When we think of hackers, the black hat variety usually comes to mind. However, white hat hacking, also known as "ethical hacking", has been around as early as the 1960's. Check out the infographic above to see how it all started, where it is today, and trends we expect to see in the near future.
The History of Ethical Hacking and Penetration Testing
The “bombe” becomes the world’s first
ethical hacking machine. It was used by
the British to help decipher encrypted
German messages during World War II.
Computer “penetration” is first discussed
by leading experts, with mention of
deliberate tests by professionals.
The first “tiger team” is formed.
USAF contracted James Anderson
to test time-sharing systems.
The US Computer Fraud and
Abuse Act makes black and gray
hat hacking a criminal offense.
The US Air Force conducts one of the first
ethical hacks to test the security of
the Multics operating system.
The PTES is founded leading to an increase in
ethical hacking jobs. They offer businesses and
security service providers a common language
and scope for performing penetration testing.
Attacking your own defense to locate
weaknesses has been around for over
1,500 years. Ethical hacking brings
that practice into the digital world
Google paid white hat hackers more
than $1.5 million in 2014 to find bugs
The term “ethical hacking” was first
used by IBM’s John Patrick in 1995
The First Bug Bounty Program was launched
by Netscape in 1995. Hackers were offered
rewards for reporting vulnerabilites to the
company before they could be exploited
Dan Farmer and Wietse Venema release
SATAN, an automated vulnerability
scanner, which becomes a popular
OWASP releases the first OWASP
Testing Guide to help teach best
practices in penetration testing.
Worldwide enterprise security spending
reaches $71.1B. Security executives begin
to use on-demand penetration testing
services for cost effective ethical hacking.
Software security goes mainstream with
Microsoft's Windows 98 release, 1999
becomes a banner year for security