{{Short description|Computer hacker with malicious intent}} {{Redirect|Blackhat||Black hat (disambiguation){{!}}Black hat}} {{Computer hacking}} A '''black hat''' ('''black hat hacker''' or '''blackhat''' or '''threat actor''') is a computer hacker, who disobeys laws or violates ethical standards for purposes such as civil disobedience, cybercrime, cyberwarfare, or malice. These acts can range from piracy to identity theft. A black hat is often referred to as a "cracker".<ref>{{Citation |last=Sheikh |first=Ahmed |title=Introduction to Ethical Hacking |date=2021 |work=Certified Ethical Hacker (CEH) Preparation Guide |pages=1–9 |url=http://dx.doi.org/10.1007/978-1-4842-7258-9_1 |access-date=2024-03-08 |place=Berkeley, CA |publisher=Apress |doi=10.1007/978-1-4842-7258-9_1 |isbn=978-1-4842-7257-2|s2cid=239755067 |url-access=subscription }}</ref> It is worth noting that the term "Black Hat" is also used outside of direct infrastructure hacking; in digital marketing, "Black Hat SEO" refers to practices that violate search engine guidelines to manipulate rankings, which is distinct from malicious cyber warfare or cybercrime. It is important to observe that the phrase “Black Hat” can also be applied in a context other than cyber attacks against the infrastructure. In marketing, for example, “Black Hat SEO” describes a technique involving manipulation of search engine ranking through tactics that contravene search engine policies.
The term originates from 1950s westerns, with "bad guys" (criminals) typically depicted as having worn black hats and "good guys" (heroes) wearing white ones. In the same way, black hat hacking is contrasted with the more law-abiding white hat approach to hacking. Additionally, there exists a third category, called grey hat hacking, characterized by individuals who hack, usually with good intentions but by illegal means.<ref name="What is a Black-Hat hacker">{{Cite web |date=2022-02-09 |title=What is a Black-Hat hacker? |url=https://www.kaspersky.com/resource-center/threats/black-hat-hacker |access-date=2022-11-27 |website=www.kaspersky.com |language=en}}</ref><ref name="history">{{Cite web |last=testovaniebezpecnosti |date=2017-11-10 |title=Hackers are not just the bad guys – brief history and classification |url=https://hacktrophy.com/en/hackers-history-and-classification/ |access-date=2022-11-27 |website=HackTrophy |language=sk}}</ref><ref name="types">{{Cite web |last=Luciano |first=Michael |date=2018-09-05 |title=What Are the Three Types of Hackers? |url=https://www.designworldonline.com/what-are-the-three-types-of-hackers/ |access-date=2022-11-27 |website=Design World |language=en-US}}</ref>
== Description == Criminals who intentionally enter computer networks with malicious intent are known as "black hat hackers".<ref>{{Cite web |date=2022-05-11 |title=Black hat, White hat, and Gray hat hackers – Definition and Explanation |url=https://www.kaspersky.com/resource-center/definitions/hacker-hat-types |access-date=2022-11-27 |website=www.kaspersky.com |language=en}}</ref> They may distribute malware that steals data (particularly login credentials), financial information, or personal information (such as passwords or credit card numbers). This information is often sold on the dark web. Malware can also be used to hold computers hostage or destroy files. Some hackers may also modify or destroy data in addition to stealing it. While hacking has become an important tool for governments to gather intelligence, black hats tend to work alone or with organized crime groups for financial gain.<ref name="What is a Black-Hat hacker"/><ref>{{Cite web |date=2020-09-14 |title=Kevin Mitnick - Once the world's most wanted hacker, now he's getting paid to hack companies legally {{!}} Black Hat Ethical Hacking {{!}} Black Hat Ethical Hacking |url=https://www.blackhatethicalhacking.com/articles/hacking-stories/kevin-mitnick-once-the-worlds-most-wanted-hacker-now-hes-getting-paid-to-hack-companies-legally/ |access-date=2024-01-09 |language=en-US}}</ref> Black hat hackers can be from novice script kiddiesto professional cybercriminals with state support. These individuals may either work alone or belong to well-organized hacker groups with adequate technical skill and knowledge needed to hack even the most advanced systems and implement the use of sophisticated malware. As regards present-day hackers, the advanced forms of black hat attacks involve hacking for APT attacks including cyber espionage, IP piracy, and sabotage.<ref>{{Cite web |title=What is a black hat hacker? |url=https://www.techtarget.com/searchsecurity/definition/black-hat |access-date=2022-11-27 |website=SearchSecurity |language=en}}</ref> For some hackers, cybercrime may be an addictive experience.<ref>{{Cite news |date=2016-10-24 |title=Teen hackers study considers link to addiction |url=https://www.bbc.com/news/technology-37752800 |access-date=2024-08-12 |work=BBC News |language=en-GB}}</ref><ref>{{Cite web |date=2023-06-12 |title=How European authorities want to tackle child hacking |url=https://www.euronews.com/next/2023/06/12/are-the-kids-alright-how-european-authorities-want-to-tackle-child-hacking |access-date=2024-08-12 |website=euronews |language=en}}</ref>
== History == thumb|Countries initially affected by the WannaCry ransomware attackThe WannaCry ransomware attack in May 2017 is an example of black hat hacking. Around 400,000 computers in 150 countries were infected within two weeks. The creation of decryption tools by security experts within days limited the extortion payments to approximately $120,000, or slightly more than 1% of the potential payout.<ref>{{Cite web |date=2022-02-09 |title=What is WannaCry ransomware? |url=https://www.kaspersky.com/resource-center/threats/ransomware-wannacry |access-date=2022-11-27 |website=www.kaspersky.com |language=en}}</ref>
The notable data breaches typically published by major news services are the work of black hat hackers. In a data breach, hackers can steal the financial, personal, or digital information of customers, patients, and constituents. The hackers can then use this information to smear a business or government agency, sell it on the dark web, or extort money from businesses, government agencies, or individuals.<ref>{{Cite web |last=Espinosa |first=Christian |date=2018-03-09 |title=Black Hat vs White Hat Hackers |url=https://www.alpinesecurity.com/blog/black-hat-vs-white-hat-hackers/ |access-date=2022-11-27 |website=Alpine Security |language=en-US}}</ref> The United States experienced a record number of 1,862 data breaches in 2021, according to the Identity Theft Resource Center's 2021 Data Breach Report. There has been a noticeable increase in the number of data leaks. Take the United States as an example: in 2017, there were a record 1,506 incidents;<ref>{{Cite web |title=Archived Graphs |url=https://www.iii.org/graph-archive/213434 |access-date=2025-08-26 |website=III |language=en}}</ref> in 2021, there was a new high of 1,862 incidents;<ref>{{Cite web |title=Identity Theft Resource Center’s 2021 Annual Data Breach Report Sets New Record for Number of Compromises |url=https://www.idtheftcenter.org/post/identity-theft-resource-center-2021-annual-data-breach-report-sets-new-record-for-number-of-compromises/ |access-date=2025-08-26 |website=ITRC |language=en-US}}</ref> and in 2023, there was a record 3,205 incidents.<ref>{{Cite web |date=25 January 2024 |title=Identity Theft Resource Center 2023 Annual Data Breach Report Reveals Record Number of Compromises; 72 Percent Increase Over Previous High |url=https://www.idtheftcenter.org/post/2023-annual-data-breach-report-reveals-record-number-of-compromises-72-percent-increase-over-previous-high/ |website=ITRC}}</ref> At the same time, there has been no significant decline between the peak values.
From 2013 to 2014, black hat hackers broke into Yahoo and stole 3 billion customer records, making it possibly the largest data breach ever.<ref name="biggest" /> In addition, the adult website Adult FriendFinder was hacked in October 2016, and over 412 million customer records were taken.<ref name="biggest" /> A data breach that occurred between May and July 2017 exposed more than 145 million customer records, making the national credit bureau Equifax another victim of black hat hacking.<ref name="biggest">{{Cite web |title=Biggest Data Breaches in US History [Updated 2022] {{!}} UpGuard |url=https://www.upguard.com/blog/biggest-data-breaches-us |access-date=2022-11-27 |website=www.upguard.com |language=en}}</ref>
== Black Hat Search Engine Optimisation Strategies ==
=== Concealing === One of the most famous black hat methods is to utilize "doorway pages", which are intended to rank highly for specific search queries. Accordingly, the substance of these doorway pages is stowed away from both the clients and the web indexes. Doorway pages are designed to deceive search engines so that they cannot index or rank a website for synonymous keywords or phrases.
=== Keyword stuffing === Another form of black hat search engine optimization (SEO) is known as keyword stuffing, which involves repeatedly using the same keywords to try to trick search engines. This tactic involves using irrelevant keywords on a webpage (such as on the homepage or in metadata tags) to make it appear more relevant for particular keywords, deceiving people who visit the site.<ref>{{Cite web |date=2022-06-06 |title=Black hat SEO |url=https://www.twaino.com/en/definition/b/black-hat-seo/ |access-date=2022-11-27 |website=Twaino |language=en-GB}}</ref>
=== Link farming === Link farming occurs when multiple websites or pages link to a particular website. This is done to profit from the pay-per-click (PPC) advertisements on these websites or pages. The issue is that the links only point to the specific website because it promises something in return, when in fact they are only there to increase traffic to the desired website and its popularity. These websites are unethical and will damage the credibility of the website's other pages, possibly reducing its income potential.
=== Shrouding === Shrouding involves showing different content to clients and web search tools. A website may present search engines with information irrelevant to the website's real content. This is done to boost the website's visibility in search results.
=== Spamdexing === Spamdexing is a form of black hat SEO that involves using software to inject backlinks to a website into search engine results. This is done solely to raise the website's ranking in search engines.
=== Unethical redirects === A redirect link is considered unethical if it takes the user to a webpage different from the one indicated in the link. For instance, it is unethical to have a link that should take the user to the website "ABC" but instead takes them to "XYZ". Users are tricked into following an unintended path, even though they might not be interested in the website they land on.
== Examples of famous black hats == {{Main|List of computer criminals}}
thumb|Kevin Mitnick, a noted black hat hacker
== Other hat types == An ethical security hacker is referred to as a white hat hacker. White hat hackers aim to discover any flaws in the current system with the owner's permission. Many organizations engage white hat hackers to enhance their network security through activities such as vulnerability assessments. Their primary objective is to assist the organization.<ref>{{Cite journal |last1=Banda |first1=Raphael |last2=Phiri |first2=Jackson |last3=Nyirenda |first3=Mayumbo |last4=Kabemba |first4=Monica M. |date=2019-03-07 |title=Technological Paradox of Hackers Begetting Hackers: A Case of Ethical and Unethical Hackers and their Subtle Tools |journal=Zambia ICT Journal |volume=3 |issue=1 |pages=40–51 |doi=10.33260/zictjournal.v3i1.74 |issn=2616-2156|doi-access=free }}</ref>
A hacker who typically does not have malicious intent but often violates laws or common ethical standards is sometimes referred to as a grey hat, although definitions vary wildly.<ref>{{Cite web |title=What is an ethical hacker and what does the work entail? |url=https://www.techtarget.com/searchsecurity/definition/ethical-hacker |access-date=2022-11-27 |website=SearchSecurity |language=en}}</ref>
==See also==
* BlueHat * Cybercrime * Cyberwarfare
==References== {{Reflist}}
Category:Hacking (computer security) Category:Cybercrime Hat, black Category:Computer jargon