Hacking a single computer is pretty straight forward. Roll to break in, roll to find what you way, maybe another roll to decrypt if necessary, no need to slow down the game and bore the players who aren't running hackers.
But if one needs to take over a network, and doing so is a big part of the mission, things can get as complicated as you want. This is what I've developed so far:
Cracking Cell Phones
There are three approaches to breaking into a cell phone:
Attack the phone operating system through the cell network. This is the most difficult attack, and incurs a -40 to the Technician check to find an exploit that will allow access. Once access is obtained, there will be an additional -30 to all Technician checks to access information at the user operating system level (this is pretty much everything other than any calls or texts currently incoming or outgoing). The phone simply isn’t designed for the hardware level to control the user level.
Such an attack can come from anywhere in the world, if the attacker knows the identity of the phone and has access to the cell network it is connected to.
Attack the user interface through the WiFi system. This is the most common method of attack, and provides no modifiers for either the initial attack or retrieving data.
Such an attack can come from anywhere on the local network, but requires WiFi be on. A -10 penalty to the Technician check if the WiFi is not actually connected to anything.
Attack the user interface through Bluetooth. This is actually the easiest method of attack, giving a +20 to the Technician check, but no modifier for checks to retrieve data. While Class 2 Bluetooth devices have a theoretical range of 10 meters (33 feet), in real world conditions it is often a lot less.
In addition to the attack vector, other modifiers result from the type of phone. No opinions will be offered here on the quality of security offered by real life phone models, so types will be classified as Cheap, Moderate, and Expensive, and Old, Average, and New. Cheap and Old each offer +10 to Technician checks. Expensive and New each offer -10 to Technician checks. Some phones will also have a dedicated encryption subsystem, which offers an additional -20 to Technician checks. These modifiers apply to both the attack roll and rolls to retrieve specific information.
To attack a phone, the attacker makes a Technician check with appropriate modifiers. This takes 1D minutes per attempt. If the attack critically succeeds, any security system present is deactivated, and further Technician checks on that phone are at +10. If the attack is successful, access is granted. If the attack fails, there is no access, but further attacks are unmodified. If the attack critically fails, a second action (with the usual penalty) is necessary to avoid triggering any security systems that are present (not all phones have them).
Once a phone has been compromised, the attacker has several options. Each takes 1 turn and requires a Technician check – downloading data may take longer, depending on how much there is):
In some cases (such as a burner phone), once data is retrieved, a Detective check (by the intruder or someone else) may be needed to extract useful information out of it. This may also require access to other resources, such as tracking a phone’s location through metadata records, and coordinating it with similar records for other phones to get a name. This would require access to phone company records, and can take hours, days, or months. Often, stored texts, browser history or app data will give clues to the user’s identity as well.
You scare me.
I scare me, sometimes. It happens that I do IT work for a living, so this is actually something I need to understand. And the people I game with like a little verisimilitude (though not too much real life accuracy).