CEHPC Practice Questions

Hacktivism is a modern security trend that sits at the intersection of computer hacking and social activism. A "hacktivist" is an individual or a member of a group who uses their technical expertise to gain unauthorized access to systems or disrupt digital services to promote a specific political, social, or ideological agenda. Unlike traditional cybercriminals who are typically motivated by financial gain, or state-sponsored actors seeking geopolitical intelligence, hacktivists act as "digital protesters." Their goal is often to draw public attention to perceived injustices, government policies, or corporate misconduct.

Common tactics used by hacktivists include Distributed Denial of Service (DDoS) attacks to take down a target's website, "defacing" web pages with political messages, or leaking confidential internal documents (often referred to as "doxxing") to embarrass or expose the target. High-profile groups like Anonymous or WikiLeaks are frequently cited as examples of this phenomenon. While the hacktivist might believe their actions are morally justified by their cause—be it environmental protection, free speech, or human rights—their actions remain illegal under most international and domestic computer crime laws because they involve unauthorized access or disruption of service.

From a defensive standpoint, hacktivism represents a unique threat profile. Organizations must monitor the social and political climate to gauge if they might become a target of a hacktivist campaign. For instance, a company involved in a controversial project might see a sudden surge in scan attempts or phishing attacks. Understanding hacktivism is essential for modern threat intelligence, as it requires security teams to look beyond technical vulnerabilities and consider the reputational and ideological factors that might drive an attack. This trend highlights how the digital realm has become a primary battlefield for social discourse and political conflict in the 21st century.

The term "hacker" is frequently misrepresented in popular media as being synonymous with "criminal." In the professional cybersecurity landscape, however, hacking is a skill set that can be applied for both malicious and constructive purposes. Ethical hackers, often referred to as "White Hat" hackers, use the same tools, techniques, and mindsets as malicious actors ("Black Hats"), but they do so with legal authorization and the intent to improve security. Their primary responsibility is to analyze systems, identify potential vulnerabilities, and report them to the stakeholders so they can be patched before a criminal can exploit them.

Ethical hacking is a structured discipline that follows specific phases: reconnaissance, scanning, gaining access, maintaining access, and clearing tracks—though the "clearing tracks" phase in an ethical context usually involves restoring the system to its original state and documenting the process. These professionals operate under a strict "Code of Ethics," ensuring they do no harm and maintain the confidentiality of the data they encounter. Many organizations employ ethical hackers through internal security teams or external penetration testing firms to conduct "Red Team" exercises, which simulate real-world attacks to test the organization's defensive capabilities.

Furthermore, the existence of "Bug Bounty" programs—where companies like Google, Microsoft, and Facebook pay independent researchers to find and report bugs—demonstrates that hacking is a recognized and valued profession. By reporting vulnerabilities instead of exploiting them for personal gain, ethical hackers play a vital role in the global digital economy. They help protect critical infrastructure, financial systems, and personal data. Therefore, while some hackers do engage in illegal activities, a significant portion of the hacking community is dedicated to the defensive side of cybersecurity, proving that the act of hacking itself is neutral; it is the intent and authorization that define its legality.