Close Menu
TechTost
  • AI
  • Apps
  • Crypto
  • Fintech
  • Hardware
  • Media & Entertainment
  • Security
  • Startups
  • Transportation
  • Venture
  • Recommended Essentials
What's Hot

Amazon will stop accepting new customers for Mechanical Turk

5 office gadgets that can make your work day better

What are bending spoons? The little-known owner of AOL and Vimeo who is now public

Facebook X (Twitter) Instagram
  • About Us
  • Contact Us
  • Privacy Policy
  • Terms and Conditions
  • Disclaimer
Facebook X (Twitter) Instagram
TechTost
Subscribe Now
  • AI

    Amazon will stop accepting new customers for Mechanical Turk

    6 July 2026

    Yes, we use OpenClaw to this day

    5 July 2026

    Midjourney wants Hollywood studios to reveal the details of their use of artificial intelligence

    5 July 2026

    What is Mistral AI? Everything you need to know about the OpenAI competitor

    4 July 2026

    Anthropic is discussing a new custom chip with Samsung

    3 July 2026
  • Apps

    WhatsApp now allows you to reserve usernames

    5 July 2026

    Podcasting platform Riverside is getting into the newsletter game

    4 July 2026

    Threads adds new features to Live Chats as it expands access

    4 July 2026

    Travel app Hopper to pay $35 million in FTC settlement over ‘unfair’ hidden fees

    3 July 2026

    Meta quietly launches vibe-encoded Pocket gaming app

    3 July 2026
  • Crypto

    Venice AI goes unicorn with $65M Series A as first privacy AI platform takes off

    1 July 2026

    Crypto Exchange OKX wants AI agents to hire and pay each other

    30 June 2026

    Startup Battlefield 200 applications close today

    27 May 2026

    5 days left: Save up to $410 on Disrupt 2026 passes

    25 May 2026

    As crypto cools, a16z crypto raises $2.2 billion in capital

    6 May 2026
  • Fintech

    India’s payments chief believes artificial intelligence will play a big part in the next era of digital payments development

    28 June 2026

    Early Bird pricing ends tonight for the Founder Summit

    26 June 2026

    4 days left to save up to $190 on Founder Summit 2026

    23 June 2026

    Robinhood’s note on 10% layoffs shows that blaming AI doesn’t cut it

    17 June 2026

    Anthropic’s latest spat with the Trump administration may actually help it, sales figures suggest

    17 June 2026
  • Hardware

    5 office gadgets that can make your work day better

    6 July 2026

    IQM, Europe’s first public quantum company, admits that the future of the technology is uncertain

    3 July 2026

    Thiel Capital’s Jack Selby commits stakes in hot startups like Etched through Arizona connections

    3 July 2026

    Ashton Kutcher is leaving Sound Ventures to start a new VC firm with Morgan Beller

    2 July 2026

    Flipper’s new Busy Bar is a customizable display for productivity

    30 June 2026
  • Media & Entertainment

    New Google ad imagines a Declaration of Independence written with the help of artificial intelligence

    4 July 2026

    Cloudflare’s new policy pushes AI companies to pay for publishers’ content

    1 July 2026

    Watch out, Amazon: The Kobo eReader now has a Goodreads rival

    29 June 2026

    YouTube Shorts just got even shorter with an update that lets you double the playback speed

    25 June 2026

    Deezer says its new feature allows fans to remix songs with the artist’s consent

    24 June 2026
  • Security

    Politician who investigated abuses of wiretapping software on his phone with Pegasus spyware

    3 July 2026

    The US government says it’s been hacked — again

    2 July 2026

    In major privacy victory, Supreme Court rules that geo-trafficking warrants are protected by privacy rights

    29 June 2026

    The Klue hack results in a data breach at several cybersecurity companies

    26 June 2026

    Cellebrite said it cut off Russia, but Russia used its tools anyway

    26 June 2026
  • Startups

    Your Brand Deserves Its Own Stage — TechCrunch Disrupt 2026 Side Events

    4 July 2026

    The browser wars aren’t about search anymore — here are the best alternatives to Chrome and Safari

    3 July 2026

    Last chance to apply — Startup Battlefield Australia applications close on 6 July

    3 July 2026

    Arcturus could halve grid electrical losses using nano-infused metals

    2 July 2026

    Indian tech tycoon bets $30 million of his own money to build AI alternative to Microsoft Office

    2 July 2026
  • Transportation

    Chevy built an all-American EV truck — why isn’t anyone buying it?

    3 July 2026

    Rivian raises EV sales forecast as second-quarter production ramps up

    3 July 2026

    Lucid Motors CFO steps down as new CEO continues leadership shakeup

    2 July 2026

    Tesla begins testing Cybercab without pedals or steering wheel in Austin

    2 July 2026

    Lime is starting life as a public company after years of uncertainty

    1 July 2026
  • Venture

    What are bending spoons? The little-known owner of AOL and Vimeo who is now public

    5 July 2026

    After $18B IPO, Bending Spoons Founder Says Success Comes From Minimizing Luck

    2 July 2026

    Bending Spoons defies SaaS slump, up 40% on first day of trading

    2 July 2026

    The DeepMind trio that created a poker AI is now making money for quantitative hedge funds

    1 July 2026

    Patronus AI lands $50 million to create ‘digital worlds’ that stress-test AI agents

    26 June 2026
  • Recommended Essentials
TechTost
You are at:Home»Security»Ghost hackers: the unsolved cybersecurity mystery
Security

Ghost hackers: the unsolved cybersecurity mystery

techtost.comBy techtost.com26 May 202604 Mins Read
Share Facebook Twitter Pinterest LinkedIn Tumblr Email
Ghost Hackers: The Unsolved Cybersecurity Mystery
Share
Facebook Twitter LinkedIn Pinterest Email

In the long history of hacking, there have been numerous data breaches that, years or even decades later, remain unsolved. Countless hackers and the hacker groups behind them have never been exposed.

But productive hacking groups are caught. This is true whether it’s cybercriminals like LAPSUS$, a notorious extortion gang that breached companies like Microsoft and Nvidia and has had many members arrested, or sophisticated government hacking groups from Russia and China, whose members have been named, charged and placed on wanted lists.

Yet some of the most fascinating cases in cybersecurity history remain open — with no culprits, no answers, and in some cases, not even a clear motive. We decided to revisit many of them in a series of articles, starting with one of the strangest episodes in the history of information leaks.

The first installment focuses on the Shadow Brokers – a mysterious group that appeared on the Internet, dropped a trove of hacking tools believed to belong to the NSA, and then disappeared.

In the summer of 2016, amid Russian hacking related to the US presidential election, the group appeared on Twitter. They connected with one Pastebin post and @-mentioned multiple news outlets — a strange, ineffective strategy that meant most of those outlets likely never saw the tweets.

But if someone clicked on the link, they would see a document titled “Equation Group Cyber ​​​​Weapons Auction — Invitation” — a reference to the shadowy hacking operation widely believed to be run by the NSA.

“!!! Beware of Government Sponsors of Cyber ​​War and those who profit from it !!!! How much are you paying for the enemies cyber weapons?” the hackers wrote, claiming to have hacked Equation Group.

A screenshot of the shadow broker’s first tweets.Image Credits:TechCrunch

The document included links to download some hacking tools, as well as a link to download an encrypted file that interested buyers could decrypt by making a bid. “Auction files are better than Stuxnet,” they wrote, referring to the famous malware used against Iran’s nuclear facilities in a 2007 US-Israel cyber attack. They asked for at least 1 million Bitcoins.

The leak quickly attracted press coverage. Once security researchers analyzed the tools, they realized they were highly sophisticated cyber weapons, likely stolen from the NSA – a suspicion reinforced by the fact that some shared names with programs revealed by NSA whistleblower Edward Snowden.

The auction was likely a ruse, as the group eventually dumped many of the tools publicly months later. A lot about Shadow Brokers didn’t make sense. Their broken English was almost comical, as if they were either trying too hard or signaling artificiality on purpose. Despite clearly clamoring for attention—and receiving plenty of press coverage—the team only spoke to a reporter once, giving a short interview to 404 Media’s Joseph Cox, then a reporter at VICE Motherboard.

Ten years later, we know literally nothing about who was behind the Shadow Brokers persona. Cox and me interviewed former NSA officials at the time, who said an undercover or former NSA undercover could be involved. But no one has been arrested or charged – remarkable given that this was arguably one of the worst leaks of US intelligence hacking tools.

One possible suspect was Harold T. Martin III, an NSA contractor arrested for stealing classified information from the agency. But the theory has a problem: while Martin was in custody, the Shadow Brokers remained active online. He has never been formally charged in connection with the leaks. The most widely accepted theory is that the Shadow Brokers were created by a Russian government spy group as a propaganda tool.

The impact was huge. Among the tools released, they published Shadow Brokers EternalBlue — a family of zero-day vulnerabilities targeting Windows that allowed hackers to break into computers on a compromised network, rapidly expand their access, and deploy self-propagating worms. (Zero-day vulnerabilities are flaws unknown to the software manufacturer, meaning there is no patch yet.) North Korean hackers used EternalBlue to release the WannaCry ransomware worm. Russian hackers later created NotPetya, which surpassed its original Ukrainian targets and caused $10 billion in damage worldwide. For businesses, the lesson was stark: Vulnerabilities accumulated by intelligence agencies don’t stay secret forever — and when they leak, the private sector pays the price.

The vault is still yielding discoveries. Among the leaked tools was one that contained a list of project names — including one called Fast16, which was tagged only with “NOTHING TO SEE HERE — CARRY OF.” Last monthresearchers announced that they had located and examined it, finding malware dating back to 2005 designed to tamper with software allegedly used by Iranian nuclear scientists.

When you purchase through links in our articles, we may earn a small commission. This does not affect our editorial independence.

Cybersecurity ghost hacker hackers Mysteries of hacking mystery The Shadow Brokers unsolved
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
Previous ArticleFerrari’s first EV is not for you
Next Article Spotify now lets you view narrated magazine articles as well
bhanuprakash.cg
techtost.com
  • Website

Related Posts

Politician who investigated abuses of wiretapping software on his phone with Pegasus spyware

3 July 2026

The US government says it’s been hacked — again

2 July 2026

In major privacy victory, Supreme Court rules that geo-trafficking warrants are protected by privacy rights

29 June 2026
Add A Comment

Leave A Reply Cancel Reply

Don't Miss

Amazon will stop accepting new customers for Mechanical Turk

6 July 2026

5 office gadgets that can make your work day better

6 July 2026

What are bending spoons? The little-known owner of AOL and Vimeo who is now public

5 July 2026
Stay In Touch
  • Facebook
  • YouTube
  • TikTok
  • WhatsApp
  • Twitter
  • Instagram
Fintech

India’s payments chief believes artificial intelligence will play a big part in the next era of digital payments development

28 June 2026

Early Bird pricing ends tonight for the Founder Summit

26 June 2026

4 days left to save up to $190 on Founder Summit 2026

23 June 2026
Startups

Your Brand Deserves Its Own Stage — TechCrunch Disrupt 2026 Side Events

The browser wars aren’t about search anymore — here are the best alternatives to Chrome and Safari

Last chance to apply — Startup Battlefield Australia applications close on 6 July

© 2026 TechTost. All Rights Reserved
  • About Us
  • Contact Us
  • Privacy Policy
  • Terms and Conditions
  • Disclaimer

Type above and press Enter to search. Press Esc to cancel.