Instructions: Hacker Culture and Mitigation
Course Objective: Examine hacker culture and related psychological and cultural aspects of cybersecurity from both the malicious actor and user's perspectives.
Competencies: Critical thinking, communication skills
Each student is assigned an organization (e.g., a private company or a government agency) and is asked to identify a significant past incident in cybercrime or cyberwarfare related to this organization. The student will fully discuss the specifics of the cyber incident and analyze the motivation of the threat actors/attackers. Analyze the possible motivations of those who worked to defend assets against disruption, and describe motivations of any possible third-parties that may also have been involved. The student will also suggest methods for the organization to discourage hackers or intruders with similar motives and suggest management, policy or technology controls to protect the organization against similar attacks.
Your paper should describe the type of incident and the actors: personalities, motivations, and other contributing cultural or psychological characteristics. You will find Module "Psychological Aspects of Cybersecurity" helpful with this assignment. Link your analysis to previous readings, interactive modules, and discussion topics, with appropriate citations.
At a minimum, the questions you must address are listed below:
a. What descriptive labels might apply to this type of threat/incident?
b. Regarding the threat actors:
What sort of people would go after this information?
Why would they want it?
What will/can they do with it?
How would they get it?
How would potential attackers be identified?
c. How would the organization try to discourage, or reduce the incentives that could attract possible threat actors?
d. How would the organization protect against, or reduce damaging effects due to attempted attacks?