, has come to mean a violent struggle.

Re:

[swillden]

Another example, the word jihad technically means a personal struggle against spiritual obsticles but, at least in the West, has come to mean a violent struggle.

My understanding is that it actually means both. The "Greater Jihad" is the non-violent, internal struggle for personal righteousness, and the "Lesser Jihad" is the violent struggle against oppressors of the faithful.

Yes and no

[Moraelin]

Yes and no. What "jihad" may mean in day to day usage is one thing, but what it means in the religious context of the Koran is an obligation of all good muslims to defend a fellow muslim against a non-muslim aggressor. By force of arms, if it's an armed aggression. Admittedly, it's still _not_ the "aggressive terrorism against western freedom and democracy" that western media mis-represents it as. But it's not quite the generic neutral word for "struggle" either.

Same, if you will, as "communion" may simply

Re:

[Moraelin]

Well, at least that's the etymology I've heard of. I'm not a qualified linguist, I'm just a guy who reads a lot of useless bits of info, and then remembers less than half of it, you know? :)

But the version I've heard has it the English getting it from the Norse, during the Viking invasions, along with a bunch of other words. Either way, even in your example, it changed from ting=council in the old times to ting=thing in less old times. So I'd guess at least for Swedish that change of meaning holds true.

Re:

[mentrial]

OK, I know most of you are going to hate me for this, but English is a live language, words change meaning constantly, get over it already. I myself don't like using the word hacker to describe a computer criminal, but I don't go around wrongly correcting people when they do.

Hacker is used by 99% (and I'm being generous) of people to describe a computer criminal. Is a synonym of computer criminal, according to most sources, including the Britannica (I can feel your hateful eyes on me now).

Words are just con

Re:

[value_added]

Being a hacker is not a punishable offense. If criminals are using so-called "hacker" skills in criminal pursuits, they're still criminals. Call them criminals.

An unfortunate analogy, but it may be worthwhile to note that being called a pedophile is to be branded a dangerous criminal, despite the fact that the meaning of the term isn't synonymous with child rapist and, thought crimes aside, is as neutral as being considered an audiophile, bibliophile or an Anglophile.

Or am I talking semantics?

In the good ole days...

[Ingolfke]

Angelina Jolie, a bunch of punky but fun misfits, and I used to hack into evil businesses and expose their secret schemes to steal from the poor and opress the common man. We'd use holographic GUIs and paint our laptops... kids these days... well they've just ruined it all.

Re:In the good ole days...

[Bluesman]

Oh, come on. Back when they had Gibsons, hacking was a walk in the park. All you'd need to do was sit around and guess at typical passwords.

It's harder today, what with intrusion detection systems and ceramic baseball bats that will smash a boom box in nothing flat if you're caught.

Re:

[lpcustom]

Everyone knows that movie was fake...I mean the Devil Book. The Unix Bible........it was way too small in the film, maybe they had the abridged version.

The new mercenaries

[Billosaur]

Hackers are the 21st Century equivalent of the mercenary. Pay them enough money and they will do what you want. As long as someone somewhere feels the need to crack a database or extract sensitive information from some business/person, there will hackers ready to answer the call. Crack down on them, and all you do is reduce their number, weeding out the weak ones, and leaving a highly competitive and lucrative market for the strong ones.

Re:

[pilgrim23]

And the ones left after the battles,end up in control. When mercenaries are not paid, they usually exact tribute. When power resides in the Net, those who control the Net control.

Re:

[espressojim]

And then, just like in real life, someone holds a gun to their head, and reality asserts it's ugly superiority.

Let me know how much use 'control of the Net' is when someone's curbing your ass.

For all of people's views of superiority, when it comes down to it, any two bit criminal can rub out just about anyone on a whim. (exception: people with their own large security force.)

Steep Learning Curve

[Non-CleverNickName]

I tried to become a hacker once, but I suck at reading the Matrix code.

Re:

[Anonymous Coward]

Try the upgraded Da Vinci code.

Re:

[dcam]

Learn perl. Think of it as an intermediate step.

I know that we've already lost the war...

[Lord Kano]

The war for the meaning of the word "hacker", but come on now. If whatever you're doing is not for the satisfaction of the accomplishment, you're not really a hacker.

It's kind of like the distinction between a slut and a whore. Sluts do it because they enjoy it, whores do it for financial gain.

LK

More like....

[krell]

It's more like the difference between flammable and inflammable. I sure learned that one the hard way.

Re:

[just_another_sean]

Mmmmmmm..... Sluts.

Re:

[Arcane_Rhino]

So...

A hacker : slut broke into a pornographic database.

Hmmm. This story just gets better and better.

Re:

[Lost Race]

The hacker puts it back together after taking it apart to see what's inside.

The cracker takes any valuable parts and leaves a mess for someone else to clean up.

It's all about risk-reward

[Zaphod2016]

When it comes to (criminal) hacking, or any other illegal activity, the smart perp will consider the risk-reward of his behavior. Unless the potential payoff of a crime is significant, it simply does not make good economic sense to do it.

Example: say you offer me $100,000 to commit a crime which may carry a 10-year prison term. To me, such an opportunity is not worth the risk. Even at a low-wage job, I can earn $20,000 a year, $200,000 in a decade. Why would I sacrafice $200,000 of earning power (minimum) for a potential $100,000, to say nothing of legal fees, destroyed reputation and the horror of pound-me-in-the-ass Federal prison?

Back in the day, when I was a minor and thought I was invincible, I occasionally slipped between the gray and black, and did a few things that were not exactly kosher. However, my motive was not money, but rather the thrill of "showing them how smart I was". Had I been thinking clearly, or been subject to adult-level criminal law enforcement, I would have stuck to the benign aspects of hacking.

That said, would I ever "hack" illegally again? Yes- but only on the condition that I left my potential prison sentance with enough cash to retire early.

Re:

[99BottlesOfBeerInMyF]

When it comes to (criminal) hacking, or any other illegal activity, the smart perp will consider the risk-reward of his behavior. Unless the potential payoff of a crime is significant, it simply does not make good economic sense to do it.

This is a common perspective, but there is another motivation that comes into play. Most people are bound mostly by moral reasons to not commit crimes. What is interesting with computer crimes is they could easily have been a predicted consequence of globalization. Crim

Re:

[Zaphod2016]

Very true. If I lived in a developing nation, I'm sure I would jump at the chance to score $100,000- especially since my earning power would be nowhere near $20,000 per year.

As far as moral jusification goes, I argue that there is plenty of wealth disparity right here in the US to "justify" any criminal behavior a person might engage in. Especially if said criminal is already of an entitlement mentality.

Re:

[99BottlesOfBeerInMyF]

As far as moral jusification goes, I argue that there is plenty of wealth disparity right here in the US to "justify" any criminal behavior a person might engage in.

You're missing the point. Greater wealth disparity correlates with increased rates of robbery and many other crimes. It's not a case of "is there enough wealth disparity?" It is a case of wealth disparity being an order of magnitude greater and thus predictably crime rates with regard to that disparity are higher. This is statistics and quant

Re:

[Zaphod2016]

Greater wealth disparity correlates with increased rates of robbery and many other crimes.

The United States does indeed have a high crime rate [wikipedia.org] and large wealth disparity [google.com], which fits the above theory. However, I also came across another factoid which suprised me:

Having a resident population of just over 500, and millions of tourists every year, Vatican City has the highest crime rate per capita of any nation on earth, with penal offences at 133.6% in 2002. [wikipedia.org]

Of course, if I understand you correctly, y

Re:

[99BottlesOfBeerInMyF]

Of course, if I understand you correctly, your point was that International wealth disparity is even greater than that within the US, and therefore, increased globalization results in increased (property) crime. It "makes perfect sense" to me, but I'm having trouble finding the stats to back it up.

Let me clear up a few points. I'm not talking about crime rates. I'm specifically talking about theft and violent crimes. Make drinking beer a crime in Ireland and try to enforce it and it will have the highest

Re:

[Mad Marlin]

Let's say you have a 10% chance of getting caught stealing that $100,000, which means a 90% chance of getting away with it. Let's say you have a 100% chance of keeping that $20,000 a year job for as long as you want it, or some other one of equal value. Let's say that you will get ten years in jail for getting caught. Ignoring interest, inflation, morality, etc., you have a 10% chance of losing $200,000, and a 90% chance of gaining $100,000. The expected return is therefore $90,000 - $20,000 = $70,000.

Re:

[pipingguy]

That said, would I ever "hack" illegally again? Yes- but only on the condition that I left my potential prison sentance with enough cash to retire early.

So it's OK to trade-off time and respect (self and others') for the cash payoff in the end? I don't quite get this retirement plan.

Re:

[Zaphod2016]

Show me a fortune, I'll show you a crime.

Everything else is semantics.

Feds & Prosecuters don't care

[Anonymous Coward]

Several years ago we filed a case with the FBI over an issue where a spammer hacked into our system. We gathered logs and had details on exactly where they came from and where they were operating. In this case it was an American. We had overwhelming evidence of credit card fraud, hacking major networks, as well as computer tampering and lots of monetary damage and interruption of e-commerce. We did most of the work -- the FBI basically collected the information we provided and did little investigating of their own, and then presented the case to the attorney general in two separate jursidictions, at which point our case was blown off. No wonder the hacker/spammers aren't scared. The authorities are apathetic and unmotivated to prosecute people in these fields when they clearly break the law. The exception seems to be if you're a child who has annoyed a very large corporation.

I'm safe...

[Shawn is an Asshole]

I have a hacking permit [jinx.com].

Hacking costs BILLIONS

[Shohat]

Quite frankly, I don't understand why there is almost no active lobbying for harsh laws towards hacking. Just think about it - When launching an online server, be it an an application server , gaming or communication server , a hosting service or a website - what is your most major concern after the development is over(even if the development was done with it in mind )?
Security. The FEAR of getting your server hacked pretty much doubles the development cycle, and is around 70% of the patches and fixes is

Re:

[Xentor]

I bet I know why there's no lobbying group against black-hats...

Every time they put up an online petition, their site gets cracked and replaced with goatse.

Wow....

[hendersj]

The tag ("duh") really drives the point home. Obviously those who are engaged in any illegal activity aren't afraid of getting caught. If they were, they wouldn't engage in the activity - or they're just plain stupid. Maybe instead of being "from the they-are-masters-of-disguises dept." this one should've been "from the stating-the-bleeding-obvious dept."

Risks?

[BobSutan]

Very little risk you say? What about this guy?

http://blog.wired.com/27bstroke6/2006/11/boarding_ pass_h.html [wired.com]

Re:

[Fulcrum of Evil]

His crime was embarrasing someone in power. This is always a risky proposition.

Indentity Theft

[Deliveranc3]

I think everyone on Slashdot knows that if you NEEDED to make a few million dollars in a month your best bet is identity theft, sell a few people's houses and you're rich.

It's low risk, technically simple but you hurt a very specific person who you have to learn a lot about.

It's a bit scary how easy it would be to make money though identity theft.

But considering Slashdot's heavy Linux "Give back" ethical system and hoping it's somewhat indicitive of creative techies everywhere hopefully we'll find a s

Re:

[otacon]

I'd have to say I share the same philosophy as you. While I have 'hacker' roots and a 'hacker' mindset, that doesn't mean I break into things that aren't mine and break laws. Not to say I couldn't, I just don't care to. Even when I was younger and some of the things I did to learn and experiement may have been questionable, I would have never done it for anyone else, it was all for my personal desire to learn, not a financial motivation.

Re:

[Pojut]

unfortunately, that desire to simply LEARN is what has slipped away and given rise to the new definition of the term hacker.

A true hacker desires KNOWLEDGE. Not power, not finances, KNOWLEDGE. That is the hacker's reward.

Not retarded WinNuke attacks (showing my age slightly), not stealing identities, not peeking at your hard drive...knowledge. The knowledge of how things work, why they work, what DOESN'T work, and what can be done to make them work BETTER.

Re:

[ezzzD55J]

...word is that several MAJOR adult sites got their membership(but not CC) databases compromised this weekend. 500k+ members on each site. I've seen the records, verified a login or two. Complete SQL dumps.
Honestly, freaked me the fuck out.
The lady(yes, lady) who did it still has access.
From what I've heard, of course.

Why were you even surprised? Websites leaking their db's isn't exactly uncommon.