Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Why do you call them "script kiddie" and not a hacker? IMO it's still a hacker even if the attack is not very sophisticated or even if you made a big security mistake.


No hacking skill or knowledge required to simply download and run someone else’s script. That’s why they are called “script kiddies”.


I think it’s fine. Script kiddie is a strict subset of “hacker” in the negative sense of the word “hacker”. It’s a way to convey to the reader the level of sophistication used in the attack by describing the hacker in this way.


Right, and there should be a sense of shame associated with being pwned by, for example, not setting a password on your public internet accessible (redis || postgres || mongo) instances. You didn’t get hacked, you let a child have their way with your application. Hence: script kiddie


script kiddie is simply a hacker term, it has nothing to do with age or even skill.


> it has nothing to do with age…

It’s in the name, so it doesn’t seem worth disputing that at least at the time when the term was coined- it did have to do with age

> or even skill

Skill is literally the defining feature.

What exactly do you mean by “it’s simply a hacker term” anyway? Are words just sounds we make with our mouths?




Consider applying for YC's Summer 2026 batch! Applications are open till May 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: