DOCSLIB.ORG

Network Security in Virtualized Data Centers for Dummies®

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Network Security in Virtualized Data Centers for Dummies® These materials are the copyright of John Wiley & Sons, Inc. and any dissemination, distribution, or unauthorized use is strictly prohibited. Network Security in Virtualized Data Centers FOR DUMmIES‰ by Lawrence C. Miller, CISSP These materials are the copyright of John Wiley & Sons, Inc. and any dissemination, distribution, or unauthorized use is strictly prohibited. Network Security in Virtualized Data Centers For Dummies® Published by John Wiley & Sons, Inc. 111 River St. Hoboken, NJ 07030-5774 www.wiley.com Copyright © 2012 by John Wiley & Sons, Inc., Hoboken, New Jersey Published by John Wiley & Sons, Inc., Hoboken, New Jersey No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, scanning or otherwise, except as permitted under Sections 107 or 108 of the 1976 United States Copyright Act, without the prior written permission of the Publisher. Requests to the Publisher for permission should be addressed to the Permissions Department, John Wiley & Sons, Inc., 111 River Street, Hoboken, NJ 07030, (201) 748-6011, fax (201) 748-6008, or online at http://www.wiley.com/go/permissions. Trademarks: Wiley, the Wiley logo, For Dummies, the Dummies Man logo, A Reference for the Rest of Us!, The Dummies Way, Dummies.com, Making Everything Easier, and related trade dress are trademarks or registered trademarks of John Wiley & Sons, Inc. and/or its affiliates in the United States and other countries, and may not be used without written permission. Palo Alto Networks and the Palo Alto Networks logo are trademarks or registered trademarks of Palo Alto Networks, Inc. All other trademarks are the property of their respective owners. John Wiley & Sons, Inc., is not associated with any product or vendor mentioned in this book. LIMIT OF LIABILITY/DISCLAIMER OF WARRANTY: THE PUBLISHER AND THE AUTHOR MAKE NO REPRESENTATIONS OR WARRANTIES WITH RESPECT TO THE ACCURACY OR COMPLETENESS OF THE CONTENTS OF THIS WORK AND SPECIFICALLY DISCLAIM ALL WARRANTIES, INCLUDING WITHOUT LIMITATION WARRANTIES OF FITNESS FOR A PARTICULAR PURPOSE. NO WAR- RANTY MAY BE CREATED OR EXTENDED BY SALES OR PROMOTIONAL MATERIALS. THE ADVICE AND STRATEGIES CONTAINED HEREIN MAY NOT BE SUITABLE FOR EVERY SITUATION. THIS WORK IS SOLD WITH THE UNDERSTANDING THAT THE PUBLISHER IS NOT ENGAGED IN REN- DERING LEGAL, ACCOUNTING, OR OTHER PROFESSIONAL SERVICES. IF PROFESSIONAL ASSIS- TANCE IS REQUIRED, THE SERVICES OF A COMPETENT PROFESSIONAL PERSON SHOULD BE SOUGHT. NEITHER THE PUBLISHER NOR THE AUTHOR SHALL BE LIABLE FOR DAMAGES ARIS- ING HEREFROM. THE FACT THAT AN ORGANIZATION OR WEBSITE IS REFERRED TO IN THIS WORK AS A CITATION AND/OR A POTENTIAL SOURCE OF FURTHER INFORMATION DOES NOT MEAN THAT THE AUTHOR OR THE PUBLISHER ENDORSES THE INFORMATION THE ORGANIZA- TION OR WEBSITE MAY PROVIDE OR RECOMMENDATIONS IT MAY MAKE. FURTHER, READERS SHOULD BE AWARE THAT INTERNET WEBSITES LISTED IN THIS WORK MAY HAVE CHANGED OR DISAPPEARED BETWEEN WHEN THIS WORK WAS WRITTEN AND WHEN IT IS READ. For general information on our other products and services, please contact our Business Development Department in the U.S. at 317-572-3205. For details on how to create a custom For Dummies book for your business or organization, contact [email protected]. For information about licensing the For Dummies brand for products or services, contact BrandedRights&[email protected]. ISBN 978-1-118-44646-1 (pbk); ISBN 978-1-118-44698-0 (ebk) Manufactured in the United States of America 10 9 8 7 6 5 4 3 2 1 Publisher’s Acknowledgments Some of the people who helped bring this book to market include the following: Acquisitions, Editorial, and Composition Services Vertical Websites Senior Project Coordinator: Kristie Rees Senior Project Editor: Zoë Wykes Layout and Graphics: Jennifer Creasey, Editorial Manager: Rev Mengle Christin Swinford Acquisitions Editor: Amy Fandrei Proofreader: Susan Moritz Business Development Representative: Special Help from Palo Alto Networks: Karen Hattan Chris King, Danelle Au Custom Publishing Project Specialist: Michael Sullivan These materials are the copyright of John Wiley & Sons, Inc. and any dissemination, distribution, or unauthorized use is strictly prohibited. Table of Contents Introduction ..................................... .1 About This Book ........................................................................ 1 Foolish Assumptions ................................................................. 2 How This Book Is Organized .................................................... 2 Icons Used in This Book ............................................................ 3 Where to Go from Here ............................................................. 4 Chapter 1: Data Center Evolution ................... .5 What Is Virtualization? .............................................................. 5 Why Server Virtualization? ....................................................... 7 Moving to the Cloud .................................................................. 9 Chapter 2: The Application and Threat Landscape in the Data Center .................. .13 Security Challenges with Applications in the Data Center ....14 Applications Aren’t All Good or All Bad................................ 14 Applications Are Evasive ........................................................ 18 Threats Are Taking a Free Ride .............................................. 19 Management applications............................................. 20 Unknown applications................................................... 21 Recognizing the Challenges of Legacy Security Solutions .... 22 Chapter 3: The Life Cycle of a Modern Data Center Attack ................................. 23 Data Center Attack Vectors .................................................... 23 Rethinking Malware ................................................................. 25 Modern malware characteristics ................................. 26 Botnets and other enterprise threats ......................... 28 Hackers — No Longer the Usual Suspects............................ 30 The Life Cycle of a Modern Attack ......................................... 32 Infection .......................................................................... 33 Persistence ..................................................................... 34 Communication .............................................................. 35 Command and control .................................................. 35 These materials are the copyright of John Wiley & Sons, Inc. and any dissemination, distribution, or unauthorized use is strictly prohibited. iv Network Security in Virtualized Data Centers For Dummies Chapter 4: Securing the Virtualized Data Center .... .37 Data Center Network Security Challenges ............................ 38 Not All Data Centers Are Created Equal ............................... 39 Enterprise data centers ................................................ 39 Internet-facing data centers ......................................... 40 Virtualized Data Center Network Security Challenges ........ 41 Securing the Data Center with Next-Generation Firewalls .... 42 Visibility and control of traffic ..................................... 42 Prevent data center threats ......................................... 43 Performance and security — a policy choice ............ 44 Flexibility of feature deployment ................................. 45 Secure remote users ...................................................... 46 Addressing Virtualization-Specific Security Challenges ..... 46 Ensuring hypervisor integrity ...................................... 48 Controlling intra-host communications ...................... 50 Securing VM migrations ................................................ 50 Cloud-readiness ............................................................. 51 Choosing Physical or Virtual Next-Generation Firewalls .... 52 Chapter 5: A Phased Approach to Security: From Virtualization to Cloud .................... 53 Journey to the Cloud — One Step at a Time ........................ 53 A Phased Approach to Security in Virtualized Data Centers ......................................................................... 54 Consolidating servers within trust levels ................... 55 Consolidating servers across trust levels .................. 55 Selective network security virtualization ................... 57 Dynamic computing fabric ........................................... 57 Chapter 6: Ten (Okay, Nine) Evaluation Criteria for Network Security in the Virtualized Data Center .. 59 Safe Application Enablement of Data Center Applications .......................................................................... 59 Identification Based on Users, Not IP Addresses................. 60 Comprehensive Threat Protection ........................................ 60 Flexible, Adaptive Integration ................................................ 61 High-Throughput, Low-Latency Performance ...................... 62 Secure Access for Mobile and Remote Users ....................... 62 One Comprehensive Policy, One Management Platform .... 63 Cloud-Readiness ....................................................................... 63 Choice of Form Factor ............................................................. 63 Glossary ....................................... .65 These materials are the copyright of John Wiley & Sons, Inc. and any dissemination,
Load more

Recommended publications
  • Hacks, Cracks, and Crime: an Examination of the Subculture and Social Organization of Computer Hackers Thomas Jeffrey Holt University of Missouri-St
    View metadata, citation and similar papers at core.ac.uk brought to you by CORE provided by University of Missouri, St. Louis University of Missouri, St. Louis IRL @ UMSL Dissertations UMSL Graduate Works 11-22-2005 Hacks, Cracks, and Crime: An Examination of the Subculture and Social Organization of Computer Hackers Thomas Jeffrey Holt University of Missouri-St. Louis, [email protected] Follow this and additional works at: https://irl.umsl.edu/dissertation Part of the Criminology and Criminal Justice Commons Recommended Citation Holt, Thomas Jeffrey, "Hacks, Cracks, and Crime: An Examination of the Subculture and Social Organization of Computer Hackers" (2005). Dissertations. 616. https://irl.umsl.edu/dissertation/616 This Dissertation is brought to you for free and open access by the UMSL Graduate Works at IRL @ UMSL. It has been accepted for inclusion in Dissertations by an authorized administrator of IRL @ UMSL. For more information, please contact [email protected]. Hacks, Cracks, and Crime: An Examination of the Subculture and Social Organization of Computer Hackers by THOMAS J. HOLT M.A., Criminology and Criminal Justice, University of Missouri- St. Louis, 2003 B.A., Criminology and Criminal Justice, University of Missouri- St. Louis, 2000 A DISSERTATION Submitted to the Graduate School of the UNIVERSITY OF MISSOURI- ST. LOUIS In partial Fulfillment of the Requirements for the Degree DOCTOR OF PHILOSOPHY in Criminology and Criminal Justice August, 2005 Advisory Committee Jody Miller, Ph. D. Chairperson Scott H. Decker, Ph. D. G. David Curry, Ph. D. Vicki Sauter, Ph. D. Copyright 2005 by Thomas Jeffrey Holt All Rights Reserved Holt, Thomas, 2005, UMSL, p.
    [Show full text]
  • Address Munging: the Practice of Disguising, Or Munging, an E-Mail Address to Prevent It Being Automatically Collected and Used
    Address Munging: the practice of disguising, or munging, an e-mail address to prevent it being automatically collected and used as a target for people and organizations that send unsolicited bulk e-mail address. Adware: or advertising-supported software is any software package which automatically plays, displays, or downloads advertising material to a computer after the software is installed on it or while the application is being used. Some types of adware are also spyware and can be classified as privacy-invasive software. Adware is software designed to force pre-chosen ads to display on your system. Some adware is designed to be malicious and will pop up ads with such speed and frequency that they seem to be taking over everything, slowing down your system and tying up all of your system resources. When adware is coupled with spyware, it can be a frustrating ride, to say the least. Backdoor: in a computer system (or cryptosystem or algorithm) is a method of bypassing normal authentication, securing remote access to a computer, obtaining access to plaintext, and so on, while attempting to remain undetected. The backdoor may take the form of an installed program (e.g., Back Orifice), or could be a modification to an existing program or hardware device. A back door is a point of entry that circumvents normal security and can be used by a cracker to access a network or computer system. Usually back doors are created by system developers as shortcuts to speed access through security during the development stage and then are overlooked and never properly removed during final implementation.
    [Show full text]
  • Web Security School Article #1
    Know your enemy: Why your Web site is at risk By Michael Cobb To the tag line for the Internet -- “Build it and they will come” -- I would add “...and try to crack it, deface it, abuse it, break it and steal it.” Hackers have more resources and time than even the largest organizations, and they don't suffer from the usual organizational constraints, such as office politics and budgets, that security practitioners face. In fact, hackers can show an almost enviable example of online collaboration, sharing information in order to achieve a result. This article will help you understand the tools, tactics and motives of the black hat community so that you have a better appreciation of the threats to your Web site and the system it runs on, and the importance of protecting them. Statistics to keep you awake at night In a test conducted over a two-week period in September 2004 by USA TODAY, there were 305,922 attempts to break into six computers connected to the Internet. The attacks literally began as soon as the computers went online, averaging more than 300 per hour against both a Windows XP Service Pack 1 machine with no firewall and an Apple Macintosh. There were more than 60 attacks per hour against a Windows Small Business Server. During the test, both of the Windows-based machines were compromised. These figures show how active the hacker community is. Any computer connected to the Internet is at risk, particularly a Web server. Although e-commerce Web sites receive more targeted attacks than any other type of Web site, it is no longer a question of if, but when your site will be probed.
    [Show full text]
  • Attacker Behaviour Forecasting Using Methods of Intelligent Data Analysis: a Comparative Review and Prospects
    information Review Attacker Behaviour Forecasting Using Methods of Intelligent Data Analysis: A Comparative Review and Prospects Elena Doynikova 1,*, Evgenia Novikova 1,2 and Igor Kotenko 1 1 St. Petersburg Institute for Informatics and Automation of the Russian Academy of Sciences, St. Petersburg 199178, Russia; [email protected] (E.N.); [email protected] (I.K.) 2 Saint Petersburg Electrotechnical University “LETI”, Department of computer science and technology, St. Petersburg 197022, Russia * Correspondence: [email protected] Received: 18 February 2020; Accepted: 16 March 2020; Published: 23 March 2020 Abstract: Early detection of the security incidents and correct forecasting of the attack development is the basis for the efficient and timely response to cyber threats. The development of the attack depends on future steps available to the attackers, their goals, and their motivation—that is, the attacker “profile” that defines the malefactor behaviour in the system. Usually, the “attacker profile” is a set of attacker’s attributes—both inner such as motives and skills, and external such as existing financial support and tools used. The definition of the attacker’s profile allows determining the type of the malefactor and the complexity of the countermeasures, and may significantly simplify the attacker attribution process when investigating security incidents. The goal of the paper is to analyze existing techniques of the attacker’s behaviour, the attacker’ profile specifications, and their application for the forecasting of the attack future steps. The implemented analysis allowed outlining the main advantages and limitations of the approaches to attack forecasting and attacker’s profile constructing, existing challenges, and prospects in the area.
    [Show full text]
  • America Exposed Who’S Watching You Through Your Computer’S
    America Exposed Who’s Watching You Through Your Computer’s Camera? May 2017 By: James Scott, Senior Fellow, The Institute for Critical Infrastructure Technology 1 America Exposed Who’s Watching You Through Your Computer’s Camera May 2017 Authored by: James Scott, Sr. Fellow, ICIT Except for (1) brief quotations used in media coverage of this publication, (2) links to the www.icitech.org website, and (3) certain other noncommercial uses permitted as fair use under United States copyright law, no part of this publication may be reproduced, distributed, or transmitted in any form or by any means, including photocopying, recording, or other electronic or mechanical methods, without the prior written permission of the publisher. For permission requests, contact the Institute for Critical Infrastructure Technology. Copyright © 2017 Institute for Critical Infrastructure Technology – All Rights Reserved ` 2 Support ICIT & Increase Webcam Privacy CamPatch®, the world’s leading manufacturer of webcam covers, is proud to donate 100% of net proceeds to ICIT. Custom Branded Webcam Covers are a powerful tool for security training initiatives, and are a valuable and impactful promotional giveaway item. Visit www.CamPatch.com or contact [email protected] to learn more. Upcoming Events The Annual ICIT Forum June 7, 2017, The Four Seasons Washington D.C. www.icitforum.org ` 3 Contents Are You Being Watched? .............................................................................................................................. 4 Computing Devices
    [Show full text]
  • Group Project
    Awareness & Prevention of Black Hat Hackers Mohamed Islam & Yves Francois IASP 470 History on Hacking • Was born in MIT’s Tech Model Railway Club in 1960 • Were considered computer wizards who had a passion for exploring electronic systems • Would examine electronic systems to familiarize themselves with the weaknesses of the system • Had strict ethical codes • As computers became more accessible hackers were replaced with more youthful that did not share the same ethical high ground. Types of Hackers • Script Kiddie: Uses existing computer scripts or code to hack into computers usually lacking the expertise to write their own. Common script kiddie attack is DoSing or DDoSing. • White Hat: person who hacks into a computer network to test or evaluate its security system. They are also known as ethical hackers usually with a college degree in IT security. • Black Hat: Person who hacks into a computer network with malicious or criminal intent. • Grey Hat: This person falls between white and black hat hackers. This is a security expert who may sometimes violate laws or typical ethical standards but does not have the malicious intent associated with a black hat hacker. • Green Hat: Person who is new to the hacking world but is passionate about the craft and works vigorously to excel at it to become a full-blown hacker • Red Hat: Security experts that have a similar agenda to white hat hackers which is stopping black hat hackers. Instead of reporting a malicious attack like a white hat hacker would do they would and believe that they can and will take down the perpretrator.
    [Show full text]
  • WHAT IS ETHICAL HACKING? > Table of Contents
    Cracking The Code < WHAT IS ETHICAL HACKING? > Table of Contents WHAT IS HACKING? ................................................... 04 WHAT ARE THE DIFFERENT TYPES OF HACKERS? .................................................. 05 White Hat Hackers ................................................................... 05 Black Hat Hackers .................................................................... 05 Gray Hat Hackers..................................................................... 05 Blue Hat Hackers ..................................................................... 06 Script Kiddie ............................................................................ 06 Hacktivist ................................................................................. 06 WHY IS ETHICAL HACKING IMPORTANT? .............................................. 07 WHAT ARE ETHICAL HACKERS TARGETING? ............................................... 08 Web Application Testing .......................................................... 08 Mobile App Testing.................................................................. 08 Social Engineering Testing ....................................................... 08 Wireless Technology Testing .................................................... 09 What Motivates Ethical Hackers .............................................. 09 IS HACKING LEGAL? .................................................... 10 WHAT YOU NEED TO BECOME A WHITE HAT HACKER ................................................ 11 CAREER OUTLOOK .....................................................
    [Show full text]
  • Hacking for Dummies.Pdf
    01 55784X FM.qxd 3/29/04 4:16 PM Page i Hacking FOR DUMmIES‰ by Kevin Beaver Foreword by Stuart McClure 01 55784X FM.qxd 3/29/04 4:16 PM Page v 01 55784X FM.qxd 3/29/04 4:16 PM Page i Hacking FOR DUMmIES‰ by Kevin Beaver Foreword by Stuart McClure 01 55784X FM.qxd 3/29/04 4:16 PM Page ii Hacking For Dummies® Published by Wiley Publishing, Inc. 111 River Street Hoboken, NJ 07030-5774 Copyright © 2004 by Wiley Publishing, Inc., Indianapolis, Indiana Published by Wiley Publishing, Inc., Indianapolis, Indiana Published simultaneously in Canada No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, scanning or otherwise, except as permitted under Sections 107 or 108 of the 1976 United States Copyright Act, without either the prior written permis- sion of the Publisher, or authorization through payment of the appropriate per-copy fee to the Copyright Clearance Center, 222 Rosewood Drive, Danvers, MA 01923, (978) 750-8400, fax (978) 646-8600. Requests to the Publisher for permission should be addressed to the Legal Department, Wiley Publishing, Inc., 10475 Crosspoint Blvd., Indianapolis, IN 46256, (317) 572-3447, fax (317) 572-4447, e-mail: permcoordinator@ wiley.com. Trademarks: Wiley, the Wiley Publishing logo, For Dummies, the Dummies Man logo, A Reference for the Rest of Us!, The Dummies Way, Dummies Daily, The Fun and Easy Way, Dummies.com, and related trade dress are trademarks or registered trademarks of John Wiley & Sons, Inc.
    [Show full text]
  • The Tools and Methodologies of the Script Kiddie
    The Tools and Methodologies of the Script Kiddie Know Your Enemy Lance Spitzner http://www.enteract.com/~lspitz/papers.html Last Modified: 21 July, 2000 My commander used to tell me that to secure yourself against the enemy, you have to first know who your enemy is. This military doctrine readily applies to the world of network security. Just like the military, you have resources that you are trying to protect. To help protect these resources, you need to know who your threat is and how they are going to attack. This article, the first of a series, does just that, it discusses the tools and methodology of one of the most common and universal threats, the Script Kiddie. If you or your organization has any resources connected to the Internet, this threat applies to you. Know Your Enemy: II focuses on how you can detect these threats, identify what tools they are using and what vulnerabilities they are looking for. Know Your Enemy: III focuses on what happens once they gain root. Specifically, how they cover their tracks and what they do next. Know Your Enemy: Forensics covers how you can analyze such an attack. Finally, Know Your Enemy: Motives, the result of a group project, uncovers the motives and psychology of some members of the black-hat community, in their own words. Who is the Script Kiddie The script kiddie is someone looking for the easy kill. They are not out for specific information or targeting a specific company. Their goal is to gain root the easiest way possible.
    [Show full text]
  • Hacking Healthcare IT in 2016
    Introduction: ................................................................................................................................................. 1 The Healthcare System’s Adversaries: .......................................................................................................... 8 Script Kiddies: .......................................................................................................................................... 12 Hacktivists: .............................................................................................................................................. 12 Cyber Criminals: ...................................................................................................................................... 16 Cyberterrorist: ......................................................................................................................................... 17 Nation State Actors: ................................................................................................................................ 18 A Multipronged Approach to Meaningful Cybersecurity ............................................................................ 22 People: .................................................................................................................................................... 22 Policies & Procedures: ............................................................................................................................ 31 Technical Controls: .................................................................................................................................
    [Show full text]
  • An Examination of the Subculture and Social Organization of Computer Hackers Thomas Jeffrey Holt University of Missouri-St
    University of Missouri, St. Louis IRL @ UMSL Dissertations UMSL Graduate Works 11-22-2005 Hacks, Cracks, and Crime: An Examination of the Subculture and Social Organization of Computer Hackers Thomas Jeffrey Holt University of Missouri-St. Louis, [email protected] Follow this and additional works at: https://irl.umsl.edu/dissertation Part of the Criminology and Criminal Justice Commons Recommended Citation Holt, Thomas Jeffrey, "Hacks, Cracks, and Crime: An Examination of the Subculture and Social Organization of Computer Hackers" (2005). Dissertations. 616. https://irl.umsl.edu/dissertation/616 This Dissertation is brought to you for free and open access by the UMSL Graduate Works at IRL @ UMSL. It has been accepted for inclusion in Dissertations by an authorized administrator of IRL @ UMSL. For more information, please contact [email protected]. Hacks, Cracks, and Crime: An Examination of the Subculture and Social Organization of Computer Hackers by THOMAS J. HOLT M.A., Criminology and Criminal Justice, University of Missouri- St. Louis, 2003 B.A., Criminology and Criminal Justice, University of Missouri- St. Louis, 2000 A DISSERTATION Submitted to the Graduate School of the UNIVERSITY OF MISSOURI- ST. LOUIS In partial Fulfillment of the Requirements for the Degree DOCTOR OF PHILOSOPHY in Criminology and Criminal Justice August, 2005 Advisory Committee Jody Miller, Ph. D. Chairperson Scott H. Decker, Ph. D. G. David Curry, Ph. D. Vicki Sauter, Ph. D. Copyright 2005 by Thomas Jeffrey Holt All Rights Reserved Holt, Thomas, 2005, UMSL, p. ii ABSTRACT This dissertation examines both the subculture and social organization practices of computer hackers. The concept of normative orders (Herbert, 1998: 347) is used to explore hacker subculture in different contexts.
    [Show full text]
  • HACKER TYPOLOGY and MOTIVATION by JOHN
    EXPLOITING THE DIGITAL FRONTIER: HACKER TYPOLOGY AND MOTIVATION by JOHN MCBRAYER KATHRYN SEIGFRIED-SPELLAR, COMMITTEE CHAIR MARK M. LANIER CLAY POSEY A THESIS Submitted in partial fulfillment of the requirements for the degree of Master of Science in the Department of Criminal Justice in the Graduate School of The University of Alabama TUSCALOOSA, ALABAMA 2014 Copyright John C. McBrayer 2014 ALL RIGHTS RESERVE ABSTRACT The current study combined the hacker taxonomies presented by Loper (2000), Parker (1998), Rege-Patwardhan (2009), and Rogers (1999; 2006; personal communication) and proposed a simplified taxonomy which included: script kiddie, cyberpunk, password cracker, internal, and old guard hacker categories. Each category was identified by its characteristic computer deviant behaviors and analyzed against sex and seven motivational factors (i.e., addiction, curiosity, excitement/entertainment, money, power/status/ego, peer recognition, ideological, and revenge). The study had two specific aims: (1) to explore which motivations were associated with each specific computer deviant behavior, and (2) to determine if more males than females are engaging in computer deviant behavior. The study targeted computer deviants from specific websites, which discussed or promoted computer deviant behavior (e.g., hacking). Using a snowball sampling method, 120 subjects completed an anonymous, self-report questionnaire that included items measuring computer deviance, motivational factors, and demographics. Relationships were identified using zero-order correlation, then a backwards (Wald) binary logistic regression was conducted to determine the predictive ability of motivational factors on the different categories of computer deviancy. None of the computer deviant behavior specific hypotheses were fully supported. The expectation that more males would be computer deviants than females was not fully supported since males were more likely to be script kiddies, cyberpunks, and old guard hackers compared to females.
    [Show full text]