BESTLINK COLLEGE OF THE PHILIPPINES

1071 Brgy. Kaligayahan St. Brgy Sta Monica Novaliches

Quezon City

COMPUTER HACKING

Name: Habijan, Gian Karlo M.

Course&Section: BSIT-1208
Instructior: Mrs. Thelma Borilla

TABLE OF CONTENTS
INTRODUCTION1
PART 1:
HISTORY OF COMPUTER HACKING...2
PART 2:
CLASSIFICATIONS OF COMPUTER HACKING.3
TYPES OF HACKER.3
PART 3:
COMPUTER VIRUSES.6
ILOVEYOU VIRUS.i
CODE RED.ii
MELISSA.iii
SASSER..iv
ZEUS.v
CONFLICKER.vi
STUXNETvii
MYDOOM.viii
CRYPTOLOCKER...ix
FLASHBACK.x
PART 4:
NOTABLE INTRUDERS AND CRIMINAL HACKERS10
PART 5:
ATTACKS11
THESIS15
CONCLUSION16
BIBLIOGRAPHY.17

..

INTRODUCTION:
In the computer security context, a hacker is someone who seeks
and exploits weaknesses in a computer system or computer network. Hackers may be
motivated by a multitude of reasons, such as profit, protest, challenge, enjoyment, or to
evaluate those weaknesses to assist in removing them. The subculture that has evolved
around hackers is often referred to as the computer underground and is now a
known community. While other uses of the word hacker exist that are not related to
computer security, such as referring to someone with an advanced understanding of
computers and computer networks, they are rarely used in mainstream context. [4] They
are subject to the longstanding hacker definition controversy about the term's true
meaning. In this controversy, the term hacker is reclaimed bycomputer
programmers who argue that someone who breaks into computers, whether computer
criminal (black hats) or computer security expert (white hats), is more appropriately
called a cracker instead.[6] Some white hat hacker claim that they also deserve the
title hacker, and that only black hats should be called "crackers".

HISTORY OF COMPUTER HACKING:

In computer security, a hacker is someone who focuses on security mechanisms of
computer and network systems. While including those who endeavor to strengthen such
mechanisms, it is more often used by the mass media and popular culture to refer to
those who seek access despite these security measures. That is, the media portrays
the 'hacker' as a villain. Nevertheless, parts of the subculture see their aim in correcting
security problems and use the word in a positive sense. White hat is the name given to
ethical computer hackers, who utilize hacking in a helpful way. White hats are becoming
a necessary part of the information security field. [7] They operate under a code, which
acknowledges that breaking into other people's computers is bad, but that discovering
and exploiting security mechanisms and breaking into computers is still an interesting
activity that can be done ethically and legally. Accordingly, the term bears strong
connotations that are favorable or pejorative, depending on the context.
The subculture around such hackers is termed network hacker subculture, hacker
scene or computer underground. It initially developed in the context of phreaking during
the 1960s and the microcomputer BBS scene of the 1980s. It is implicated with 2600:
The Hacker Quarterly and the alt.2600 newsgroup.
In 1980, an article in the August issue of Psychology Today (with commentary by Philip
Zimbardo) used the term "hacker" in its title: "The Hacker Papers". It was an excerpt
from a Stanford Bulletin Board discussion on the addictive nature of computer use. In
the 1982 film Tron, Kevin Flynn (Jeff Bridges) describes his intentions to break into
ENCOM's computer system, saying "I've been doing a little hacking here". CLU is
the software he uses for this. By 1983, hacking in the sense of breaking computer
security had already been in use as computer jargon, [8] but there was no public
awareness about such activities.[9] However, the release of the film WarGames that
year, featuring a computer intrusion into NORAD, raised the public belief that computer
security hackers (especially teenagers) could be a threat to national security. This
concern became real when, in the same year, a gang of teenage hackers in Milwaukee,
Wisconsin, known as The 414s, broke into computer systems throughout the United
States and Canada, including those ofLos Alamos National Laboratory, Sloan-Kettering
Cancer Center and Security Pacific Bank.[10] The case quickly grew media attention,[10]
[11]
and 17-year-old Neal Patrick emerged as the spokesman for the gang, including a
cover story in Newsweek entitled "Beware: Hackers at play", with Patrick's photograph
on the cover.[12] The Newsweekarticle appears to be the first use of the word hacker by
the mainstream media in the pejorative sense.
Pressured by media coverage, congressman Dan Glickman called for an investigation
and began work on new laws against computer hacking. [13][14] Neal Patrick testified
before the U.S. House of Representatives on September 26, 1983, about the dangers of
computer hacking, and six bills concerning computer crime were introduced in the
House that year.[14] As a result of these laws against computer criminality, white
hat, grey hat and black hat hackers try to distinguish themselves from each other,
depending on the legality of their activities. These moral conflicts are expressed in The
Mentor's "The Hacker Manifesto", published 1986 in Phrack.
2

CLASSIFICATIONS OF COMPUTER HACKING:

Several subgroups of the computer underground with different attitudes use different
terms to demarcate themselves from each other, or try to exclude some specific group
with whom they do not agree.
Eric S. Raymond, author of The New Hacker's Dictionary, advocates that members of
the computer underground should be called crackers. Yet, those people see themselves
as hackers and even try to include the views of Raymond in what they see as a wider
hacker culture, a view that Raymond has harshly rejected. Instead of a hacker/cracker
dichotomy, they emphasize a spectrum of different categories, such as white hat, grey
hat, black hat and script kiddie. In contrast to Raymond, they usually reserve the
termcracker for more malicious activity.

TYPES OF HACKERS:

WHITE HAT:
A white hat hacker breaks security for non-malicious reasons, perhaps to test their own
security system or while working for a security company which makes security software.
The term "white hat" in Internet slang refers to an ethical hacker. This classification also
includes individuals who perform penetration tests and vulnerability assessments within
a contractual agreement. The EC-Council, also known as the International Council of
Electronic Commerce Consultants, is one of those organizations that have developed
certifications, courseware, classes, and online training covering the diverse arena of
ethical hacking.[16]

3
BLACK HAT:
A "black hat" hacker is a hacker who "violates computer security for little reason beyond
maliciousness or for personal gain" (Moore, 2005). Black hat hackers form the
stereotypical, illegal hacking groups often portrayed in popular culture, and are "the
epitome of all that the public fears in a computer criminal". [19] Black hat hackers break
into secure networks to destroy, modify, or steal data; or to make the network unusable
for those who are authorized to use the network. Black hat hackers are also referred to
as the "crackers" within the security industry and by modern programmers. Crackers
keep the awareness of the vulnerabilities to themselves and do not notify the general
public or the manufacturer for patches to be applied. Individual freedom and
accessibility is promoted over privacy and security. Once they have gained control over
a system, they may apply patches or fixes to the system only to keep their reigning
control. Richard Stallman invented the definition to express the maliciousness of a
criminal hacker versus a white hat hacker who performs hacking duties to identify
places to repair.
GREY HAT:
A grey hat hacker lies between a black hat and a white hat hacker. A grey hat hacker
may surf the Internet and hack into a computer system for the sole purpose of notifying
the administrator that their system has a security defect, for example. They may then
offer to correct the defect for a fee.[19] Grey hat hackers sometimes find the defect of a
system and publish the facts to the world instead of a group of people. Even though
grey hat hackers may not necessarily perform hacking for their personal gain,
unauthorized access to a system can be considered illegal and unethical.

ELITE HAT:
A social status among hackers, elite is used to describe the most skilled. Newly
discovered exploits circulate among these hackers. Elite groups such as Masters of
Deceptionconferred a kind of credibility on their members.

SCRIPT KIDDIE:
A script kiddie (also known as a skid or skiddie) is an unskilled hacker who breaks into
computer systems by using automated tools written by others (usually by other black
hat hackers), hence the term script (i.e. a prearranged plan or set of activities) kiddie
(i.e. kid, childan individual lacking knowledge and experience, immature), usually with
little understanding of the underlying concept.
NEOPHYTE
A neophyte ("newbie", or "noob") is someone who is new to hacking or phreaking and
has almost no knowledge or experience of the workings of technology and hacking.
BLUE HAT
A blue hat hacker is someone outside computer security consulting firms who is used to
bug-test a system prior to its launch, looking for exploits so they can be
closed. Microsoftalso uses the term BlueHat to represent a series of security briefing
events.
HACKTIVIST
A hacktivist is a hacker who utilizes technology to publicize a social, ideological,
religious or political message.
Hacktivism can be divided into two main groups:

Cyberterrorism Activities involving website defacement or denial-of-service

attacks; and,

Freedom of information Making information that is not public, or is public in

non-machine-readable formats, accessible to the public.

NATION STATE:
Intelligence agencies and cyberwarfare operatives of nation states.[26]
Organized criminal gangs
Groups of hackers that carry out organized criminal activities for profit. [26]

5
COMPUTER VIRUSES:
1. ILOVEYOU
The ILOVEYOU virus is considered one of the most virulent computer virus ever
created and its not hard to see why. The virus managed to wreck havoc on computer
systems all over the world, causing damages totaling in at an estimateof $10 billion.
10% of the worlds Internet-connected computers were believed to have been infected.
It was so bad that governments and large corporations took their mailing system
offline to prevent infection.
The virus was created by two Filipino programers, Reonel Ramones and Onel de
Guzman. What it did was use social engineering to get people to click on the
attachment; in this case, a love confession. The attachment was actually a script that
poses as a TXT file, due to Windows at the time hiding the actual extension of the file.
Once clicked, it will send itself to everyone in the users mailing list and proceed to
overwrite files with itself, making the computer unbootable. The two were never
charged, as there were no laws about malware.This led to the enactment of the ECommerce Law to address the problem.
2. Code Red
Code Red first surfaced on 2001 and was discovered by two eEye Digital Security
employees. It was named Code Red because the the pair were drinking Code Red
Mountain Dew at the time of discovery. The worm targeted computers with Microsoft IIS
web server installed, exploiting a buffer overflow problem in the system. It leaves very
little trace on the hard disk as it is able to run entirely on memory, with a size of 3,569
bytes. Once infected, it will proceed to make a hundred copies of itself but due to a bug

in the programming, it will duplicate even more and ends up eating a lot of the systems
resources.

3. Melissa
Named after an exotic dancer from Florida, it was created by David L. Smith in 1999. It
started as an infected Word document that was posted up on the alt.sex usenet group,
claiming to be a list of passwords for pornographic sites. This got people curious and
when it was downloaded and opened, it would trigger the macro inside and unleash its
payload. The virus will mail itself to the top 50 people in the users email address
book and this caused an increase of email traffic, disrupting the email services of
governments and corporations. It also sometimes corrupted documents by inserting a
Simpsons reference into them.
4. Sasser
A Windows worm first discovered in 2004, it was created by computer science student
Sven Jaschan, who also created the Netsky worm. While the payload itself may be seen
as simply annoying (it slows down and crashes the computer, while making it hard to
reset without cutting the power), the effects were incredibly disruptive, with millions of
computers being infected, and important, critical infrastructure affected. The worm took
advantage of a buffer overflow vulnerability in Local Security Authority Subsystem
Service (LSASS), which controls the security policy of local accounts causing crashes to
the computer. It will also use the system resources to propagate itself to other machines
through the Internet and infect others automatically.
5. Zeus
Zeus is a Trojan horse made to infect Windows computers so that it will perform various
criminal tasks. The most common of these tasks are usually man-in-the-browser

keylogging and form grabbing. The majority of computers were infected either through
drive-by downloads or phishing scams. First identified in 2009, it managed
to compromise thousands of FTP accounts and computers from large multinational
corporations and banks such as Amazon, Oracle, Bank of America, Cisco, etc.
Controllers of the Zeus botnet used it to steal the login credentials of social network,
email and banking accounts.
6. Conficker
Also known as Downup or Downadup, Conficker is a worm of unknown authorship for
Windows that made its first appearance in 2008. The name comes form the English
word, configure and a German pejorative.It infects computers using flaws in the OS to
create a botnet. The malware was able to infect more than 9 millions computers all
around the world, affecting governments, businesses and individuals. It was one of the
largest known worm infections to ever surface causing an estimate damage of $9 billion.
7. Stuxnet
Believed to have been created by the Israeli Defence Force together with the American
Government, Stuxnet is an example of a virus created for the purpose of cyberwarfare,
as it was intended to disrupt the nuclear efforts of the Iranians. It was estimated that
Stuxnet has managed to ruin one fifth of Irans nuclear centrifuges and that nearly 60%
of infections were concentrated in Iran.
8. Mydoom
Surfacing in 2004, Mydoom was a worm for Windows that became one of the
fastest spreading email worm since ILOVEYOU. The author is unknown and it is
believed that the creator was paid to create it since it contains the text message, andy;
Im just doing my job, nothing personal, sorry,. It was named by McAfee employee
Craig Schmugar, one of the people who had originally discovered it. mydom was a line

of text in the programs code (my domain) and sensing this was going to be big, added
doom into it.

9. CryptoLocker
CryptoLocker is a form of Trojan horse ransomware targeted at computers running
Windows. It uses several methods to spread itself, such as email, and once a computer
is infected, it will proceed to encrypt certain files on the hard drive and any mounted
storage connected to it with RSA public key cryptography. While it is easy enough to
remove the malware from the computer, the files will still remain encrypted. The only
way to unlock the files is to pay a ransom by a deadline. If the deadline is not met, the
ransom will increase significantly or the decryption keys deleted. The ransom usually
amount to $400 in prepaid cash or bitcoin.
10. Flashback
Though not as damaging as the rest of the malware on this list, this is one of the few
Mac malware to have gain notoriety as it showed that Macs are not immune. The Trojan
was first discovered in 2011 by antivirus company Intego as a fake Flash install. In its
newer incarnation, a user simply needs to have Java enabled (which is likely the
majority of us). It propagates itself by using compromised websites containing
JavaScript code that will download the payload. Once installed, the Mac becomes part
of a botnet of other infected Macs.

NOTABLE INTRUDERS & HACKERS:

Main article: List of computer criminals
Notable security hackers
Main article: List of hackers

Jacob Appelbaum is an advocate, security researcher, and developer for

the Tor project. He speaks internationally for usage of Tor by human rights groups
and others concerned about Internet anonymity and censorship.

Eric Corley (also known as Emmanuel Goldstein) is the longstanding publisher

of 2600: The Hacker Quarterly. He is also the founder of the Hackers on Planet
Earth (HOPE) conferences. He has been part of the hacker community since the
late 1970s.

Ed Cummings (also known as Bernie S) is a longstanding writer for 2600: The

Hacker Quarterly. In 1995, he was arrested and charged with possession of
technology that could be used for fraudulent purposes, and set legal precedents
after being denied both a bail hearing and a speedy trial.

Dan Kaminsky is a DNS expert who exposed multiple flaws in the protocol and
investigated Sony's rootkit security issues in 2005. He has spoken in front of the
United States Senate on technology issues.

Andrew Auernheimer, sentenced to 3 years in prison, is a grey hat hacker whose

security group Goatse Security exposed a flaw in AT&T's iPad security.

Gordon Lyon, known by the handle Fyodor, authored the Nmap Security
Scanner as well as many network security books and web sites. He is a founding
member of theHoneynet Project and Vice President of Computer Professionals for
Social Responsibility.

Gary McKinnon is a Scottish hacker who was facing extradition to the United
States to face criminal charges. Many people in the UK called on the authorities to
be lenient with McKinnon, who suffers from Asperger syndrome. The extradition has
now been dropped.[30]

Kevin Mitnick is a computer security consultant and author, formerly the most
wanted computer criminal in United States history.[31]

Rafael Nez, a.k.a. RaFa, was a notorious hacker who was sought by
the Federal Bureau of Investigation in 2001. He has since become a respected
computer security consultant and an advocate of children's online safety.
10

ATTACKS:
Vulnerability scanner
A vulnerability scanner is a tool used to quickly check computers on a network for
known weaknesses. Hackers also commonly use port scanners. These check to
see which ports on a specified computer are "open" or available to access the
computer, and sometimes will detect what program or service is listening on that
port, and its version number. (Firewalls defend computers from intruders by
limiting access to ports and machines, but they can still be circumvented.)
Finding vulnerabilities
Hackers may also attempt to find vulnerabilities manually. A common approach is
to search for possible vulnerabilities in the code of the computer system then test
them, sometimes reverse engineering the software if the code is not provided.
Brute-force attack
Password guessing. This method is very fast when used to check all short
passwords, but for longer passwords other methods such as the dictionary attack
are used, because of the time a brute-force search takes.
Password cracking
Password cracking is the process of recovering passwords from data that has
been stored in or transmitted by a computer system. Common approaches
include repeatedly trying guesses for the password, trying the most common

passwords by hand, and repeatedly trying passwords from a "dictionary", or a

text file with many passwords.
Packet analyzer
A packet analyzer ("packet sniffer") is an application that captures data packets,
which can be used to capture passwords and other data in transit over the
network.

11
Spoofing attack (phishing)
A spoofing attack involves one program, system or website that successfully
masquerades as another by falsifying data and is thereby treated as a trusted
system by a user or another program usually to fool programs, systems or
users into revealing confidential information, such as user names and
passwords.
Rootkit
A rootkit is a program that uses low-level, hard-to-detect methods to subvert
control of an operating system from its legitimate operators. Rootkits usually
obscure their installation and attempt to prevent their removal through a
subversion of standard system security. They may include replacements for
system binaries, making it virtually impossible for them to be detected by
checking process tables.
Social engineering
In the second stage of the targeting process, hackers often use Social
engineering tactics to get enough information to access the network. They may contact
the system administrator and pose as a user who cannot get access to his or her
system. This technique is portrayed in the 1995 film Hackers, when protagonist Dade
"Zero Cool" Murphy calls a somewhat clueless employee in charge of security at a
television network. Posing as an accountant working for the same company, Dade tricks
the employee into giving him the phone number of a modem so he can gain access to
the company's computer system.

Hackers who use this technique must have cool personalities, and be familiar with their
target's security practices, in order to trick the system administrator into giving them
information. In some cases, a help-desk employee with limited security experience will
answer the phone and be relatively easy to trick. Another approach is for the hacker to
pose as an angry supervisor, and when his/her authority is questioned, threaten to fire
the help-desk worker. Social engineering is very effective, because users are the most
vulnerable part of an organization. No security devices or programs can keep an
organization safe if an employee reveals a password to an unauthorized person.

12
Social engineering can be broken down into four sub-groups:

Intimidation As in the "angry supervisor" technique above, the hacker

convinces the person who answers the phone that their job is in danger
unless they help them. At this point, many people accept that the hacker is a
supervisor and give them the information they seek.

Helpfulness The opposite of intimidation, helpfulness exploits many people's

natural instinct to help others solve problems. Rather than acting angry, the
hacker acts distressed and concerned. The help desk is the most vulnerable
to this type of social engineering, as (a.) its general purpose is to help people;
and (b.) it usually has the authority to change or reset passwords, which is
exactly what the hacker wants.

Name-dropping The hacker uses names of authorized users to convince the

person who answers the phone that the hacker is a legitimate user him or
herself. Some of these names, such as those of webpage owners or
company officers, can easily be obtained online. Hackers have also been
known to obtain names by examining discarded documents (socalled "dumpster diving").

Technical Using technology is also a way to get information. A hacker can send a fax or
email to a legitimate user, seeking a response that contains vital information. The
hacker may claim that he or she is involved in law enforcement and needs certain data
for an investigation, or for record-keeping purposes
.
Trojan horses
A Trojan horse is a program that seems to be doing one thing but is actually doing
another. It can be used to set up a back door in a computer system, enabling the
intruder to gain access later. (The name refers to the horse from the Trojan War, with
the conceptually similar function of deceiving defenders into bringing an intruder into a
protected area.)
13

Computer virus
A virus is a self-replicating program that spreads by inserting copies of itself into other
executable code or documents. By doing this, it behaves similarly to a biological virus,
which spreads by inserting itself into living cells. While some viruses are harmless or
mere hoaxes, most are considered malicious.
Computer worm
Like a virus, a worm is also a self-replicating program. It differs from a virus in that (a.) it
propagates through computer networks without user intervention; and (b.) does not
need to attach itself to an existing program. Nonetheless, many people use the terms
"virus" and "worm" interchangeably to describe any self-propagating program.
Keystroke logging
A keylogger is a tool designed to record ("log") every keystroke on an affected machine
for later retrieval, usually to allow the user of this tool to gain access to confidential
information typed on the affected machine. Some keyloggers use virus-, trojan-, and
rootkit-like methods to conceal themselves. However, some of them are used for
legitimate purposes, even to enhance computer security. For example, a business may
maintain a keylogger on a computer used at a point of sale to detect evidence of
employee fraud.

14
THESIS:
Hacking has become such a problem in today's computer dependent society that
stronger measures must be implemented to stop hackers, and if hackers are still
successful, they should be severely punished.
A. With the amount of businesses and corporations we depend on every day, we can't
have hackers breaking in our systems because it causes so many problems with
peoples jobs, and sometimes can cost us lots of money.
B. So many people rely on computers to get around, communicate and keep track of the
things they have to do, when a hacker breaks into a system, it can sometimes
temporarily ruin someone's life.
A. Many people now use Anti-Virus software that can prevent people from using
programs that have been tampered with that could cause damage to a system.
B. Internet security has gotten better and better by the year. It is relatively hard for even
the best of hackers to break into a computer due to the strict security and punishment.

Although, if hacking is done, and a hacker is caught, the consequinces are sometimes
not that wonderful...Most hackers caught breaking into anything more than a personal
system are prosecuted and face a large fine or a jail sentence.

15

CONCLUSION:

Hackers need to be stopped because of the severe problems they can cause. Hopefully,
people will soon realize the consequinces of computer hacking and will stop. With all the
problems it causes, something has to be done.

16

BIBLIOGRAPHY:
1.

Sterling, Bruce (1993). "Part 2(d)". The Hacker Crackdown. McLean,

Virginia: IndyPublish.com. p. 61. ISBN 1-4043-0641-2.

2.

Jump up^ Blomquist, Brian (May 29, 1999). "FBI's Web Site Socked
as Hackers Target Feds".New York Post.

3.

Jump up^ "The Hacker's Dictionary". Retrieved 23 May 2013.

4.

Jump up^ Yagoda, Ben. "A Short History of "Hack"". The New Yorker.
Retrieved November 3,2015.

5.

Jump up^ Political notes from 2012: SeptemberDecember.

stallman.org

6.

Jump up^ Raymond, Eric S. "Jargon File: Cracker". Coined ca. 1985
by hackers in defense against journalistic misuse of hacker

7.

Jump up^ Caldwell, Tracey (22 July 2011). "Ethical hackers: putting on
the white hat". Network Security 2011 (7): 1013. doi:10.1016/s13534858(11)70075-7.

8.

Jump up^ See the 1981 version of the Jargon File, entry "hacker", last
meaning.

9.

Jump up^ "Computer hacking: Where did it begin and how did it
grow?". WindowSecurity.com. October 16, 2002.

10.

^ Jump up to:a b Elmer-DeWitt, Philip (August 29, 1983). "The 414

Gang Strikes Again". Time. p. 75.

11.

Jump up^ Detroit Free Press. September 27, 1983. Missing or empty |
title= (help)

12.

Jump up^ "Beware: Hackers at play". Newsweek. September 5, 1983.

pp. 4246, 48.

13.

Jump up^ "Timeline: The U.S. Government and

Cybersecurity". Washington Post. 2003-05-16. Retrieved 2006-04-14.

14.

^ Jump up to:a b David Bailey, "Attacks on Computers: Congressional

Hearings and Pending Legislation," sp, p. 180, 1984 IEEE Symposium on
Security and Privacy, 1984.

15.

Jump up^ Clifford, D. (2011). Cybercrime: The Investigation,

Prosecution and Defense of a Computer-Related Crime. Durham, North
Carolina: Carolina Academic Press.ISBN 1594608539.

16.

^ Jump up to:a b Wilhelm, Douglas (2010). "2". Professional

Penetration Testing. Syngress Press. p. 503. ISBN 978-1-59749-425-0.

17.
18.

Jump up^ EC-Council. eccouncil.org

Jump up^ Moore, Robert (2005). Cybercrime: Investigating High
Technology Computer Crime. Matthew Bender & Company. p. 258. ISBN Robert
Moore

17