-
Black Hat conference 2010: News, podcasts and videos
Get updates on the latest happenings at the Black Hat 2010 conference with breaking news stories, and exclusive video and podcasts. Conference Coverage
-
Hacker attack techniques and tactics: Understanding hacking strategies
This guide provides you with a plethora of tips, expert advice and Web resources that offer more in-depth information about hacker techniques and various tactics you can employ to protect your network. Learning Guide
-
Virtual Honeypots: From Botnet Tracking to Intrusion Detection
In Chapter 11 of Virtual Honeypots: From Botnet Tracking to Intrusion Detection, authors Niels Provos and Thorsten Holz get inside the botnet and reveal some interesting conclusions. Book Chapter
-
SearchSecurity.com's Guide to Thwarting Hacker Techniques
This guide provides you with a plethora of tips, expert advice and Web resources that offer more in-depth information about hacker techniques and various tactics you can employ to protect your network. Learning Guide
-
Spy vs. Spy
Excerpt from Chapter 6 of Spies Among Us: How to Stop the Spies, Terrorists, Hackers, and Criminals You Don't Even Know You Encounter Every Day. Book Chapter
-
Learning about Security Threats: Profiling
A look at what it means to be a hacker. Reprint
-
Quiz: Common Vulnerabilities
Test your knowledge of common security vulnerabilities. Quiz
-
Quiz: Security attacks
Test your knowledge of the types of attacks that can be launched against your organization. Quiz
-
HP TippingPoint revamps Pwn2Own hacking contest, removes mobile hacks
Popular Pwn2Own hacking contest at the CanSecWest conference will be fairer to contestants and winners with larger cash prizes, says TippingPoint. News | 23 Jan 2012
-
Symantec breach: Data breach basis of Norton source code leak
Investigators confirmed that a 2006 breach at Symantec Corp. is the root cause of a source code leak of its Norton Antivirus software. News | 19 Jan 2012
-
Symantec source code theft: Threat is low to current products, vendor says
The leak affected Symantec’s endpoint protection and corporate antivirus software. Symantec recommends customers ensure their products are up to date. News | 06 Jan 2012
-
Security intelligence firm Stratfor investigates hacktivist attack
A hacktivist group claims it stole credit card data from organizations that purchased the intelligence firm’s publications. News | 27 Dec 2011
-
Nitro attackers use Symantec report
Those responsible for the Nitro attacks earlier this year are targeting chemical companies with malicious emails claiming to be from Symantec. News | 14 Dec 2011
-
FBI makes LulzSec arrests in Sony breach investigation
Attackers used SQL injection against Sony’s website to gain access to its internal server and steal sensitive data. News | 23 Sep 2011
-
NSA: Growing cybersecurity threats demand defenders think like attackers
A top NSA cybersecurity official says the growing cybersecurity threat landscape requires that good guys think like attackers. News | 20 Sep 2011
-
China cyberwar topic raised in Republican presidential debate
Suggesting that cybersecurity is near the top of the national agenda, the topic came up during Thursday's Republican presidential debate. News | 11 Aug 2011
-
Black Hat 2011: GrayWolf tool author Jon McCoy
Jon McCoy of DigitalBodyGuard talks about his new tool GrayWolf, a compiler that helps .NET developers attack their applications. News | 10 Aug 2011
-
Black Hat 2011 to focus on new hacking techniques, software flaws
Black Hat 2011 preview: This year researchers are expected to demo new hacking techniques for car alarm systems, Android smartphones and Google Chromebooks. News | 02 Aug 2011
- See More: News on Hacker Tools and Techniques: Underground Sites and Hacking Groups
-
Built-in Windows commands to determine if a system has been hacked
In this tip, contributor Ed Skoudis identifies five of the most useful Windows command-line tools for machine analysis and discusses how they can assist administrators in determining if a machine has been hacked. Tip
-
Exploit research: Keeping tabs on the hacker underground
Protecting an organization against malicious hackers is a constant challenge, especially when attack methods are constantly evolving. But, according to information security threats expert Ed Skoudis, there are effective methods security pros can use ... Tip
-
Enterprise security in 2008: Malware trends suggest new twists on old tricks
This year's malicious hackers are ready to add new twists to their old tricks. Taking hints from last year's range of cyber attacks and malicious code, information security expert Ed Skoudis reveals five key threats that are likely to dominate headli... Tip
-
Investigating logic bomb attacks and their explosive effects
A logic bomb is a dangerous piece of software designed to damage a computer or network and cause massive data destruction. In this tip from SearchSecurity.com's Ask the Expert section, Ed Skoudis explains how an enterprise can prepare for a hacker's ... Tip
-
How to protect your company against cybercrime
Thanks to the Internet's inherent anonymity, widespread reach and disjointed law enforcement status, cybercriminals have a lot to gain -- and enterprises have a lot to lose. In this tip, SearchSecurity expert and malware guru Ed Skoudis describes how... Tip
-
Digital deception: Raising the stakes on hackers
Learn the theory behind digital deception and how to implement digital deception techniques. Tip
-
How to tell if you've been hacked: Signs of a compromised system
In this final section in our hacker techniques and tactics series, you will learn how to determine if a hacker has breached your system. Tip
-
Wireless security basics: Authentication, encryption for access points
This section of our hacker techniques and tactics series focuses on implementing wireless security basics to prevent hacker compromise. Tip
-
Securing your Web sever to ensure protection from a hack attack
This installment in our hacker tactics and techniques series focuses on how hackers can use Internet-facing servers to breach your network or manipulate data. Tip
-
Secure remote access points and configure connections to avoid a hack
This installment in our series focuses on poorly secured remote access points that can bypass firewalls and intrusion detection systems and give hackers the key to the candy store. Tip
- See More: Tips on Hacker Tools and Techniques: Underground Sites and Hacking Groups
-
Does Morto worm prove inherent flaws in Windows RDP security?
The recent Morto worm had unusual success spreading via Windows Remote Desktop Protocol. Does that mean RDP is security too weak? Nick Lewis explains. Answer
-
Hacker chatter: Can hacker websites help companies anticipate attacks?
Tracking hacker chatter could be useful for discovering attacks, but there may be other, less risky routes to finding the same information. Answer
-
Locate IP address location: How to confirm the origin of a cyberattack
What's the best way to determine the origin of a cyberattack? Expert Nick Lewis weighs in. Answer
-
What can be done to keep students from becoming cybercriminals?
When cybercriminals offer tuition payments to college students in exchange for their services, what can anyone do to intervene? Security management expert Mike Rothman suggests some strategies. Ask the Expert
-
What security measures can be taken to stop crimeware kits?
Enterprises that don't have thoroughly patched browsers, PDF readers, media players and other client-side software are very likely to get compromised by MPack and similar crimeware tools. Ed Skoudis explains. Ask the Expert
-
Has ransomware made a comeback?
Ransomware attacks, though not very common, do occur. Ed Skoudis explains how to "negotiate" with Gpcode and other malware of this type. Ask the Expert
-
Has cross-site scripting evolved?
It's astounding what is being done with browser scripts these days. In this expert Q&A, Ed Skoudis explains how today's cross-site scripting attacks are a far cry from those of a decade ago. Ask the Expert
-
What are the risks of logging into a botnet control channel?
By sniffing traffic as an infected machine logs into a botnet, it may possible to see an attacker's commands. Using that information to interact with the botnet, however, is dangerous, says information security threat expert Ed Skoudis. Ask the Expert
-
Is the Storm worm virus still a serious threat?
Today, attackers continue to have success with the Storm worm and its many variations, using the malware to strengthen their nasty botnets. In this SearchSecurity.com Q&A, expert Ed Skoudis explains why these rather run-of-the-mill attacks are still ... Ask the Expert
-
What is a logic bomb?
A logic bomb is a dangerous piece of software designed to damage a computer or network and cause massive data destruction. In this SearchSecurity.com Q&A, Ed Skoudis explains how an enterprise can prepare for a hacker's detonation. Ask the Expert
- See More: Expert Advice on Hacker Tools and Techniques: Underground Sites and Hacking Groups
-
voluntary botnet
A voluntary botnet is a distributed network of computers whose processing power is harnessed to carry out a political or socially-motivated denial of service (DoS) attack. Definition
-
TDL-4 (TDSS or Alureon)
TDL-4 is sophisticated malware that facilitates the creation and maintenance of a botnet. The program is the fourth generation of the TDL malware, which was itself based on an earlier malicious program known as TDSS or Alureon. Definition
-
differential power analysis (DPA)2
A differential power analysis (DPA) attack is an exploit based on analysing the correlation between the electricity usage of a chip in a smart card and the encryption key it contains. Word
-
differential power analysis (DPA)
A differential power analysis (DPA) attack is an exploit based on analysing the correlation between the electricity usage of a chip in a smart card and the encryption key it contains. Word
-
privilege escalation attack
A privilege escalation attack is a type of network intrusion that takes advantage of programming errors or design flaws to grant the attacker elevated access to the network and its associated data and applications. Word
-
Pwn2Own
Pwn2Own is an annual hacking competition sponsored by security vendor TippingPoint and held at the CanSecWest security conference. Word
-
alternate data stream (ADS)
An alternate data stream (ADS) is a feature of Windows New Technology File System (NTFS) that contains metadata for locating a specific file by author or title. Word
-
meet-in-the-middle attack
Meet-in-the-middle is a type of attack that can exponentially reduce the number of brute force permutations required to decrypt text that has been encrypted by more than one key. Such an attack makes it much easier for an intruder to gain access to d... Word
-
cyberextortion
Cyberextortion is a crime involving an attack or threat of attack against an enterprise, coupled with a demand for money to avert or stop the attack. Word
-
zero-day exploit
A zero-day exploit is one that takes advantage of a security vulnerability on the same day that the vulnerability becomes generally known...(Continued) Word
- See More: Definitions on Hacker Tools and Techniques: Underground Sites and Hacking Groups
-
NSA’s Sager on cyberwarfare, likelihood of ‘digital Pearl Harbor’
The NSA’s Tony Sager discusses the likelihood of ‘digital Pearl Harbor’ and how to prepare for cyberattacks by cost-effectively disrupting attackers. Video
-
Cluley on Operation Aurora, information security attacks
In this video, Graham Cluley, a Security Consultant with Sophos Plc., discusses Operation Aurora and whether information security attacks are becoming more sopisticated. Video
-
The future of hacking: Dealing with the underground economy
How is the underground economy evolving, and what can security practitioners do to anticipate and respond to future threats? In this Face-off video, Hugh Thompson and Adam Shostack discuss the best options. Video
-
Paypal account security: CISO on ways to prevent phishing
Paypal has become known as one of the top organizations when it comes to fighting phishing, mostly because its been a target of so many phishing scams. In this interview, Paypal CISO Michael Barrett describes how his organization approaches the phish... Video
-
The failing war against cybercriminals
Sophos senior security consultant Graham Cluley explains why it has been difficult to defeat international cybercriminal gangs. Video
-
Black Hat DC 2009: Joanna Rutkowska on Intel TXT flaws
In this session excerpt, researcher Joanna Rutkowska explains flaws discovered in current Intel Trusted Execution Technology (TXT) implementations and how they can be exploited. Video
-
Black Hat DC 2009: Mac OS attack method
Security researcher Vincenzo Iozzo explains how he found a way to inject malicious code directly into Mac OS X memory, leaving no trace for forensics investigation. Video
-
How to defend against data-pilfering attacks
In this video from Information Security Decisions 2008, Mandiant's Kevin Mandia details data-pilfering attacks and the four ways hackers can penetrate a network. Video
-
Countdown: Tips for effective end-user security education programs
The integrity of your company's critical resources and confidential data can be significantly affected by end-users. Educating them about the signs of malware and phishing attacks can increase overall security and make employees a vital part of a suc... Podcast
-
HP TippingPoint revamps Pwn2Own hacking contest, removes mobile hacks
Popular Pwn2Own hacking contest at the CanSecWest conference will be fairer to contestants and winners with larger cash prizes, says TippingPoint. News
-
Symantec breach: Data breach basis of Norton source code leak
Investigators confirmed that a 2006 breach at Symantec Corp. is the root cause of a source code leak of its Norton Antivirus software. News
-
Symantec source code theft: Threat is low to current products, vendor says
The leak affected Symantec’s endpoint protection and corporate antivirus software. Symantec recommends customers ensure their products are up to date. News
-
Does Morto worm prove inherent flaws in Windows RDP security?
The recent Morto worm had unusual success spreading via Windows Remote Desktop Protocol. Does that mean RDP is security too weak? Nick Lewis explains. Answer
-
Security intelligence firm Stratfor investigates hacktivist attack
A hacktivist group claims it stole credit card data from organizations that purchased the intelligence firm’s publications. News
-
Nitro attackers use Symantec report
Those responsible for the Nitro attacks earlier this year are targeting chemical companies with malicious emails claiming to be from Symantec. News
-
NSA’s Sager on cyberwarfare, likelihood of ‘digital Pearl Harbor’
The NSA’s Tony Sager discusses the likelihood of ‘digital Pearl Harbor’ and how to prepare for cyberattacks by cost-effectively disrupting attackers. Video
-
Hacker chatter: Can hacker websites help companies anticipate attacks?
Tracking hacker chatter could be useful for discovering attacks, but there may be other, less risky routes to finding the same information. Answer
-
FBI makes LulzSec arrests in Sony breach investigation
Attackers used SQL injection against Sony’s website to gain access to its internal server and steal sensitive data. News
-
NSA: Growing cybersecurity threats demand defenders think like attackers
A top NSA cybersecurity official says the growing cybersecurity threat landscape requires that good guys think like attackers. News
- See More: All on Hacker Tools and Techniques: Underground Sites and Hacking Groups
About Hacker Tools and Techniques: Underground Sites and Hacking Groups
Hackers are constantly working to update their attack tools, techniques and methods to find new ways to break into databases, networks and PCs. Track their progress and the work of cybercrime investigators with hacking groups, hacker sites and the hacker underground.