Cris Thomas (also known as Space Rogue) is an American cybersecurity researcher, white hat hacker, and award winning[1][2]
best selling[3] author. A founding member and researcher at the high-profile hacker security think tank L0pht Heavy Industries, Thomas was one of seven L0pht members who testified before the U.S. Senate Committee on Governmental Affairs (1998) on the topic of government and homeland computer security, specifically warning of internet vulnerabilities and claiming that the group could "take down the internet within 30 minutes".[4]
Subsequently, Thomas pursued a career in Cyber Security Research while also embracing a public advocacy role as a cyber security subject-matter expert (SME) and pundit. Granting interviews and contributing articles,[5] Space Rogue's advocacy has served to educate and advise corporations, government, and the Public about security concerns and relative risk in the areas of election integrity, cyber terrorism, technology,[6] the anticipation of new risks associated with society's adoption of the Internet of things,[7] and balancing perspective (risk vs. hype).[8]
A founding member of the hacker think tank L0pht Heavy Industries, Thomas was the first of L0pht's members to leave following the merger of L0pht with @Stake in 2000, and the last to reveal his true name.[9][10] Thomas was one of seven L0pht members who testified before the U.S. Senate Committee on Governmental Affairs (1999). Testifying under his internet handle, Space Rogue, the testimony of Thomas and other L0pht members served to inform the government of current and future internet vulnerabilities to which federal and public channels were susceptible. The testimony marked the first time that persons not under federal witness protection were permitted to testify under assumed names.[4]
While at the L0pht Thomas created The Whacked Mac Archives and The Hacker News Network. In addition he released at least one security advisories detailing a flaw in FWB's Hard Disk Toolkit.[11][12]
Thomas continued a career in Cyber Security Research at @Stake,[13] Guardent, Trustwave (Spiderlabs),[14] Tenable,[15] and IBM (X-Force Red).[16] Selected to serve as a panelist during a 2016 Atlantic Councilcyber risk discussion series,[6] and a webinar speaker for the National Science Foundation's WATCH series,[17][18] Thomas has embraced a public advocacy role as a cyber security subject-matter expert (SME) and pundit, granting interviews and contributing articles[5] to educate the public about security concerns and relative risk. Topics include election integrity, cyber terrorism, technology,[7] password security,[19] the anticipation of new risks associated with society's adoption of the Internet of things,[8] and balancing perspective (risk vs. hype).[20]
In response to a 2016 United States Government Accountability Office report[21] revealing the nation's nuclear weapons were under the control of computers that relied on outdated 8" floppy disks,[22] Thomas argued that the older computers, data storage systems, programming languages, and lack of internet connectivity would make it more difficult for hackers to access the systems, effectively reducing the vulnerability of the weapon control systems to hacking.[23]
Following cyber security mega-breaches at Target,[24]Home Depot,[25] and the U.S. Office of Personnel Management,[26] Thomas advocated for proactive implementation of basic security measures as the most effective means to thwart similar mega-threats.[27] Bluntly stating that the gap between knowledge and implementation leaves companies and individuals at unnecessary risk, Thomas’ recommendation focused on simple measures that have been known for one to two decades, but which organizations have not implemented universally.[27] Thomas had identified retail cyber security breaches, including that at FAO Schwarz, as early as 1999.[28][29]
In 2017, at the Defcon hacker conference Thomas assisted with escorting Rep. Will Hurd (R) and Rep. Jim Langevin (D) around the conference area through the various villages.[30]
At Defcon 27 in 2019 Thomas appeared on a panel with Rep. Langevin (D-RI),[31] Rep. Lieu (D-CA),[32] and former Rep. Jane Harman[33] entitled "Hacking Congress: The Enemy of My Enemy Is My Friend."[34]
During the panel Thomas was quoted as saying “It’s up to us as a community to engage with those people…to educate them”, "But Congress doesn't work that way; it doesn't work at the 'speed of hack'. If you're going to engage with it, you need to recognize this is an incremental journey” [35] and “it takes 20 years to go from hackers in Congress to Congress at DEF CON”.[36]
The Whacked Mac Archives
The Whacked Mac Archives logo
The Whacked Mac Archives was an FTP download site managed by Thomas with the world's largest collection of Apple Macintosh hacking tools.[37] The total size of all the tools on the site was 20MB.[38]
A CD copy of the contents of the FTP site was advertised for sale in 2600: The Hacker Quarterly.[39]
Hacker News Network
Serving as Editor-in-Chief,[40] Thomas founded and managed L0pht's online newsletter and website, known as the Hacker News Network[41] (or simply Hacker News or HNN).[10] Originally created to rapidly share discoveries about computer security, Hacker News also became a forum for users to post security alerts as vulnerabilities were identified.[42] The publication grew, eventually supporting paid advertising and an audience that included technology journalists and companies with an interest in cybersecurity.[4] The website can be seen in several background shots of the video "Solar Sunrise: Dawn of a New Threat"[43] produced by the National Counterintelligence Center in 1999.[44]
After L0pht's merger with @Stake in 2000, the Responsible disclosure-focused Hacker News Network was replaced with Security News Network.[4][45]
Hacker News Network, after a decade offline, set for a launch on Jan. 11, 2010, with video reports about security,[46] the last videos were published in 2011.[47]Hacker News Network in 2018 redirects to spacerogue.net[48][49]
CyberSquirrel1 (CS1)
In 2013, Thomas created the project CyberSquirrel1 as a satirical demonstration of the relative risk of Cyberwarfare attacks on critical infrastructure elements such as the North American electrical grid.[50] Started as a Twitter feed, the CyberSquirrel1 project expanded to include a full website and CyberSquirrel Tracking Map;[51] as the dataset grew, Attrition.org's Brian Martin (alias “Jared E. Richo” a/k/a Jericho) joined the project in 2014.[20] CyberSquirrel1's results disrupted public perception regarding the prevalence of nation-based hacking cyberwarfare attacks, concluding that damage due to cyberwarfare (for example, Stuxnet) was "tiny compared to the cyber-threat caused by animals",[50][52] referring to electrical disruptions caused by squirrels.
An archive containing the full data set and supporting material of the project was uploaded to the Internet Archive under the Creative Commons license on January 19, 2021.
Election Security
As the 2015-2016 alleged Russian interference in the 2016 United States elections unfolded, public and media interest in hacking and hackers increased.[53] Leading up to the 2016 election, Thomas was interviewed for mainstream media productions, including CNBC 's On the Money.[54][55]
After the release of the Joint Analysis Report, Thomas called for expanded detail on Indicators of Compromise in Federal Joint Analysis Reports, indicating that increased transparency and IP address reporting were instrumental for enhancing security.[56]
Prior to the 2018 election Thomas continued his advocacy speaking with CBS News and other outlets about securing our elections and the vulnerability of voting machines.[57][58][59][60]
Books
In February 2023 Thomas released his first book, Space Rogue: How the Hackers Known as L0pht Changed the World. [61][62] Written as a personal memoir, the book detailed his childhood growing up in Maine, how he discovered the online world of BBS’s and met the other members of the hacker collective L0pht Heavy Industries. The book covers how the L0pht released security vulnerability information, created L0phtcrack, gained media recognition, and testified in front of Congress in 1998. The book also covers the L0pht’s transition to the security consultancy @Stake, and how the L0pht’s impact still ripples throughout the information security industry today.
The book spent several weeks in the Amazon top 10 in the Computer & Technology Biographies category and briefly hit number 1.[63] The book was a finalist in the 2023 International Book Awards.[64] and a winner of the 2023 National Indie Excellence Awards (NIEA). [65]