The hacker mindset doesn't actually see what happens on the other side, to the victim.

Companies spend millions of dollars on firewalls and secure access devices, and it's money wasted because none of these measures address the weakest link in the security chain: the people who use, administer and operate computer systems

My argument is not that I shouldn't have been punished, but that the punishment didn't fit the crime.

But a lot of businesses out there don't see the return on investment, they look at it as a liability, and until they can understand that proactive security actually returns, gives them a return on investment, it's still a hard sell for people.

You can't go to Windows Update and get a patch for stupidity.

All they need to do is to set up some website somewhere selling some bogus product at twenty percent of the normal market prices and people are going to be tricked into providing their credit card numbers.

A hacker doesnt deliberately destroy data or profit from his activities.