> <i>The SecureWorks team initially found the database by using the virus scanning tool VirusTotal to search for suspicious email attachments.</i><p>I feel like they left out a couple of reverse-engineering/hacking steps here. Or is it true, does VirusTotal have such capabilities and I am just ignorant?