{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,25]],"date-time":"2026-03-25T14:30:54Z","timestamp":1774449054620,"version":"3.50.1"},"reference-count":61,"publisher":"Springer Science and Business Media LLC","issue":"5","license":[{"start":{"date-parts":[[2021,5,10]],"date-time":"2021-05-10T00:00:00Z","timestamp":1620604800000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"},{"start":{"date-parts":[[2021,5,10]],"date-time":"2021-05-10T00:00:00Z","timestamp":1620604800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"}],"funder":[{"DOI":"10.13039\/100010685","name":"H2020 Science with and for Society","doi-asserted-by":"publisher","award":["833042"],"award-info":[{"award-number":["833042"]}],"id":[{"id":"10.13039\/100010685","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Pers Ubiquit Comput"],"published-print":{"date-parts":[[2021,10]]},"abstract":"<jats:title>Abstract<\/jats:title><jats:p>The development of cyberspace has brought about innumerable advantages for the mankind. However, it also came with several serious drawbacks; as cyberspace evolves, so does cybercrime. Since the birth of cyberspace, individuals, groups and whole nations have been engaging in computer-related offences of various significance and impact, trying to exploit systems\u2019 vulnerabilities, disseminate malicious software and steal data or funds. The concept of a hacker has entered the collective consciousness and become an intrinsic element of popular culture. However, there are hackers, or rather, cyberspace actors, who challenge this common view. This paper presents three types of such people, namely hacktivists, members of cyber militias and Internet trolls. Although they all use the Internet to break the laws or rules, their internal motivations are not always utterly sinister; actually, some of them firmly believe that their actions are for the greater good. This paper is structured as follows: Firstly, the general profile of a hacker is presented. Then, the state of the art is outlined, concerning other papers dealing with the motivations behind cyber threat actors. Following that, the three aforementioned groups of cyberspace actors are contrasted with the profile of a \u2018typical\u2019 hacker. Then, the profiles of a typical representative for each of the group and their motivations are indicated, followed by the final conclusions.<\/jats:p>","DOI":"10.1007\/s00779-021-01568-7","type":"journal-article","created":{"date-parts":[[2021,5,10]],"date-time":"2021-05-10T10:08:49Z","timestamp":1620641329000},"page":"843-852","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":24,"title":["The stray sheep of cyberspace a.k.a. the actors who claim they break the law for the greater good"],"prefix":"10.1007","volume":"25","author":[{"given":"Aleksandra","family":"Pawlicka","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Micha\u0142","family":"Chora\u015b","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Marek","family":"Pawlicki","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2021,5,10]]},"reference":[{"key":"1568_CR1","doi-asserted-by":"crossref","unstructured":"Pavlik K (2017) \u201cCybercrime, hacking, and legislation,\u201d J. Cybersecurity Res., vol. 1, no. 1.","DOI":"10.19030\/jcr.v2i1.9966"},{"key":"1568_CR2","unstructured":"Chantler N (1995) \u201cRisk: the profile of the computer hacker.,\u201d Curtin Business School, Australia."},{"key":"1568_CR3","volume-title":"27th Virus Bulletin International Conference","author":"M Romagna","year":"2017","unstructured":"Romagna M, van den Hout NJ (2017) Hacktivism and website defacement: motivations, capabilities and potential threats. In: 27th Virus Bulletin International Conference"},{"key":"1568_CR4","unstructured":"Maiwald E (2003) Network Security A Beginner\u2019s Guide."},{"issue":"1","key":"1568_CR5","doi-asserted-by":"publisher","first-page":"110","DOI":"10.31299\/ksi.25.1.4","volume":"25","author":"X Li","year":"2017","unstructured":"Li X (May 2017) A review of motivations of illegal cyber activities. Kriminologija Soc Integr 25(1):110\u2013126","journal-title":"Kriminologija Soc Integr"},{"key":"1568_CR6","first-page":"1","volume":"11","author":"R Madarie","year":"2017","unstructured":"Madarie R (2017) Hackers\u2019 motivations: testing Schwartz\u2019s theory of motivational types of values in a sample of hackers. Int J Cyber Criminol 11:1","journal-title":"Int J Cyber Criminol"},{"key":"1568_CR7","unstructured":"Ottis R (2011) A systematic approach to offensive volunteer cyber militia (Vabatahtlikud k\u00fcberr\u00fcndegrupid: s\u00fcsteemiteoreetiline vaade). Tallinna Tehnika\u00fclikool, Infotehnoloogia teaduskond, Informaatikainstituut"},{"key":"1568_CR8","doi-asserted-by":"crossref","unstructured":"Pawlicka A, Chora\u015b M, and Pawlicki M (2020) \u201cCyberspace threats,\u201d in Proceedings of the 15th International Conference on Availability, Reliability and Security, pp. 1\u201311.","DOI":"10.1145\/3407023.3409181"},{"key":"1568_CR9","doi-asserted-by":"crossref","unstructured":"Ablon L (2018) \u201cThe motivations of cyber threat actors and their use and monetization of stolen data: hearings before the Committee on Financial Services Subcommittee on Terrorism and Illicit Finance, United States House, 115th Cong. 1\u201d.","DOI":"10.7249\/CT490"},{"issue":"1","key":"1568_CR10","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1515\/jms-2016-0184","volume":"4","author":"J Sigholm","year":"2013","unstructured":"Sigholm J (2013) Non-state actors in cyberspace operations. J Mil Stud 4(1):1\u201337","journal-title":"J Mil Stud"},{"key":"1568_CR11","unstructured":"Ohlin D, Govern K, and Oxford CF (2015) \u201cNicol\u00f2 Bussolati \u2018the rise of non-state actors in cyberwarfare\u2019\u201d."},{"key":"1568_CR12","unstructured":"Jeff Shantz JT (2013) Cyber disobedience: re-presenting online anarchy. Zero Books, Hants"},{"key":"1568_CR13","unstructured":"Dogan B (2019) \u201cContextualizing hacktivism: the criminalization of Redhack,\u201d CARGC Pap., vol. 10."},{"key":"1568_CR14","unstructured":"Afifi-Sabet K, \u201cWhat is hacktivism?\u201d (2018). [Online]. Available: https:\/\/www.itpro.co.uk\/hacking\/30203\/what-is-hacktivism. [Accessed: 20-Jul-2019]."},{"issue":"8","key":"1568_CR15","doi-asserted-by":"publisher","first-page":"5","DOI":"10.1016\/S1353-4858(11)70084-8","volume":"2011","author":"S Mansfield-Devine","year":"2011","unstructured":"Mansfield-Devine S (2011) Hacktivism: assessing the damage. Netw Secur 2011(8):5\u201313","journal-title":"Netw Secur"},{"key":"1568_CR16","unstructured":"C. C. for C. Security, \u201cCyber threat and cyber threat actors\u201d (2018). [Online]. Available: https:\/\/cyber.gc.ca\/en\/guidance\/cyber-threat-and-cyber-threat-actors. [Accessed: 20-Jul-2019]."},{"key":"1568_CR17","unstructured":"\u201cProactive defense: understanding the 4 main threat actor types.\u201d [Online]. Available: https:\/\/www.recordedfuture.com\/threat-actor-types\/."},{"key":"1568_CR18","unstructured":"Pompon R (2017) Doxing, DoS, and defacement: today\u2019s mainstream hacktivism tools. Application Threat Intelligence"},{"key":"1568_CR19","unstructured":"\u201cVirtual sit-in,\u201d Techopedia. [Online]. Available: https:\/\/www.techopedia.com\/definition\/29626\/virtual-sit-in. [Accessed: 20-Jul-2019]."},{"key":"1568_CR20","unstructured":"Magal P (2019) \u201cWho are the hacktivists?\u201d."},{"key":"1568_CR21","unstructured":"Gargano F (2019) \u201cThree common threat actors and the one you might not know about\u201d."},{"key":"1568_CR22","unstructured":"Benton B (2015) \u201cThe misinformers: Edward Snowden, Aaron Swartz and the troubled relationship between hacktivists, mass media and American Government\u201d."},{"issue":"3","key":"1568_CR23","doi-asserted-by":"publisher","first-page":"391","DOI":"10.1093\/jhuman\/huv012","volume":"7","author":"T Sorell","year":"2015","unstructured":"Sorell T (2015) Human rights and hacktivism: the cases of Wikileaks and Anonymous. J Hum Rights Pract 7(3):391\u2013410","journal-title":"J Hum Rights Pract"},{"key":"1568_CR24","unstructured":"Arthur C (2013) \u201cLulzSec: what they did, who they were and how they were caught\u201d, The Guardian."},{"key":"1568_CR25","unstructured":"Baraniuk C (2013) \u201cTen hacktivists who shook the web\u201d. [Online]. Available: https:\/\/www.dazeddigital.com\/artsandculture\/article\/16368\/1\/ten-hacktivists-who-shook-the-web. [Accessed: 20-Jul-2019]."},{"key":"1568_CR26","doi-asserted-by":"crossref","unstructured":"Stamm E (2015) \u201cWe are all anonymous: beyond hacktivist stereotypes,\u201d Spectra, vol. 4, no. 2.","DOI":"10.21061\/spectra.v4i2.243"},{"key":"1568_CR27","unstructured":"McCallion J (2017) \u201cAnti-Isis hacktivists compromise terrorists\u2019 website | IT PRO\u201d, ITPro."},{"key":"1568_CR28","doi-asserted-by":"crossref","unstructured":"Fowler K (2016) Data breach preparation and response.","DOI":"10.1016\/S1353-4858(16)30094-0"},{"key":"1568_CR29","unstructured":"McCoy J (2019) \u201c7 Effective tactics to defeat Internet trolls,\u201d Search Engine Journal."},{"issue":"9","key":"1568_CR30","doi-asserted-by":"publisher","first-page":"3323","DOI":"10.1177\/1461444817748578","volume":"20","author":"C Cook","year":"2018","unstructured":"Cook C, Schaafsma J, Antheunis M (2018) Under the bridge: an in-depth examination of online trolling in the gaming context. New Media Soc 20(9):3323\u20133340","journal-title":"New Media Soc"},{"key":"1568_CR31","unstructured":"Jussinoja T (2018) Life-cycle of Internet trolls. University Of Jyv\u00e4skyl\u00e4"},{"key":"1568_CR32","unstructured":"Bishop J (2012) \u201cTackling Internet abuse in Great Britain: towards a framework for classifying severities of \u2018flame trolling\u2019\u201d."},{"key":"1568_CR33","unstructured":"Bishop J (2013) The effect of de-individuation of the Internet troller on criminal procedure implementation: an interview with a hater. Int. J. Cyber Criminol"},{"issue":"5","key":"1568_CR34","doi-asserted-by":"publisher","first-page":"371","DOI":"10.1080\/01972240290108186","volume":"18","author":"S Herring","year":"2002","unstructured":"Herring S, Job-Sluder K, Scheckler R, Barab S (2002) Searching for safety online: managing \u2018trolling\u2019 in a feminist forum. Inf Soc 18(5):371\u2013384","journal-title":"Inf Soc"},{"key":"1568_CR35","unstructured":"Entity Alien, \u201cUrban Dictionary: troll\u201d (2002). [Online]. Available: http:\/\/www.urbandictionary.com\/define.php?term=troll."},{"key":"1568_CR36","unstructured":"Cambria E, Chandra P, Sharma A, Hussain A (2010) \u201cDo not feel the trolls\u201d."},{"issue":"3","key":"1568_CR37","doi-asserted-by":"publisher","first-page":"357","DOI":"10.1177\/0165551510365390","volume":"36","author":"P Shachaf","year":"2010","unstructured":"Shachaf P, Hara N (2010) Beyond vandalism: Wikipedia trolls. J Inf Sci 36(3):357\u2013370","journal-title":"J Inf Sci"},{"issue":"1","key":"1568_CR38","doi-asserted-by":"publisher","first-page":"58","DOI":"10.1075\/jlac.1.1.04har","volume":"1","author":"C Hardaker","year":"2013","unstructured":"Hardaker C (2013) Uh. . . . not to be nitpicky,,,,,but\u2026the past tense of drag is dragged, not drug.\u2019: an overview of trolling strategies. J Lang Aggress Confl 1(1):58\u201386","journal-title":"J Lang Aggress Confl"},{"issue":"15\u201316","key":"1568_CR39","doi-asserted-by":"publisher","first-page":"1336","DOI":"10.1080\/0267257X.2017.1383298","volume":"33","author":"M Golf-Papez","year":"2017","unstructured":"Golf-Papez M, Veer E (2017) Don\u2019t feed the trolling: rethinking how online trolling is being defined and combated. J Mark Manag 33(15\u201316):1336\u20131354","journal-title":"J Mark Manag"},{"key":"1568_CR40","doi-asserted-by":"crossref","unstructured":"Addawood A, Badawy A, Lerman K, and Ferrara E (2019) \u201cLinguistic cues to deception: identifying political trolls on social media,\u201d in Proceedings of the Thirteenth International AAAI Conference on Web and Social Media (ICWSM 2019).","DOI":"10.1609\/icwsm.v13i01.3205"},{"key":"1568_CR41","unstructured":"Gorwa R (2017) \u201cComputational propaganda in Poland: false amplifiers and the digital public sphere\u201d."},{"key":"1568_CR42","doi-asserted-by":"crossref","unstructured":"Pennycook G and Rand D G (2017) \u201cWho falls for fake news? The roles of analytic thinking, motivated reasoning, political ideology, and bullshit receptivity\u201d, SSRN Electron. J.","DOI":"10.2139\/ssrn.3023545"},{"issue":"2","key":"1568_CR43","doi-asserted-by":"publisher","first-page":"79","DOI":"10.1080\/0163660X.2016.1204398","volume":"39","author":"TP Gerber","year":"2016","unstructured":"Gerber TP, Zavisca J (2016) Does Russian propaganda work? Wash Q 39(2):79\u201398","journal-title":"Wash Q"},{"key":"1568_CR44","unstructured":"Sear T and Jensen M (2018) \u201cRussian trolls targeted Australian voters on Twitter via #auspol and #MH17\u201d."},{"key":"1568_CR45","unstructured":"Charlish A (2019) \u201cPolish deputy minister resigns over judge trolling scandal\u201d. [Online]. Available: https:\/\/www.reuters.com\/article\/us-poland-politics-judiciary\/polish-deputy-minister-resigns-over-judge-trolling-scandal-idUSKCN1VA1BJ. [Accessed: 24-Aug-2019]."},{"key":"1568_CR46","unstructured":"Gf T (2019) \u201cOnet.pl: deputy justice minister behind campaign to discredit judges\u201d. [Online]. Available: https:\/\/www.tvn24.pl\/tvn24-news-in-english,157,m\/polish-deputy-minister-orchestrated-trolling-against-judges-onet-pl,962578.html. [Accessed: 24-Aug-2019]."},{"key":"1568_CR47","unstructured":"Buckels E (2019) \u201cProbing the sadistic minds of internet trolls\u201d, Character Context."},{"issue":"2","key":"1568_CR48","doi-asserted-by":"publisher","first-page":"328","DOI":"10.1111\/jopy.12393","volume":"87","author":"EE Buckels","year":"2019","unstructured":"Buckels EE, Trapnell PD, Andjelovic T, Paulhus DL (2019) Internet trolling and everyday sadism: parallel effects on pain perception and moral judgment. J Pers 87(2):328\u2013340","journal-title":"J Pers"},{"key":"1568_CR49","doi-asserted-by":"crossref","unstructured":"Sanfilippo MR, Shengnan Y, and Fichman P (2017) \u201cManaging online trolling: from deviant to social and political trolls,\u201d in Proceedings of the 50th Hawaii International Conference on System Sciences.","DOI":"10.24251\/HICSS.2017.219"},{"key":"1568_CR50","unstructured":"M. & S. Department for Digital, Culture, \u201cRapid evidence assessment: the prevalence and impact of online trolling\u201d 2019."},{"key":"1568_CR51","unstructured":"Ottis R (2010) \u201cProactive defense tactics against on-line cyber militia,\u201d in ECIW2010-Proceedings of the 9th European Conference on Information Warfare and Security."},{"key":"1568_CR52","unstructured":"Drozdiak N (2019) \u201cOne of Russia\u2019s neighbors has security lessons for the rest of us\u201d, Bloomberg Businessweek."},{"issue":"5","key":"1568_CR53","doi-asserted-by":"publisher","first-page":"16","DOI":"10.1109\/MSP.2011.46","volume":"9","author":"S Applegate","year":"2011","unstructured":"Applegate S (2011) Cybermilitias and political hackers: use of irregular forces in cyberwarfare. IEEE Secur Priv Mag 9(5):16\u201322","journal-title":"IEEE Secur Priv Mag"},{"key":"1568_CR54","unstructured":"Lyall N (2018) China\u2019s cyber militias. The Diplomat, Mar"},{"key":"1568_CR55","unstructured":"Seffers GI (2019) \u201cCyber militia launches nonprofit to share technology\u201d, SIGNAL AFCEA."},{"key":"1568_CR56","unstructured":"Segal A (2012) \u201cThe rise of Asia\u2019s cyber militias,\u201d The Atlantic."},{"key":"1568_CR57","doi-asserted-by":"publisher","first-page":"402","DOI":"10.1016\/j.cose.2019.07.001","volume":"86","author":"A Ahmad","year":"2019","unstructured":"Ahmad A, Webb J, Desouza KC, Boorman J (2019) Strategically-motivated advanced persistent threat: definition, process, tactics and a disinformation model of counterattack. Comput Secur 86:402\u2013418","journal-title":"Comput Secur"},{"key":"1568_CR58","doi-asserted-by":"publisher","first-page":"26","DOI":"10.1016\/j.cose.2017.08.005","volume":"72","author":"A Lemay","year":"2018","unstructured":"Lemay A, Calvet J, Menet F, Fernandez JM (2018) Survey of publicly available reports on advanced persistent threat actors. Comput Secur 72:26\u201359","journal-title":"Comput Secur"},{"key":"1568_CR59","doi-asserted-by":"publisher","first-page":"101606","DOI":"10.1016\/j.cose.2019.101606","volume":"88","author":"KC Desouza","year":"2020","unstructured":"Desouza KC, Ahmad A, Naseer H, Sharma M (2020) Weaponizing information systems for political disruption: the actor, lever, effects, and response taxonomy (ALERT). Comput Secur 88:101606","journal-title":"Comput Secur"},{"key":"1568_CR60","unstructured":"Lohrman D (2015) \u201cHacking for cause: today\u2019s growing cyber security trend\u201d."},{"key":"1568_CR61","doi-asserted-by":"crossref","unstructured":"Pawlicka A, Chora\u015b M, Kozik R, Pawlicki M (2021) First broad and systematic horizon scanning campaign and study to detect societal and ethical dilemmas and emerging issues spanning over cybersecurity solutions. Pers. Ubiquitous Comput, Jan","DOI":"10.1007\/s00779-020-01510-3"}],"container-title":["Personal and Ubiquitous Computing"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s00779-021-01568-7.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s00779-021-01568-7\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s00779-021-01568-7.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,12,26]],"date-time":"2022-12-26T21:56:53Z","timestamp":1672091813000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s00779-021-01568-7"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,5,10]]},"references-count":61,"journal-issue":{"issue":"5","published-print":{"date-parts":[[2021,10]]}},"alternative-id":["1568"],"URL":"https:\/\/doi.org\/10.1007\/s00779-021-01568-7","relation":{},"ISSN":["1617-4909","1617-4917"],"issn-type":[{"value":"1617-4909","type":"print"},{"value":"1617-4917","type":"electronic"}],"subject":[],"published":{"date-parts":[[2021,5,10]]},"assertion":[{"value":"2 October 2020","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"15 April 2021","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"10 May 2021","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}}]}}