Security news aggregator

Latest coverage for Ethical Hacking

Stay informed on ethical cybersecurity practices—discover insights, latest trends, and expert analyses on ethical information security topics.

12 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Ethical hacking is the authorized practice of simulating attacks to find and demonstrate security weaknesses before criminals exploit them. It may include penetration testing, red-team exercises, vulnerability validation, and reviews of applications, networks, cloud environments, or physical controls. The defining requirement is explicit permission: a written scope should identify approved systems, methods, testing dates, source addresses, safety limits, and contacts for urgent issues.

For practitioners, the main concerns are controlling testing risk and turning findings into useful remediation. Tests can expose personal or confidential data, disrupt production, or cross into systems that were not authorized; safeguards include least-necessary access, synthetic test data where possible, rate limits, secure evidence handling, and prompt cleanup. Reports should distinguish confirmed vulnerabilities from theoretical paths, explain business-relevant conditions and impact, and provide reproducible evidence without retaining unnecessary secrets. Coordinated disclosure and retesting help verify fixes, while legal, contractual, and privacy requirements determine what activities and data handling are permitted.

Volume over time

Weekly headline count for the current query.

Showing 12 most recent headlines Filtered view

I'm dreaming of a white hat mass Opinion It was 40 years ago that four young British hackers set about changing the law, although they didn't know it at the time. It was a cross-platform attack including a ZX Spectrum, a BBC Micro, and a Tatung Einstein slamming British Telecom's Prestel service over dial-up modems at 75 bits per second.…

It could be used to put ethical hackers, and citizens, behind bars A controversial United Nations proposal has a new foe, Microsoft, which has joined the growing number of organizations warning delegates that the draft version of the UN cybercrime treaty only succeeds in justifying state surveillance — not stopping criminals, as originally intended.…

Which is pocket change compared to what criminals will pay for zero-days, but thankfully community spirit remains strong Pwn2Own paid out almost $1 million to bug hunters at last week's consumer product hacking event in Toronto, but the prize money wasn't big enough attract attempts at cracking the iPhone or Google Pixel because miscreants can score far more from less wholesome sources.…

Well, that clears things up? Maybe not. The US Justice Department has directed prosecutors not to charge "good-faith security researchers" with violating the Computer Fraud and Abuse Act (CFAA) if their reasons for hacking are ethical — things like bug hunting, responsible vulnerability disclosure, or above-board penetration testing.…

CRM giant pleased to be named yet again on World's Most Ethical Companies list Salesforce has become a defendant in a case brought by the Republican National Committee (RNC) that seeks to prevent release of information revealing communications within the Republican Party related to the storming of the US Capitol building on January 6, 2021.…