The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

PacketFence is a free and open source network access control (NAC) system. It can be used to effectively secure networks - from small to very large heterogeneous networks. PacketFence has been deployed in production environments where thousands of users are involved - on wired and wireless networks. PacketFence provides an impressive list of supported features. Among them, there are: Registration of network components through a captive portal Automatic isolation, if desired, of unwanted devices such as Apple iPod, Sony PlayStation, wireless access points and more Instant stopping of computer worms or virus propagation Blocking of attacks on your servers or other network components Compliance for computers present on your network (software installed, particular configurations, etc.) PacketFence is an unobtrusive solution that works with equipment from many vendors (wired or wireless) such as Cisco, Nortel, Hewlett-Packard, Enterasys, Accton/Edge-corE, 3Com, D-Link, Intel, Dell...

Bhutan Government 's hacked with Blind Sqli Injection Hacked Site : bhutan.gov.bt

Bryantx.gov - City of Bryan Hacked and 175 emails/passwords Exposed By   Fr0664/FCA Hacker Expose  175 emails/passwords at  https://pastebin.com/weSMwxAi

Tor 0.2.2.25-alpha released - To Toggle, or not to Toggle & The End of Torbutton! Tor 0.2.2.25-alpha fixes many bugs: hidden service clients are more robust, routers no longer overreport their bandwidth, Win7 should crash a little less, and NEWNYM (as used by Vidalia's "new identity" button)now prevents hidden service-related activity from being linkable. It provides more information to Vidalia so you can see if your bridge is working. Also, 0.2.2.25-alpha revamps the Entry/Exit/ExcludeNodes and StrictNodes configuration options to make them more reliable, more understandable, and more regularly applied. If you use those options, please see the revised documentation for them in the manual page. TorButton Modifies to " To Toggle, or not to Toggle " : Read Here Download : https://www.torproject.org/download/download

Assange says Facebook is spying tool for US intelligence ! WikiLeaks editor-in-chief Julian Assange has branded Facebook an "appalling spying machine". According to Assange, whose WikiLeaks whistle-blowing site has propelled him into the media limelight, US intelligence services have direct access to records of Facebook users. "Facebook is the most appalling spying machine that's ever been invented," he said in an interview with Russia Today. "Here we have the world's most comprehensive database about people, their relationships, their addresses and locations, their communications with each other - all sitting within the United States and all accessible to US intelligence." Assange claimed that because of the costs involved each time an internet company was asked for access to specific data files, the big companies have built in back doors for officials to help themselves to whatever data they wanted. "Facebook, Google, Yahoo – all these major US organisations - hav...

0day Exploit Released : Adobe, HP, Sun, Microsoft Interix & many more Vendors FTP hackable ! Topic : Multiple Vendors libc/glob(3) resource exhaustion (+0day remote ftpd-anon) CVE : CVE-2010-2632 CWE : CWE-NOMAPPING SecurityRisk : Medium (About) Remote Exploit : Yes Local Exploit : Yes Victim interaction required : No Credit : Maksymilian Arciemowicz Affected Software (verified): - - OpenBSD 4.7 - - NetBSD 5.0.2 - - FreeBSD 7.3/8.1 - - Oracle Sun Solaris 10 - - GNU Libc (glibc) Affected Ftp Servers: - - ftp.openbsd.org (verified 02.07.2010: "connection refused" and ban) - - ftp.netbsd.org (verified 02.07.2010: "connection limit of 160 reached" and ban) - - ftp.freebsd.org - - ftp.adobe.com - - ftp.hp.com - - ftp.sun.com - - more more and more Affected Vendors (not verified): - - Apple - - Microsoft Interix - - HP - - more more more Exploit Download :  https://www.exploit-db.com/exploits/15215/

Netherlands-based Rabobank down under DDoS attack ! The internet and mobile banking services of Netherlands-based Rabobank were crippled by a distributed denial of service attack yesterday. The attack sent the banking services offline but did not affect Australian operations, according to the bank. "Currently many of our clients experienced [difficulty] when using internet banking," the bank wrote in a statement. A large range of network traffic [has] to do with an attack in the form of a DDOS." The perpetrators of the attacks were unknown, and the bank has not said if they were behind a seperate DDoS attack in Feburary. A Dutch anarchist group called the Conspiracy Cells of Fire claimed responsibility for the Feburary attacks in a communique but the Dutch domestic intelligence service AIVD said the claim was a hoax. The bank has issued an apology on its Dutch website and moved to assure customers that account information had not been compromised.

Google Hack DB Tool is a database tool with almost 8,000 entries. It allows administrators the ability to check their site for vulnerabilities based on data stored in Google. With this tool you can find out if your website has indexed vulnerabilities in google. This can lead to sensitive information disclosure. This way you can find out what google knows about you. 7974 entries (Including 4203 for SQL Injection) So be sure to scan your IP addresses frequently and eliminate all vulnerabilities. Features of the Google Hack DB Tool: Find information disclosure. Find sensitive files. Find sensitive directories. Find vulnerable software. Find personal information. Download Google Hack Database Tool v1.1 here

Hack your Sony PSP : ISO Tool v1.975 Released ! So I don't know if you're familiar with the latest version of Takka's ISO Tool or not, but I just downloaded it after reading about this "Fake NP data" feature. While I'm not 100% clear, mainly because of the poor Google Translation, it seems v1.975 can patch EBOOT.BIN game files, NPDRM'ing ISOs to appear as downloaded PSN content, letting you load 'em up … possibly without HEN or CFW? And that's what I'm not clear on. I've been playing with ISO Tool v1.975 on my PSPgo… I have a few legitimately purchased games from PSN installed; however, my PSP isn't "activated" (that's another story) and I can't activate it with PSN being down, thus I'm stuck with error 8010850F ("To use this content, you must activate the system."). But here is how it works anyway: Load up ISO Tool Press [Triangle] to bring up the SYS MENU Select "Make fake_np data File." Browse to and press [Cross] on a PSN-downloaded directory Select "Yes" to start the ...

USB Immunizer : Anti-Malware Tool Against Autorun Viruses The USB immunizer is BitDefender's response to this growing issue. Autorun-based malware has been atop of the worldwide e-threat landscape, with notorious representatives such as Trojan.AutorunInf, the Conficker worm (Win32.Worm.Downadup) or Worm.Autorun.VHD. Have to agree on that, many of us get infected buy some silly malware simply by plugin in our friends or neighbours USB , DVD etc… Introduced back in the Windows XP era to facilitate software installations from CD-ROM media for non-technical computer users, the Autorun feature has rapidly become the infection vector of choice for cyber-criminals. The Immunize option allows you to immunize your USB storage device or SD card against infections with autorun-based malware. Even if your storage device has been plugged into an infected computer, the piece of malware will be unable to create its autorun.inf file, thus annihilating any chance of auto-launching itself. Th...

( #SOE ) Sony hit with second attack, loses 12,700 credit card numbers ! Sony loses 12,700 credit card account numbers, 24.6 million accounts compromised Following up on this morning's news that Sony Online Entertainment servers were offline across the board, Sony Online Entertainment announced that it has lost 12,700 customer credit card numbers as the result of an attack, and roughly 24.6 million accounts may have been breached. The company took SOE servers offline after learning of the attack last evening, and today detailed the unfortunate results: "approximately 12,700 non-US credit or debit card numbers and expiration dates (but not credit card security codes), and about 10,700 direct debit records of certain customers in Austria, Germany, the Netherlands, and Spain" were lost, apparently from "an outdated database from 2007." Of the 12,700 total, 4,300 are alleged to be from Japan, while the remainder come from the aforementioned four European coun...