Hacker tools and techniques: Underground hacking sites

Hackers frequently update their attack tools, techniques and methods to find new ways to break into databases, networks and devices. Track their progress and the work of cybercrime investigators with the latest information on hacking groups, underground hacker sites and new hacker tools.

Top Stories

News 28 Oct 2021
Avast releases decryptors for multiple ransomware strains

Victims of three separate ransomware families can now recover data using tools developed by the antivirus vendor with help from a malware analyst and an alleged Babuk developer. Continue Reading
By
- Arielle Waldman, Features Writer, Dark Reading
News 15 Oct 2021
Accenture sheds more light on August data breach

The IT services giant disclosed in an SEC filing that threat actors stole and leaked proprietary data during a LockBit ransomware attack earlier this year. Continue Reading
By
- Shaun Nichols, TechTarget

Podcast 28 Apr 2017
Risk & Repeat: More Equation Group cyberweapons leaked

In this episode of SearchSecurity's Risk & Repeat podcast, editors discuss the latest round of Equation Group cyberweapons and how Microsoft patched them. Continue Reading
By
- Rob Wright, Senior News Director, Dark Reading
News 18 Apr 2017
Shadow Brokers' Windows exploits target unsupported systems

A new release of NSA cyberweapons falls flat, as Windows exploits from the Shadow Brokers have mostly been patched. But unsupported systems are still at risk. Continue Reading
By
- Michael Heller, TechTarget
News 14 Apr 2017
Shadow Brokers release SWIFT banking and Windows exploits

The Shadow Brokers released another cache of cyberweapons linked to the Equation Group, including Windows exploits and attack details for the SWIFT banking system. Continue Reading
By
- Michael Heller, TechTarget
Feature 03 Apr 2017
Politics of cyber attribution pose risk for private industry

Why nation-state attribution plays a major role in the U.S. government's willingness to share cyberthreat intelligence with private-sector companies. Continue Reading
By
- Adam Rice and Mark Maunu
30 Mar 2017

Politics of cyber attribution pose risk for private industry

Continue Reading
News 17 Mar 2017
Yahoo fallout: Minted authentication cookies raise concerns

Although minting authentication cookies is not widely understood, the Yahoo hacker indictments has brought it to the forefront and shown it can be very dangerous. Continue Reading
By
- Michael Heller, TechTarget
News 14 Feb 2017
Microsoft: Nation-state cyberattacks have changed the security game

Microsoft's Brad Smith spoke at RSA Conference 2017 about the effects of nation-state cyberattacks and what businesses and governments can do about them. Continue Reading
By
- Rob Wright, Senior News Director, Dark Reading
Podcast 25 Jan 2017
Risk & Repeat: Windows SMB warning raises questions, concerns

In this episode of SearchSecurity's Risk & Repeat podcast, editors discuss the Shadow Brokers' alleged exploit for Windows SMB and what it means for both enterprises and Microsoft. Continue Reading
By
- Rob Wright, Senior News Director, Dark Reading
News 20 Jan 2017
Carbanak gang using Google services for command and control

Researchers find the Carbanak gang has evolved its attacks on financial institutions to use Google services for command and control infrastructure in malware. Continue Reading
By
- Michael Heller, TechTarget
News 29 Aug 2016
Pegasus iOS exploit uses three zero days to attack high-value targets

A new remote iOS exploit called Pegasus leverages three zero days in what appear to be state-sponsored targeted attack campaigns against political dissidents. Continue Reading
By
- Michael Heller, TechTarget
News 01 Dec 2015
Amex credit card hack predicts replacement card number

Samy Kamkar found a weakness in the algorithm American Express uses to generate replacement card information and created a credit card hack as a proof-of-concept. Continue Reading
By
- Michael Heller, TechTarget
Opinion 01 Dec 2015
WMI tools make the perfect crime 'malware-free'

Security researchers claim that attackers are abusing a longstanding administrative tool in the Windows operating system. With no telltale signs of malware, how can you stop it? Continue Reading
By
- Robert Richardson
Feature 08 Oct 2015
Emerging security threats you're up against now

Learn about the 'hacking as a service' and other emerging security threats. Continue Reading
By
- David Strom
Answer 17 Aug 2015
Can a new encryption trick prevent reverse engineering?

Expert Michael Cobb explains how reverse engineering can be made more difficult with an approach called Hardened Anti-Reverse Engineering System or HARES. Continue Reading
By
- Michael Cobb
Tip 10 Apr 2014
NSA TAO: What Tailored Access Operations unit means for enterprises

The NSA's top-secret Tailored Access Operations offensive hacking unit offers enterprise defense strategy lessons. Expert Nick Lewis discusses. Continue Reading
By
- Nick Lewis
Answer 12 Feb 2013
What risk does the Apple UDID security leak pose to iOS users?

Expert Michael Cobb details Apple's Unique Device Identifiers, plus why iOS users should be concerned about the Anonymous UDID security leak. Continue Reading
By
- Michael Cobb
Answer 25 Aug 2011
Locate IP address location: How to confirm the origin of a cyberattack

What's the best way to determine the origin of a cyberattack? Expert Nick Lewis weighs in. Continue Reading
By
- Nick Lewis
Definition 24 Sep 2010
alternate data stream (ADS)

An alternate data stream (ADS) is a feature of Windows New Technology File System (NTFS) that contains metadata for locating a specific file by author or title. Continue Reading
By
- TechTarget Contributor
News 24 Mar 2010
Apple iPhone, Microsoft IE 8 get hacked in Pwn2Own contest

Hackers also exploited zero-day vulnerabilities in Apple Safari and Mozilla Firefox browsers in the first day of TippingPoint's Pwn2Own contest Wednesday. Continue Reading
By
- Robert Westervelt, TechTarget
Tip 05 Mar 2008
Built-in Windows commands to determine if a system has been hacked

In this tip, contributor Ed Skoudis identifies five of the most useful Windows command-line tools for machine analysis and discusses how they can assist administrators in determining if a machine has been hacked. Continue Reading
By
- Ed Skoudis, SANS Technology Institute
Tip 17 Jan 2008
Ten hacker tricks to exploit SQL Server systems

SQL Server hackers have a medley of tricks and tools to gain access to your database systems. Learn their techniques and test SQL Server security before they do. Continue Reading
By
- Kevin Beaver, Principle Logic, LLC

1
2

Search Networking

5G in edge computing: Benefits, applications and challenges
5G and edge computing need each other to reach their full potential. Learn the benefits and challenges of decentralizing compute ...
What 5G skills are most in demand?
In the evolving 5G job market, service providers, systems integrators and enterprises are looking for applicants who have ...
7 top 5G enterprise use cases and business opportunities
As 5G cellular networking continues to roll out, some key business use cases have emerged. Fixed wireless access, for example, ...

Search CIO

Ignoring digital sovereignty? CIOs can't afford to
Geopolitical turmoil and shifting regulations are forcing CIOs to reassess their approach to data control. Digital sovereignty is...
Short-form video strategy: A CIO's guide to engagement and ROI
Short-form video is now a core enterprise content format, requiring IT leaders to oversee technology, data and processes to ...
CIOs must lead workforce transformation in AI era
AI workforce transformation requires careful education, strategic CIO leadership and balanced implementation to empower employees...

Search Enterprise Desktop

Set up MFA in Microsoft 365 to safeguard data
Learn how to set up multifactor authentication in Microsoft 365 to enhance security, prevent unauthorized access and protect ...
How to access Windows 11 BIOS configuration with hotkeys
Configuring Windows 11 firmware settings requires that admins access the Unified Extensible Firmware Interface. Using so-called '...
Your browser is an AI-enabled OS, so secure it like one
With AI capabilities and 87+ browser-based apps per organization, browsers have evolved into OSes that demand enterprise-grade ...

Search Cloud Computing

Real-world examples of cloud observability in action
Observability platforms are no longer just IT tools --they're strategic business enablers that directly affect revenue, customer ...
OpenTelemetry vs. Prometheus: Which should you choose?
Choosing the right observability tool has a big impact on growing and future-proofing your business. Discover how to make ...
Conquer 8 cloud observability challenges to maximize ROI
Cloud administrators and operations teams face all types of observability challenges. With the right practices in place, you can ...

ComputerWeekly.com

Yubico bolsters APAC presence, touts device subscriptions
Yubico is hiring local teams in Singapore and pitching its subscription service to help enterprises secure employee access to ...
Vodafone goes for Dell in major Open RAN network modernisation
European operator selects global IT giant to power regional strategic five-year RAN infrastructure programme to improve ...
Trump administration’s One Big Beautiful Bill Act promises to fill Meta’s coffers
The owner of Facebook, WhatsApp and Instagram is spending billions on new datacentres for artificial intelligence

Close