1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

The general media, scaremongering and IT illiteracy...

Discussion in 'The Lounge - Off Topic' started by Arroryn, Sep 21, 2007.

  1. Arroryn
    Honorary Member

    Arroryn we're all dooooooomed

    I read an article in an unnamed broadsheet this morning, about entry-level 'hacking kits' that went up for sale on eBay.

    Fair enough, that is potentially a bad thing in the wrong hands. A company the size of eBay would have already fallen on the seller like a tonne of the proverbial.

    The thing is, the rest of the article kind of wound me up.

    It went on to say, in what I thought was quite an arrogant tone, that (and this isn't verbatim, but it's as close as I can remember!)

    So called? So called? From what I've seen, becoming a CEH and a security specialist takes a lot of ability and hard work! Braindumpers make the industry enough of a joke, without the media farting on it.

    And now the phrase 'ethical hacking' will leak into the world at large. Which will be about as welcomed and understood and mis-used as 'Firewall'.

    Did I just fall out of the bed the wrong side this morning, or does anyone else agree?
    Certifications: A+, N+, MCDST, 70-410, 70-411
    WIP: Modern Languages BA
  2. Phoenix
    Honorary Member

    Phoenix 53656e696f7220 4d6f64

    I don't read much mass media these days for exactly those reasons
    the majority of it is uneducated tripe and fearmongering aimed solely at selling papers, not reporting anything
    Certifications: MCSE, MCITP, VCP
    WIP: > 0
  3. zebulebu

    zebulebu Terabyte Poster


    This is just part of what I have to put up with when explaining what I do to non-technical people. Inside the IT industry, I'm looked on with a mixture of appreciation and disgust - I've lost count of the number of people who think my idol is Neo from the Matrix, or that are convinced I'm running invite-only FTP servers or warez sites, or am a botherder, or Christ knows what else. By the same rationale, many peers know that security bods are essential in protecting infrastructure, and are genuinely pleased to have one working in thier department/organisation.

    Outside the industry its a completely different matter. I remember once interviewing for a role where they wanted someone to look after their infrastructure (A sys/network admin job), but also 'look at their security systems' because they 'weren't working very well'. There were no technical staff on the interview panel other than a hands-off IT manager (it was a relatively small company and I would have probably been doing everything from patching to upgrading to AD) When I asked when they were last pen-tested they looked at me blankly. I had to then explain what pen-testing was - whereupon I was met with incredulous looks "You mean we have to PAY someone to hack us?" The interview deteriorated pretty much from that point, but I had fun telling them that they didn't really want a Network Admin with a bit of security experience - they wanted a CEO who understood the absolute basics of network security!

    Chuck about a term like 'Ethical Hacking' and often technical people people start to get all touchy about things at the best of times, let alone when the meedja gets a hold of it on a slow news day and asks a clueless journalist to write a piece about 'HACKING!!!!'

    Its insane that people can't understand that in order to understand what a hacker is doing to get into your systems, you have to know the tools, tricks and techniques they use to do so.

    Then again, every time I see a tech-related story on telly or in the paper I amuse myself by totting up the inaccuracies contained within it. What makes it even more depressing is that, when you take the time to learn the basics, security isn't really that hard a topic to grasp. The mainstream media seem to take the Chris Rock approach to anything to do with IT - wearing ignorance like a badge of honour "What's the capital of Zaire? I don't know that shite - I'm keepin' it real!" simply because its seen as 'geeky'. When security is involved, they always just play it lazy and shove a load of scaremongering into their stories.

    Just ignore it - it will never change and if you let it bother you you'll end up seething. You're better off knowing the truth and, since you already know that 'Ethical Hacking' is a valid, vital part of any organisation's security, that instantly elevates you above the average media sheep. :biggrin
    Certifications: A few
    WIP: None - f*** 'em
  4. BosonMichael
    Highly Decorated Member Award

    BosonMichael Yottabyte Poster

    Believe it or not, there are some employers who will NOT hire someone with the CEH certification because it has to do with "hacking". :rolleyes:
    Certifications: CISSP, MCSE+I, MCSE: Security, MCSE: Messaging, MCDST, MCDBA, MCTS, OCP, CCNP, CCDP, CCNA Security, CCNA Voice, CNE, SCSA, Security+, Linux+, Server+, Network+, A+
    WIP: Just about everything!
  5. mattwest

    mattwest Megabyte Poster

    :ohmy Lol....

    I'll bear that in mind when i next move jobs....!

    As an IT professional you like to think that your CV will be viewed by responsible and competent IT Managers or other such professionals.

    However it's worth remembering it may also be viewed by uneducated IT managers or uneducated HR folk! :blink
    Certifications: See my signature...
    WIP: Maybe re-certify my CCNA

Share This Page