The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

" Anonymous ," the shadowy hacktivist group that's attacked PayPal, the record industry and the Church of Scientology, has upped the ante: It's now taking on entire countries. The group launched massive distributed denial-of-service (DDoS) attacks on at least eight Tunisian government websites beginning Sunday night, according to Al Jazeera and the Internet security company Sophos. As of 4 p.m. EST Monday, the official Tunisian government website, www.tunisia.gov.tn , was still offline. Last Thursday, Anonymous launched similar attacks against websites operated by the government of Zimbabwe. Both attacks are part of " Operation Payback ," Anonymous' long-running campaign against organizations it feels are threatening Internet freedoms. Tunisia and Zimbabwe had blocked their citizens' access to Wikileaks last month, after secret U.S. State Department cables unflattering to either country were revealed as part of Julian Assange's huge dip...

New Delhi:   With the growing diversity of operating systems among companies, and the increasing use of mobile devices, cyber criminals will put a new spin on social engineering by 'malware campaign' under which they will bombard recipients with email that drop virus downloaders.       According to an internet security software and service provider Trend Micro study on Threat Predictions for 2011, threat researchers have found that more than 80 per cent of the top malware use the web to arrive on users' systems and every second, 3.5 new threats are released by cyber criminals.       During current year, proof of concept attacks against cloud infrastructure and virtualised systems will emerge. Diversity of operating systems at the endpoints forces the cyber criminals to focus more on critical cloud services and server infrastructures. Further, the report noted that mid-sized companies will be targeted in cyber espionage. The growth ...

Two cybersecurity researchers have just taught smartphones a lesson by developing a program that can eavesdrop and steal text messages from any phone on a GSM network – all in about 20 seconds. The Guardian reported that Karsten Nohl and Sylvain Munaut spent a year honing their technology, which starts by sending a text message to a target phone; called a "ghost" message, the text doesn't show up on the recipient's phone, but enables the hackers to obtain the handset's unique identification number. Once that identification number is stolen, Nohl and Munaut were able to record phone conversations and texts from the hijacked phone. Their proof-of-concept hack can be deployed on any phone running on a GSM (Global System for Mobile Communications) network. That's a pretty big focus group – about 80 percent of the world's phones run on a GSM network. "Any GSM call is fair game," Nohl told the BBC. He and his partner in cybercrime demonstrated their data-grabbing technology at last w...

This kind of thing tends to happen from time to time, though this time it seems that Mark Zuckerberg's name has been dragged into it.   A hacker out there managed to hack into Kenya's law enforcement body's website and post some graffiti there, which is some kind of tribute to Facebook's co-founder.   The site now shows "Got in and all i could think about was zuckerberg!!! This' for you Mark!" Only the main page seems defaced, as the rest of the site is functional. Hopefully this gets solved sooner rather than later and it's not a sign of an upcoming trend for 2011.

Video shows how Windows Phone 7 apps can be easily swiped and stripped of DRM protections Once more, Microsoft finds itself in the unenviable position of having one of its security flaws shared with the world. WPCentral has posted a video made by a "'white hat' developer" that shows how cyber shoplifters can easily swipe and unlock apps from Microsoft's Windows Phone 7 Marketplace. The news yet again raises the question of whether Microsoft is slacking on security. WPCentral asserts that it shared this security flaw with Microsoft "well before the publication of [the] article" but opted to make public the information to motivate the company to fix the problem, in defense of developers who are seeing their wares stolen. "While many will condemn us for 'promoting piracy,' we respectfully disagree," said WPCentral. "We have heard many complaints from developers about this weakness for months now and it is their right to know abo...

Barnes and Noble's full color touch screen, Wi-Fi and 3G enabled eReader tablet NOOK color ships with a Bluetooth chip that is not activated. Well, not anymore. A user occip at XDA-developers has managed to start the Bluetooth on the device and scanning and connecting to devices is working well. NOOK color is really turning out to be quite a tablet. It comes at a much cheaper rate than standard tablets and looks and works like a superior piece of equipment. Way to go, people! What would the tech world be without the developers? Do note that the eReader's Bluetooth capabilities are not error-free yet. There are some problems such as inconsistency. And you have to be on Android 2.2, not Android 2.1, the default operating system version. In any case, if you want to try this out on your Nook, get the instructions  here . Do this at your own risk. As this implementation will definitely void your equipment's warranty, be sure you know what you're doing. NOOK color has been a treat for de...

The Japanese motor company, Honda, today issued an alert to U.S. customers concerning a security breach  resulting from a hacked database. The database that was managed by a third-party marketing group contained confidential information, including names of car owners, personal e-mail addresses, and even Vehicle Identification Numbers (VIN). The company downplayed the breach, saying it would be very difficult for the hackers to actually utilize the stolen information to steal a person's identity. Honda immediately issued a warning via e-mail to people included in the database once becoming aware of the unauthorized breach. The company cautioned people not to reply to e-mail requests for additional information, such as social security or credit card numbers, as the company itself would not request this information. Acura, the luxury car brand also owned by Honda, owners were also affected in the security breach, as their accounts were also included in the database. About 2.4-million ...

The simplistic spam campaign that hit around Christmas and purported to be a holiday greeting from the White House not only included a piece of Zeus-related malware that searches hard drives for documents and uploads them to a remote server, but also appears to be connected to a similar attack from early 2010 that exposed a nascent botnet. The holiday e-card scam is a typical year-end spam tactic and often will include malware of one type or another. But the latest incarnation was different in that it included a malicious executable related to the Zeus botnet and it seems that officials in a number of government agencies in the U.S. and elsewhere fell for the scam and ended up exposing gigabytes of government documents. One of the executables being used in the e-card attack is nearly identical to a file that was used in a similar attack in February 2010 that was detailed by security firm NetWitness at the time. In the frst stage of the latest attack, the user clicks on a link in the m...

A nearly nine-month investigation by Santa Barbara County Sheriff's detectives has led to the arrest of a former UCSB student as a suspected identity thief who bilked at least five victims out of at least $158,000. Imoukhuede Ohiwerei Ehimika, 26, of Nigeria was arrested Dec. 21 at his home in the 200 block of Mathilda Drive in Goleta, the Sheriff's Department announced Thursday. He was released Tuesday, Dec. 28, after posting $150,000 bail. Detectives began their investigation in April after a Santa Barbara area man reported that someone had used the Internet to transfer more than $5,000 from the his bank account into a fraudulent bank account that had recently been opened under his name. Over the next two months, detectives received similar reports from other Goleta and Santa Barbara residents involving transfers from their home equity accounts. In each case the suspect then bought money orders from various Wal-Mart stores around Southern California. Detectives allege that Ehimi...

Have you received an email seemingly from Microsoft's security team telling you to " Update your Windows "? Have you been sent a file called KB453396-ENU.zip and told to run it on your Windows computer? Well, think twice before following the instructions. Cybercriminals are up to their old tricks, spreading malware under the disguise of a critical security patch from Microsoft. In the current example, they've spammed out an email containing a worm, which even quotes the real name of a senior member of Microsoft's security team - Steve Lipner - to try to fool you into believing it is genuine. The emails have a subject line of " Update your Windows " and contain the following text: Of course, Mr Lipner has nothing to do with the emails and Microsoft never distributes security updates via email attachments. Nevertheless, there have been a series of attacks that have abused his name in the past. With so much effort being taken by the cybercriminals to hoodw...

Chinese website Dlzdjy.com   database hacked by Team Jmc H4x0rs Admin Panel : Database :  News Submitted By : Team Jmc H4x0rs