Hacker tools and techniques: Underground hacking sites

Hackers frequently update their attack tools, techniques and methods to find new ways to break into databases, networks and devices. Track their progress and the work of cybercrime investigators with the latest information on hacking groups, underground hacker sites and new hacker tools.

September 14, 2018 14 Sep'18
British Airways data breach may be the work of Magecart

News roundup: The British Airways data breach may be the handiwork of hacking group Magecart, according to researchers. Plus, hacker Guccifer will be extradited to U.S., and more.
August 02, 2018 02 Aug'18
Risk & Repeat: A deep dive on SamSam ransomware

In this week's Risk & Repeat podcast, SearchSecurity editors talk about the SamSam ransomware campaign, which may be the work of a single hacker who's made nearly $6 million.
August 02, 2018 02 Aug'18
FIN7 members arrested after stealing 15 million credit card records

The FBI arrested three members of the FIN7 cybercrime gang -- also known as the Carbanak Group -- for targeting more than 100 businesses and stealing 15 million credit card records.
August 02, 2018 02 Aug'18
Black Hat 2018 conference coverage

The SearchSecurity team covers the latest threats and vulnerabilities featured at this year's Black Hat USA with news, interviews and more from Las Vegas.

Bring yourself up to speed with our introductory content

hacktivism

Hacktivism is the act of hacking, or breaking into a computer system, for a politically or socially motivated purpose. Continue Reading
social engineering

Social engineering is an attack vector that relies heavily on human interaction and often involves manipulating people into breaking normal security procedures and best practices in order to gain access to systems, networks or physical locations, or... Continue Reading
cyberextortion

Cyberextortion is a crime involving an attack or threat of an attack coupled with a demand for money or some other response in return for stopping or remediating the attack. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

Cyber Guerilla

In this excerpt of Cyber Guerilla, authors Jelle van Haaster, Ricky Gevers and Martijn Sprengers discuss the various roles hackers play. Continue Reading
Risk & Repeat: US accuses Russia of state-sponsored cyberattacks

In this Risk & Repeat podcast, SearchSecurity editors discuss cyber attribution following the U.S. government's claim that Russia is behind recent state-sponsored cyberattacks. Continue Reading
Risk & Repeat: More Symantec vulnerabilities emerge

In this Risk & Repeat podcast, SearchSecurity editors discuss the latest Symantec vulnerabilities reported by Google Project Zero and the Shadow Brokers' Cisco exploit. Continue Reading

Learn to apply best practices and optimize your operations.

The implications of the NetSpectre vulnerability

The NetSpectre vulnerability could enable a slow leak of data remotely via side channels. Expert Michael Cobb explains why data on secure microprocessors is not actually safe. Continue Reading
How white hat hackers can tell you more than threat intelligence

White hat hackers can play a key role in assessing threats lurking on the dark web. Discover what traditional threat intelligence isn't telling you and how white hats can help. Continue Reading
Cybercrime study: Growing economic ecosystem spells trouble

New research shows that cybercriminals are gaining momentum with connected infrastructure and collectively earning billions annually from a cybercrime economy. Now what? Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

How studying the black hat community can help enterprises

White hat hackers often assimilate themselves into the black hat community to track the latest threats. Discover how this behavior actually benefits the enterprise with David Geer. Continue Reading
How does the Ursnif Trojan variant exploit mouse movements?

A new version of the Ursnif Trojan uses mouse movements to bypass security efforts by beating sandbox detection. Expert Matthew Pascucci explains how this technique works. Continue Reading
How does the MajikPOS malware evade detection?

A new POS malware downloads a RAM scraper to avoid detection. Expert Nick Lewis explains the tricks MajikPOS uses to target retail terminals and how to defend against it. Continue Reading