How Hackers Find Their Targets

by Michael Bruemmer 3 min read September 6, 2011

Our guest blogger this week is Tom Bowers, Managing Director,Security Constructs LLCa security architecture, data leakage prevention and global enterprise information consulting firm.

The rash of large-scale data breaches in the news this year begs many questions, one of which is this: how do hackers select their victims?

The answer: research.

Hackers do their homework; in fact, an actual hack typically takes place only after many hours of first studying the target.

Here’s an inside look at a hacker in action:

  1. Using search queries through such resources as Google and job sites, the hacker creates an initial map of the target’s vulnerabilities. For example, job sites can offer a wealth of information such as hardware and software platform usage, including specific versions and its use within the enterprise.
  2. The hacker fills out the map with a complete intelligence database on your company, perhaps using public sources such as government databases, financial filings and court records. Attackers want to understand such details as how much you spend on security each year, other breaches you’ve suffered, and whether you’re usingLDAP or federated authentication systems.
  3. The hacker tries to identify the person in charge of your security efforts. As they research your Chief Security Officer or Chief Intelligence Security Officer (who they report to, conferences attended, talks given, media interviews, etc.) hackers can get a sense of whether this person is a political player or a security architect, and can infer the target’s philosophical stance on security and where they’re spending time and attention within the enterprise.
  4. Next, hackers look for business partners, strategic customers and suppliers used by the target. Sometimes it may be easier to attack a smaller business partner than the target itself. Once again, this information comes from basic search engine queries; attackers use job sites and corporate career sites to build a basic map of the target’s network.
  5. Once assembled, all of this information offers a list of potential and likely egress points within the target.

While there is little you can do to prevent hackers from researching your company, you can reduce the threat this poses by conducting the same research yourself. Though the process is a bit tedious to learn, it is free to use; you are simply conducting competitive intelligence upon your own enterprise. By reviewing your own information, you can draw similar conclusions to the attackers, allowing you to strengthen those areas of your business that may be at risk.

For example, if you want to understand which of your web portals may be exposed to hackers, use the following search term in Google: “site:yourcompanyname.com – www.yourcompanyname.com”

This query specifies that you want to see everything on your site except WWW sites. Web portals do not typically start with WWW and this query will show “eportal.yourcompanyname, ecomm.yourcompanyname.”

Portals are a great place to start as they usually contain associated user names and passwords; this means that a database is storing these credentials, which is a potential goldmine for attackers. You can set up a Google Alert to constantly watch for new portals; simply type in your query, select how often you want updates, and Google will send you an alert every time a new portal shows up in its results.

Knowledgeis power. The more you know about your own business, the better you can protect it from becoming prey to hacker-hawks circling in cyberspace.

Related Posts

Electric Vehicle Registrations Are Growing Beyond Traditional Locations

For years, most electric vehicle (EV) adoption has been concentrated in California, New York, and other traditional early-adopter markets. And while those markets still lead the nation in total registrations, as of last year, some of the fastest-growing EV markets are in regions that haven’t played a significant role in the past. According to Experian Automotive’s 2025 EV Year in Review Report, EV adoptions seem to be entering a new phase that is spreading well beyond coastal strongholds. In fact, the top designated market areas (DMAs) that saw the fastest year-over-year growth for new retail individual EV registrations in the last five years were Detroit, MI (34.5%), Naples, FL (32.6%), Atlanta, GA (20.6%), Buffalo, NY (18.7%), and Charlotte, NC (17.3%). However, despite the growing demand in these market areas over the last few years, Los Angeles, CA still holds a strong lead in new retail individual EV registrations, with over 164,000 new adopters in 2025. Rounding out the top five were San Francisco, CA (85,000+), New York, NY (78,000+), Miami, FL (45,000+), and Seattle, WA (35,000+). EV adoption expanding well beyond the early-adopter markets could be a result of charging infrastructure growth, vehicle availability improvement, and consumer interest reaching new levels across the country. What does this mean for dealers? The extension of EV adoption into emerging markets signals that these vehicles are becoming a mainstream consideration for more consumers. As dealers look for ways to grow their presence in this segment, adopting marketing strategies, service operations, and inventory planning will be beneficial to meet changing buyer expectations and capitalize on the growing demand. The biggest takeaway isn’t necessarily which markets are selling the most EVs, it’s seemingly where adoption is gaining momentum. As new regions start to embrace these vehicles, it’ll be important to monitor the next phase of growth and where future opportunities may emerge. To learn more about EV insights, visit Experian Automotive’s EV Resource Center.

Published: July 7, 2026 by Kirsten Von Busch
PREMIER Bankcard Expands Financial Access

Learn how PREMIER Bankcard and Experian are helping expand financial access through data, technology and personalized decisioning.

Published: July 6, 2026 by Scarlet.Nickel@experian.com
Simplifying Verification: Inside Experian Verify Hub with Sophia Cheung 

Explore how Experian Verify Hub is simplifying income and employment verification as Sophia Cheung shares insights on reducing complexity, improving data access, and helping organizations make faster, more confident decisions.

Published: July 3, 2026 by Ted Wentzel