February 11, 2020

Inside the mind of a hacker: Psychological profiles of cybercriminals

by Kevin Manne, University at Buffalo

hack
Credit: CC0 Public Domain

Whether cracking digital security for good or ill, hackers tend to be people who are manipulative, deceitful, exploitative, cynical and insensitive, according to research from the University at Buffalo School of Management.

Recently presented at the Hawaii International Conference on System Sciences, the study analyzed the psychological profiles of college students in and management to see which personality traits led to three different kinds of computer hacking: white hat, gray hat and black hat.

White hats are the ethical hackers, who help organizations detect and fix their . Gray hats are the "hacktivists," who hack for ideological reasons, such as attacking a political adversary, a company policy or even a nation-state. And hackers, sometimes called crackers, are motivated by to breach computer systems—or may just be in it for the thrill of the attack, revenge or notoriety.

"Gray hatters oppose authority, black hatters are thrill-seeking and white hatters—the good guys—tend to be narcissists," says Lawrence Sanders, Ph.D., professor of management science and systems in the UB School of Management. "So even though may be devious and psychopathic, we need them to address nefarious hacking activity."

The researchers surveyed 439 college sophomores and juniors to determine their personality traits, and developed a set of scales to determine the three hat categories, as well as a scale to measure each person's perception of the probability of being caught for violating privacy laws.

"Engaging in criminal activity involves a choice where there are consequences and opportunities, and individuals perceive them differently," says Joana Gaia, Ph.D., clinical assistant professor of management science and systems in the UB School of Management. "But, they can be deterred if there is a likelihood of punishment—and the punishment is severe."

The results of the study suggest that security compliance will continue to be a problem, but there are several ways businesses and organizations can reduce the impact or prevent security breaches.

"Firms can use monitoring technology and multifactor authentication to prevent unauthorized access to physical and digital spaces," says Gaia. "Organizations could use to evaluate employees as security threats, but that should be approached cautiously for practical, ethical and privacy reasons."

Provided by University at Buffalo
Citation: Inside the mind of a hacker: Psychological profiles of cybercriminals (2020, February 11) retrieved 19 April 2024 from https://techxplore.com/news/2020-02-mind-hacker-psychological-profiles-cybercriminals.html
This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no part may be reproduced without the written permission. The content is provided for information purposes only.

Explore further

Understanding emerging blockchain identity management systems
9 shares

Feedback to editors
Researchers develop sodium battery capable of rapid charging in just a few seconds

6 hours ago
Greater access to clean water, thanks to a better membrane

8 hours ago
Silent flight edges closer to take off, according to new research

9 hours ago
A flexible and efficient DC power converter for sustainable-energy microgrids

9 hours ago
Microsoft's AI app VASA-1 makes photographs talk and sing with believable facial expressions

10 hours ago
To build a better AI helper, start by modeling the irrational behavior of humans

10 hours ago
Versatile fibers offer improved energy storage capacity for wearable devices

11 hours ago
Harnessing solar energy for high-efficiency NH₃ production

11 hours ago
A dexterous four-legged robot that can walk and handle objects simultaneously

13 hours ago
Climate change will increase value of residential rooftop solar panels across US, study finds

15 hours ago
Load comments (2)