A Place to Hang Our Hats: Security Community and Culture by Domenic Rizzolo
1 like•480 views
The document discusses the evolution of hacker culture and the security community, highlighting a significant growth in both law enforcement and corporate sectors, which may have changed the values of hackers. It notes that the increase in punishment laws and corporate partnerships has led to a decline in traditional hacking collectives, with many hackers now pursuing legitimate avenues in information security. Additionally, it mentions the rise of organized crime in cyber activities and the emergence of responsible disclosure practices within the community.
![Out of the Fire, Into the Flame War
● LOD & MOD
● DOJ & over-curious young people
● Lulzsec & Anonymous
● Groups like w00w00, l0pht, [insert group
you’re outraged I didn’t include]](https://image.slidesharecdn.com/bsidesprezo-140812152713-phpapp02/85/A-Place-to-Hang-Our-Hats-Security-Community-and-Culture-by-Domenic-Rizzolo-11-320.jpg)
A Place to Hang Our Hats: Security Community and Culture by Domenic Rizzolo
- 1. A Place to Hang Our Hats Security Community and Culture @NotDomenic
- 6. The Alpha and the Omega Kevin Mitnick was the first and only hacker, lead Anon to glory, took down the FBI, made Tor untraceable, and hacked the alien mothership on the 4th of July.
- 8. while author != tech_literate: if narrative < truth and news_day == slow: story = facts.sensationalized() + scare_factor print headline.cyber() + story else: print repackaged_content.rand() Let’s Make an Algorithm!!
- 9. (Sidebar) Terms to avoid: ● “Cyber”.* ● Console Cowboys ● Authentification ● Cracker (confusion)
- 11. Out of the Fire, Into the Flame War ● LOD & MOD ● DOJ & over-curious young people ● Lulzsec & Anonymous ● Groups like w00w00, l0pht, [insert group you’re outraged I didn’t include]
- 12. Guiding Question Are we seeing significant changes and declines in hacker culture and the size of the hacking community? Maybe?
- 13. Growth Led to Decline Proposal: Growth in the security community has changed its values and makeup. ● Corporate Growth ● Law Enforcement Growth ● Growth in Field Population
- 14. Growth
- 15. Growth
- 17. Growth: FBI ● FBI Alone saw >350% growth in Intelligence Officers (support, non- special agents) in 90’s ○ 1992: 224 ○ 2000: 1027
- 19. Growth: NSA ● 11,000+ new employees between 2001-2013 ● Fort Meade Facility > Pentagon ● budget_nsa *= 2 ● Private contracting companies ○ Pre-2001: ~150 companies ○ 2010: ~ 500 companies
- 20. Growth
- 21. Growth
- 22. Growth: Punishment ● Congress and Lobbies push: ○ CFAA ○ USA PATRIOT Act ○ DMCA
- 24. Growth of InfoSec: Decline of Goups? ● With a growth in both backing of and leaning on security infrastructure, disclosure has become more frequent ● Wouldn’t we expect to see more hacking collectives?
- 25. Growth: C****-Crime ● Organized crime, sometimes even state- sponsored, have taken on some l33t haxors as assets. ● Dark Net, Botnets, Anonymity Tools disincentivize strong open group collaboration ● Major busts: Just one leak
- 26. Growth: Responsible Disclosure ● Old Crackers, Sneakers now have avenues to pursue legitimate “cracking”, “sneaking” ○ More profitable ones too: Biggest bug bounties now worth 3.877+ ISS’s ● Growing up, settling down, torrenting hacker children ● Less teenage angst
- 27. Enter Enterprise ● Students & youngins’ pursuing entrepreneurial and app “hacks”
- 28. Omnipresent: Troll & Co
- 29. Omnipresent: Troll & Co
- 30. Thank You’s ● Zach Lanier ● Chris Czub ● Vikas Kumar ● Mark Stanislav ● Jon Oberheide ● Tyler Shields ● Your patience for n00bs
- 31. Q & (Hopefully) A