Comments on: Should you hire a hacker to prevent data breaches? http://www.welivesecurity.com/2011/09/15/should-you-hire-a-hacker-to-prevent-data-breaches/ News, Views, and Insight from the ESET Security Community Mon, 03 Feb 2014 08:49:00 +0000 hourly 1 http://wordpress.org/?v=3.7 By: lyecdevf http://www.welivesecurity.com/2011/09/15/should-you-hire-a-hacker-to-prevent-data-breaches/#comment-3555 Fri, 16 Sep 2011 19:10:11 +0000 http://blog.eset.com/?p=9320#comment-3555 @Marquisa First of all it would be nice if you told us when and where that happend.  I do not exactly feel like googling for a guy who, "deleted virtual servers."
As you mentioned it your self he had no previous history of hacking.  So why did you bring this up when the discussion revolves around people who were once hackers but are now working for the benefit of the society?!  I do not think it is fair to assume because some one was a hacker once ago he would be more likely to do some thing bad to the company if angered by the actions of his employer.  Lets not get too ahead of our selves.  We want to see if a reformed hacker under normal working conditions functions the same as all the other empleyes.  So we can then take a look at lets say 10 reformed hackers and come to some conclussion about employing reformed hackers.  
 

]]>
By: Cameron Camp http://www.welivesecurity.com/2011/09/15/should-you-hire-a-hacker-to-prevent-data-breaches/#comment-3554 Fri, 16 Sep 2011 16:35:27 +0000 http://blog.eset.com/?p=9320#comment-3554 @Marquisa: Well put. There's a certain amount of risk when an employee (regardless of background) touches equipment, so it becomes an exercise in risk management and appropriate oversight really. Also, there may be a certain wisdom in managers effectively communicating with employees and ensuring they are happy in their work environment, making them (hopefully) less inclined to do nasty things, like rm -rf /serverfolder.

]]>
By: Marquisa http://www.welivesecurity.com/2011/09/15/should-you-hire-a-hacker-to-prevent-data-breaches/#comment-3553 Thu, 15 Sep 2011 21:00:48 +0000 http://blog.eset.com/?p=9320#comment-3553 This is a tricky one.
While a reformed hacker can continue to walk a straight line, what if they suddenly relapse and go down that dark path again? Especially if they're ever let go from the company. We've seen what types of havoc ex-employees can unleash upon their former employers in the news recently, like that one guy who deleted 88 virtual servers from his previous employers network. And there was no mention of him having a history of hacking, he was just ticked off because of the company's lay-offs that effected a buddy of his.
On one hand, there's going to be a risk no matter who you hire, but there's also the question of who could do more damage.

]]>