Are there good hackers in the world?

Cyber security is a very important aspect in our systems, networks and data. When you want to become a security professional you will have the tools and knowledge to protect your systems but you will also be able to do harm to it and to other systems. Studying cyber computer is looking at the world as a criminal and then to learn how to defend yourself from these attacks. Therefore is it a delicate topic when you wonder if all hackers are security professionals or all security professionals are hackers. In the end, it is all about the person. Someone with good values and ethics will use his/her knowledge to do a good job and not harm anyone in the process.

All this said, Ethics is a very important part in the cyber security world. Companies go throw very rigorous processes in order to select a professional to work with sensible data. They will have very high standards in order to entrust their data to someone that will be able to access it and to «protect» it.

Ethics is something that we learn from an early stage of our lives. We cannot just go to a one day course to acquire good ethics. Our ethics are defined by our education provided by our parents and by our friends when we were young and still forming our character and acquiring values from society. So in conclusion, everyone has their own ethics, their own definition of what is good and what is bad. It is very hard to learn about the ethics of a person but very important if we are going to give that person access to data that cannot fall in the wrong hands.

dr evil austin powers -  "Ethical Hacker"

When we are in the world of cyber computing, without considering our specific values and ethics, we have at least the responsibility to respect the work of others and not steal it and publish it as our own. We have the responsibility of not harming others when we use our computers. We also have to cite the work of others if we are going to use it in our own work and always think about the consequences of our actions and how they are going to affect society.

We have to also be conscious that our actions have legal implications. If we steal, alter or destroy the work and system of others and get caught, there is a high chance of going to jail. So we have to be aware that our actions have many implications, ethically and legally and considering the consequences we must choose if what we are doing is correct or incorrect.


Link to resources used:


Are there good hackers in the world?

The Golden Rules of Cyber Security

All cyber security programs or protocols follow three rules and have to address at least one of them. These are:

  • Integrity
  • Availability
  • Confidentiality

Security professionals, when creating a procedure, must consider them in order to successfully protect the computer, network or system they are working on.


Cyber Integrity

As time goes on, hackers get more knowledge and tools that help them get access and alter data from the systems they attack. This may leave corrupted data or changed programs on their trail. This affects the functionality of the system as well as the safety and profitability of it. For that reason, Cyber integrity is very important, and a security professional has to have the tools and programs necessary to check if the programs weren’t altered or modified from a desired state to a non functional or not secure state.

There are different ways to attend this matter and to mentions some of them, there is the inventory management, policy enforcement, backup and recovery, analytics and reporting.

Inventory management refers to have a monitored way of checking all files and programs and checking the creators, editors and dates that the file changed. This way you can have a closer look to the meta data of the files and know if there were unwanted changes or if files are missing.

Policy enforcement can refer to keeping good standards that apply to all files in order to know if the file follows said standards and can be considered as a good file and not an altered one by an unknown author.

It is good to always have backups of the state of the system, and if a node fails in the integrity standard then to restored it with a desired previous state.

It is always good and useful to have analytic tools that report the state of the files and changed made to them in order to know when something is unfamiliar or strange and  basicly know where to look when you seek mistakes in the system that may alter the functionality and the service the system provides.

Resultado de imagen


When availability is the concern, we will always, or most of the time, think about the hardware. How can we keep all the hardware running in the desired way. We have to maintain all nodes of the hardware online and functional and have to have ways of making repairs immediately when necessary.

It is also necessary to keep all current upgrades on our system so applications don’t crash when the upgrade is needed. We have to always seek to use the fastest and adaptive disaster recovery plans on different possible scenarios. They may have not happen yet, but if the occasion present itself we have to be prepared.

And if data is on the risk of being lost or destroyed, we always need to backup our information so we may recover from a disaster of that nature.

Resultado de imagen


Confidentiality is a synonym for privacy. We don’t want to share every piece of data we use in our system. Some of this data may be crucial to the company and must be access only by a few authorized group of people. We have to make our system capable of keeping this sensible information from the wrong hands. This information may be the target of hackers and criminals that seek to attack your company. Therefore, we need to be prepared when this happens and prevent the attackers from obtaining important data.

The most common way of protecting information is encryption. To use tokens and keys to manage files and decrypt them if necessary and don’t worry too much if the data gets stolen because the attackers wont be avaible to make much sense out of it.

There are other ways of implementing confidentiality in a more physical manner. To have special nodes on a different network or to manage this information in an offline storage device.

Resultado de imagen

All this said. There are many things that are involved in cyber security but everything ends up either in the topic of integrity, confidentiality or availability and as an aspirant cyber security professional, I have to deeply study this three golden rules to understand more about the cyber world and how to protect our systems and our data.

Links to resources used:

The Golden Rules of Cyber Security

Cyber Security? Can you eat it?

Cyber Security in short is the protection of computers, networks, programs and data that may be manipulated without authorization or with the intention of changing the access, destroying the integrity of the object or stealing information.

Nowadays internet security is becoming essential and not having a good and secure framework may tear down whatever system you may have and put your information at the risk of being destroyed or stolen by someone out there, maybe from the same city or from the other side of the planet.

For more information I did a more elaborate blog about this topic with a group of friends. You can find this post here.

Cyber Security? Can you eat it?