Skip to main content
  1. Home
  2. Computing
  3. Features

Digital Trends may earn a commission when you buy through links on our site. Why trust us?

How Beto O’Rourke’s hacker group changed cybersecurity as we know it

By
Computer Illustration showing Cult of the Dead Cow's logo
Cult of the Dead Cow’s logo in ASCII art. Nate Barrett/Digital Trends

As of not too long ago, America’s oldest hacking collective was best known not for its work but its alumni or, more specifically, a particular alumnus and current presidential candidate: Beto O’Rourke. This certainly marks a milestone in both American politics and culture, but it wasn’t the primary motivation for Joseph Menn to write his new book about the Cult of the Dead Cow (better known as cDc), the group that O’Rourke hails from.

The work, Cult of the Dead Cow: How the Original Hacking Super Group Might Just Save the World, takes up the lofty task it lays out in its subtitle, at least insofar as the security of the world’s digital systems is concerned. For as long as networked computing devices have pervaded our daily lives, and information security professionals have scrambled to lock them down, the industry still has yet to find its footing in the undertaking. Anyone who has seen breach headline after breach headline can likely corroborate this.

Recommended Videos

“Lots of other people have done books calling out one or another aspect of the problem [in information security],” Menn said. “But I had not seen any readable, enjoyable book that pointed to a way forward.”

When we asked him what drove him to call to mind the storied hacker collective now, and for audiences that may not know about them, he pointed to the insurrection of rank-and-file tech sector employees in the absence of principled leadership from industry titans.

“I want them to learn the most important lessons from the recent past and decide whose shoulders to stand on.”

“When I began work three years ago, there were not discrete events [that inspired the book],” he said. “But the vulnerability of Facebook to state-sponsored misinformation during the 2016 election, the retreat of big tech on other moral issues, and the rise of Silicon Valley rank-and-file activism shaped my thinking and put an edge on my take.”

Through the lens of Menn’s canny study of hacking history, this lack of industry consensus on how to make progress isn’t because security professionals haven’t sufficiently moved beyond their roots, but precisely because they’ve strayed too far.

“One of the major reasons I undertook this project is to increase appreciation for hackers as critical thinkers,” he said. “We need critical thinking more than ever.”

A noble pursuit

Cult of the Dead Cow, formed in the auspicious cyberpunk year of 1984 in Lubbock, Texas, was a cadre of technically-savvy pranksters. Like many hackers since, and not really before, they were disillusioned with the corporate status quo and just bored (and brazen) enough to cattle-prod it in the most provocative ways they could imagine.

In an interview earlier this year, Democratic Presidential candidate Beto O’Rourke confirmed that in the late 1980s he joined and was a member of the Cult of the Dead Cow. Scott Eisen/Getty Images

Coining the kind of hacker pseudonyms that are now idiomatic to that cultural enclave, and ensconcing multiple layers of meaning in their group moniker — not only is Lubbock the final destination for millions of bovines, but hackers are prone to delivering “0xDEADBEEF” to their victims’ systems — they set out to experiment with how to incentivize more responsible corporate behavior from the safety of anonymity. Norms were disregarded, minor laws were broken, and the public was occasionally deceived, but their actions were largely organized around the principle of making the software ordinary people used more secure… by any means necessary.

This was undeniably uncharted territory, and they took on considerable risk in endeavoring to blaze a trail through it. Their “Back Orifice” disclosure of a critical vulnerability in Windows in 1999 came at a time when outing security holes in any way could result in serious legal peril when the company inevitably retaliated.

“[I was surprised] that a sitting U.S. Congressman had been a member of the most important group of hackers in American history… “

But a lot of the reason why “security researchers,” hackers by a more respectable designation, can submit bugs, or even be compensated handsomely via bug bounty programs, is because cDc hackers weighed the consequences of inaction and dared to butt in. By contrast, today’s developers and penetration testers (another euphemism for hackers who work 9 to 5 for a company) haven’t had to put their finances or freedom on the line when navigating the ethical dimension of information security.

“They were willing to debate the ethics of their decisions, and they saw their role as furthering social good,” Menn said. “Today’s infosec industry is too compartmentalized, and often too clean. By that I mean new entrants can go to a nice college and then a nice company and get into the security business without going through the moral forge that comes from having to make personal decisions about crime and relationships and improper access and disclosure.”

Joseph Menn, author of Cult of the Dead Cow: How the Original Hacking Super Group Might Just Save the World.

It’s time, in Menn’s view, for information security professionals to take a long look in the mirror and ask themselves if what they’re doing really drives the best outcomes.

“I want them to learn the most important lessons from the recent past and decide whose shoulders to stand on,” Menn said.

Anonymous no more

To even tell the story of how a bold group of teenagers got the likes of Microsoft to capitulate when faced with their own errors with the sensitivity that Menn does was a feat in itself. While Silicon Valley looks kindlier on responsible vulnerability disclosures, and has incorporated much of the tradecraft cDc popularized, many of the original members fiercely guarded their anonymity until speaking with Menn for the book.

The increased familiarity with hackers that shows like Mr. Robot have fostered may be part of why the cDc veterans have doffed their masks, but Menn believes it has more to do with realizing the importance of what they can contribute.

“I think they came forward because they agreed their story was valuable and understood that to be credible, I needed real names and documents,” he said. “Yes, hackers are more mainstream now and the cDc in particular has broad respect, and both made it easier for them to raise their hands. But new information gets oversimplified and twisted for a variety of ends.”

But if the absorption of hackers into the mainstream were complete, and your average person knew the whole story, Menn likely wouldn’t have gone to such lengths. Seen from its complete arc — at least so far, with their work far from finished — it would probably come as a shock just how much cultural ground hackers have covered.

After asking Menn what surprised him the most about his research, he had no shortage of revelations.

“[I was surprised] that a sitting U.S. Congressman had been a member of the most important group of hackers in American history, that he had been the one to gender-integrate it, that the secret had held for so long, that he would agree to discuss it with me, and that he would declare for President as I was going to press.”

Topics
Jonathan Terrasi
Jonathan Terrasi
Jonathan has studiously followed trends in technology, particularly in information security and digital privacy, since 2014…
Trying to buy a GPU in 2023 almost makes me miss the shortage
Two AMD Radeon RX 7000 graphics cards on a pink surface.

The days of the GPU shortage are long over, but somehow, buying a GPU is harder than ever -- and that sentiment has very little to do with stock levels. It's just that there are no obvious candidates when shopping anymore.

In a generation where no single GPU stands out as the single best graphics card, it's hard to jump on board with the latest from AMD and Nvidia. I don't want to see another GPU shortage, but the state of the graphics card market is far from where it should be.
This generation is all over the place

Read more
HP printers are heavily discounted in Best Buy’s flash sale
The HP - OfficeJet Pro 8034e Wireless All-In-One Inkjet Printer on a desk with a smartphone.

There’s good news in store if you’re looking to land a new printer at a discount this weekend. Best Buy is having a 48-hour flash sale on HP printers, with several that can compete with the best printers seeing some good prices. HP is almost always one of the best laptop brands, and it’s one of the same when it comes to printers. So if you’re looking for a new home or office printer, read onward on how to save on an HP printer at Best Buy.
HP DeskJet 2755e — $60, was $85

The HP DeskJet 2755e is a good entry-level printer. It’s got you covered if your printing needs are pretty basic, or if you don’t need to print in mass. This is a color InkJet printer, which makes it good for almost all uses. It can also make copies and scan in color, and it has mobile and wireless printing functionality. You can get set up quickly and easily with the HP Smart app that guides you through the setup process, and you can also use this app to print, scan and copy documents from your phone.

Read more
This tiny ThinkPad can’t quite keep up with the MacBook Air M2
Lenovo ThinkPad X1 Nano Gen 3 rear view showing lid and logo.

While the laptop industry continues to move toward 14-inch laptops and larger, the 13-inch laptop remains an important category. One of the best is the Apple MacBook Air M2, with an extremely thin and well-built chassis, great performance, and incredibly long battery life.

Lenovo has recently introduced the third generation of its ThinkPad X1 Nano, one of the lightest laptops we've tested and a good performer as well. It's stiff competition, but which of these two diminutive laptops stands apart?
Specs and configurations

Read more