Hacker tools and techniques: Underground hacking sites

Hackers frequently update their attack tools, techniques and methods to find new ways to break into databases, networks and devices. Track their progress and the work of cybercrime investigators with the latest information on hacking groups, underground hacker sites and new hacker tools.

Top Stories

News 28 Oct 2021
Avast releases decryptors for multiple ransomware strains

Victims of three separate ransomware families can now recover data using tools developed by the antivirus vendor with help from a malware analyst and an alleged Babuk developer. Continue Reading
By
- Arielle Waldman, News Writer
News 15 Oct 2021
Accenture sheds more light on August data breach

The IT services giant disclosed in an SEC filing that threat actors stole and leaked proprietary data during a LockBit ransomware attack earlier this year. Continue Reading
By
- Shaun Nichols

Opinion 03 Apr 2018
Marcus Ranum decodes hardware vulnerabilities with Joe Grand

Computer hardware designs with dangerous security flaws? That's no surprise to renowned hardware hacker Grand. Continue Reading
By
- Marcus J. Ranum
30 Mar 2018

Marcus Ranum decodes hardware vulnerabilities with Joe Grand

Continue Reading
News 08 Feb 2018
DoJ breaks up Infraud Organization with some help

The U.S. Department of Justice announced the shutdown of the Infraud Organization, which authorities claim is responsible for global cyberfraud losses in excess of $530 million. Continue Reading
By
- Peter Loshin, Former Senior Technology Editor
Guide 25 Jan 2018

Containing ransomware outbreaks now a top infosec priority

Prepping for and dealing with an outbreak of ransomware is the IT version of the flu shot. Learn how company systems and data from these potentially deadline infections. Continue Reading
Podcast 22 Dec 2017
Risk & Repeat: Cryptojacking looms amid the bitcoin boom

In this week's Risk & Repeat podcast, SearchSecurity editors discuss the rising threat of cryptojacking and how hackers can steal computing power from unsuspecting users. Continue Reading
By
- Rob Wright, Senior News Director
Podcast 14 Dec 2017
Risk & Repeat: The Bitcoin boom and its infosec effects

In this week's Risk & Repeat podcast, SearchSecurity editors discuss the recent bitcoin boom and how the cryptocurrency's rising value could affect the cybersecurity landscape. Continue Reading
By
- Rob Wright, Senior News Director
News 17 Oct 2017
KRACK WPA2 flaw might be more hype than risk

Researchers discover a WPA2 vulnerability and brand it KRACK, but some experts say the early reports overstate the risk of the flaw and downplay the difficulty of an exploit. Continue Reading
By
- Michael Heller, TechTarget
Answer 06 Oct 2017
How does the Ursnif Trojan variant exploit mouse movements?

A new version of the Ursnif Trojan uses mouse movements to bypass security efforts by beating sandbox detection. Expert Matthew Pascucci explains how this technique works. Continue Reading
By
- Matthew Pascucci
News 28 Sep 2017
Network lateral movement from an attacker's perspective

A security researcher describes the network lateral movement process from an attacker's perspective and a few key points of focus for IT pros, at DerbyCon. Continue Reading
By
- Michael Heller, TechTarget
News 21 Sep 2017
Undocumented Word feature could lead to system information theft

An undocumented Word feature found by Kaspersky Lab could lead to system information theft and affects users on both PCs and mobile devices. Continue Reading
By
- Michael Heller, TechTarget
Feature 01 Sep 2017
Why WannaCry and other computer worms may inherit the earth

A vast majority of APT attacks and malware delivery happens via spear phishing. But worms have always had a place in the toolkit when the delivery method fit the mission. Continue Reading
By
- Adam Rice
Answer 21 Aug 2017
How does the MajikPOS malware evade detection?

A new POS malware downloads a RAM scraper to avoid detection. Expert Nick Lewis explains the tricks MajikPOS uses to target retail terminals and how to defend against it. Continue Reading
By
- Nick Lewis
News 21 Jul 2017
Dark web markets' shutdown may lead to more arrests

Cooperation between law enforcement from around the world led to the shutdown of the AlphaBay and Hansa dark web markets and potential leads of illegal vendors. Continue Reading
By
- Michael Heller, TechTarget
Podcast 05 Jul 2017
Risk & Repeat: NotPetya ransomware raises the stakes

In this week's Risk & Repeat podcast, SearchSecurity editors discuss the NotPetya ransomware, its impact and the growing trend of sophisticated ransomware attacks. Continue Reading
By
- Rob Wright, Senior News Director
News 23 Jun 2017
Brutal Kangaroo USB malware could be reverse-engineered

The Brutal Kangaroo USB malware leaked from the CIA's Vault 7 could pose a threat to air-gapped computers if hackers reverse-engineer it. Continue Reading
By
- Michael Heller, TechTarget
Answer 12 Jun 2017
How do attackers use Microsoft Application Verifier for hijacking?

Attackers found a way to use Microsoft Application Verifier to hijack security products, like antivirus tools. Expert Judith Myerson explains how it's done and what to do to stop it. Continue Reading
By
- Judith Myerson
Podcast 08 Jun 2017
Risk & Repeat: Shadow Brokers launch zero-day exploit service

In this week's Risk & Repeat podcast, SearchSecurity editors discuss the Shadow Brokers' monthly service for zero-day exploits and how it may affect enterprise security efforts. Continue Reading
By
- Rob Wright, Senior News Director
Podcast 25 May 2017
Risk & Repeat: Microsoft slams NSA over EternalBlue

In this week's Risk & Repeat podcast, SearchSecurity editors discuss Microsoft's sharp criticism of the NSA over the EternalBlue Windows vulnerability and WannaCry ransomware. Continue Reading
By
- Rob Wright, Senior News Director
Podcast 23 May 2017
Risk & Repeat: WannaCry ransomware worm shakes tech industry

In this week's Risk & Repeat podcast, SearchSecurity editors look at the devastation caused by the WannaCry ransomware worm and discuss how it could have been prevented. Continue Reading
By
- Rob Wright, Senior News Director
Podcast 28 Apr 2017
Risk & Repeat: More Equation Group cyberweapons leaked

In this episode of SearchSecurity's Risk & Repeat podcast, editors discuss the latest round of Equation Group cyberweapons and how Microsoft patched them. Continue Reading
By
- Rob Wright, Senior News Director
News 18 Apr 2017
Shadow Brokers' Windows exploits target unsupported systems

A new release of NSA cyberweapons falls flat, as Windows exploits from the Shadow Brokers have mostly been patched. But unsupported systems are still at risk. Continue Reading
By
- Michael Heller, TechTarget
News 14 Apr 2017
Shadow Brokers release SWIFT banking and Windows exploits

The Shadow Brokers released another cache of cyberweapons linked to the Equation Group, including Windows exploits and attack details for the SWIFT banking system. Continue Reading
By
- Michael Heller, TechTarget
Feature 03 Apr 2017
Politics of cyber attribution pose risk for private industry

Why nation-state attribution plays a major role in the U.S. government's willingness to share cyberthreat intelligence with private-sector companies. Continue Reading
By
- Adam Rice and Mark Maunu
30 Mar 2017

Politics of cyber attribution pose risk for private industry

Continue Reading
News 17 Mar 2017
Yahoo fallout: Minted authentication cookies raise concerns

Although minting authentication cookies is not widely understood, the Yahoo hacker indictments has brought it to the forefront and shown it can be very dangerous. Continue Reading
By
- Michael Heller, TechTarget
News 14 Feb 2017
Microsoft: Nation-state cyberattacks have changed the security game

Microsoft's Brad Smith spoke at RSA Conference 2017 about the effects of nation-state cyberattacks and what businesses and governments can do about them. Continue Reading
By
- Rob Wright, Senior News Director
Definition 30 Jan 2017
hacking as a service (HaaS)

Hacking as a service (HaaS) is the commercialization of hacking skills, in which the hacker serves as a contractor. HaaS makes advanced code-breaking skills available to anyone with a web browser and a credit card. Continue Reading
By
- TechTarget Contributor
Podcast 25 Jan 2017
Risk & Repeat: Windows SMB warning raises questions, concerns

In this episode of SearchSecurity's Risk & Repeat podcast, editors discuss the Shadow Brokers' alleged exploit for Windows SMB and what it means for both enterprises and Microsoft. Continue Reading
By
- Rob Wright, Senior News Director
News 20 Jan 2017
Carbanak gang using Google services for command and control

Researchers find the Carbanak gang has evolved its attacks on financial institutions to use Google services for command and control infrastructure in malware. Continue Reading
By
- Michael Heller, TechTarget
News 29 Aug 2016
Pegasus iOS exploit uses three zero days to attack high-value targets

A new remote iOS exploit called Pegasus leverages three zero days in what appear to be state-sponsored targeted attack campaigns against political dissidents. Continue Reading
By
- Michael Heller, TechTarget
News 01 Dec 2015
Amex credit card hack predicts replacement card number

Samy Kamkar found a weakness in the algorithm American Express uses to generate replacement card information and created a credit card hack as a proof-of-concept. Continue Reading
By
- Michael Heller, TechTarget
Opinion 01 Dec 2015
WMI tools make the perfect crime 'malware-free'

Security researchers claim that attackers are abusing a longstanding administrative tool in the Windows operating system. With no telltale signs of malware, how can you stop it? Continue Reading
By
- Robert Richardson
Feature 08 Oct 2015
Emerging security threats you're up against now

Learn about the 'hacking as a service' and other emerging security threats. Continue Reading
By
- David Strom
Answer 17 Aug 2015
Can a new encryption trick prevent reverse engineering?

Expert Michael Cobb explains how reverse engineering can be made more difficult with an approach called Hardened Anti-Reverse Engineering System or HARES. Continue Reading
By
- Michael Cobb
Tip 10 Apr 2014
NSA TAO: What Tailored Access Operations unit means for enterprises

The NSA's top-secret Tailored Access Operations offensive hacking unit offers enterprise defense strategy lessons. Expert Nick Lewis discusses. Continue Reading
By
- Nick Lewis
Answer 12 Feb 2013
What risk does the Apple UDID security leak pose to iOS users?

Expert Michael Cobb details Apple's Unique Device Identifiers, plus why iOS users should be concerned about the Anonymous UDID security leak. Continue Reading
By
- Michael Cobb
Answer 25 Aug 2011
Locate IP address location: How to confirm the origin of a cyberattack

What's the best way to determine the origin of a cyberattack? Expert Nick Lewis weighs in. Continue Reading
By
- Nick Lewis
Definition 24 Sep 2010
alternate data stream (ADS)

An alternate data stream (ADS) is a feature of Windows New Technology File System (NTFS) that contains metadata for locating a specific file by author or title. Continue Reading
By
- TechTarget Contributor
News 24 Mar 2010
Apple iPhone, Microsoft IE 8 get hacked in Pwn2Own contest

Hackers also exploited zero-day vulnerabilities in Apple Safari and Mozilla Firefox browsers in the first day of TippingPoint's Pwn2Own contest Wednesday. Continue Reading
By
- Robert Westervelt, TechTarget
Tip 05 Mar 2008
Built-in Windows commands to determine if a system has been hacked

In this tip, contributor Ed Skoudis identifies five of the most useful Windows command-line tools for machine analysis and discusses how they can assist administrators in determining if a machine has been hacked. Continue Reading
By
- Ed Skoudis, SANS Technology Institute
Tip 17 Jan 2008
Ten hacker tricks to exploit SQL Server systems

SQL Server hackers have a medley of tricks and tools to gain access to your database systems. Learn their techniques and test SQL Server security before they do. Continue Reading
By
- Kevin Beaver, Principle Logic, LLC

1
2

Search Networking

5 principles of change management in networking
Network change management includes five principles, including risk analysis and peer review. These best practices can help ...
A guide to Li-Fi technology
Li-Fi is an emerging wireless technology that uses visible light to transmit data instead of radio frequencies. Though still ...
AI skills for network professionals
Networking professionals must develop basic networking skills and AI to thrive in a complex landscape. Learn how AI's integration...

Search CIO

Google breakup likely off the table under Trump
Donald Trump might not want to break up Google, but history suggests he won't slow antitrust enforcement efforts against bad ...
Trump's Department of Government Efficiency will face issues
Big political and bureaucratic obstacles await Elon Musk and Vivek Ramaswamy, who will lead the department with the goal of ...
How to run a successful IT pilot program
IT pilot programs are a crucial yet frequently overlooked step in internal tech procurement. Learn how to maximize these programs...

Search Enterprise Desktop

How to create a custom Windows 11 ISO file
With a custom Windows 11 ISO file, IT departments can streamline deployment and apply new version of Windows to repair OS ...
How to make the most of Windows Autopatch with Intune
IT administrators can use Intune to manage numerous settings related to Windows OSes and business apps. The Windows Autopatch ...
How to perform a Windows 11 ISO file install
The days of IT departments manually provisioning Windows OSes and company settings onto each PC are long gone, but IT staff still...

Cloud Computing

How to build a business case for cloud migration
Successful cloud migrations start with a solid business plan that details the costs, benefits, risks and challenges to key ...
Managed identity vs. service principal for Azure apps
Managed identities automate identity management for Azure-native applications, while service principals are ideal for external ...
Top cloud migration service providers and how to choose one
Tools, services and pricing vary widely, and often, the options are platform-specific. Here's a rundown of seven representative ...

ComputerWeekly.com

RealWear looks to reshape industrial AR with Almer acquisition
In what is said to mark a pivotal moment in a key part of the spatial computing sector and boost frontline worker productivity, ...
IT leaders raise concerns over IT security overspend
How many IT security products does it take to secure a business? Too many, according to some IT decision-makers
CBRE: Spare datacentre capacity levels to hit all-time low across Europe by end of 2024
Real estate consultancy CBRE has lifted the lid on how growing demand for datacentre capacity, coupled with shortages of land and...

Close