The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

Last month's compromise of the UK website of the natural ingredients cosmetic firm Lush and the theft of its customers' credit card details must have hurt the company but unfortunately, its troubles are not over yet. "We are sorry to have to announce that the Lush Australian and New Zealand websites have been hacked," it says in a statement posted on the sites in question, whose contents have been completely removed while security checks are performed. "We have been alerted today to advise us that entry has been gained and customer personal data may have been obtained by the hackers. We urgently advise customers who have placed an online order with Lush Australia and New Zealand to contact their bank to discuss if canceling their credit cards is advisable," encourages the company. Whether that means that Lush hasn't been storing that data in encrypted format or whether it really wants to cover all bases just in case, it's anyone's guess. It...

The exploits of Anonymous to hack the systems of firms providing spying services to governments and corporations suggest that the WikiLeaks mini-era has been surpassed. Much of WikiLeaks promise to protect sources is useless if the sources are not whistleblowers needing a forum for publication. Instead publishers of secret information grab it directly for posting to Torrent for anybody to access without mediation and mark-up by self-esteemed peddlers of protection, interpretationa and authentication, including media cum scholars. Ars Technica descriptions of the how the Anonymous hack are the best technical reading of Internet derring-do yet and far exceeds the much simpler rhetorical version of WikiLeaks security carefully bruited as if invulnerable but is not according to Daniel Domscheit-Berg's revelations. AnonLeaks.ru  is a remarkable advance of WikiLeaks. And promises much more by the same means and methods most associated with official spies -- NSA and CIA have long...

The Anonymous attack on HBGary may have amused some who enjoyed the sight of a security firm left embarrassed and exposed, but it should send a shiver down the spine of any IT administrator responsible for securing their own company. Because can you honestly put your hand on your heart and say a hack like the one against HBGary couldn't happen at your organisation too? As Ars Technica explains, a weakness in a third-party CMS product used by HBGary's website allowed Anonymous hackers to steal passwords that employees used to update the webpages. Unfortunately they were passwords that weren't encrypted strongly enough, and were possible to crack with a rainbow-table based attack. Amongst those exposed were CEO Aaron Barr and COO Ted Vera. Worse still, it appears that Aaron Barr and Ted Vera were using the same passwords for their Twitter and LinkedIn accounts, and even for an account which administered the entire company's email. By exploiting software vulnerabilities,...

The Maldives National Defence Force (MNDF) has confirmed that its website was hacked last night by an unknown attacker. Major Abdul Raheem today confirmed that the MNDF was made aware of an attack this morning after checking its website. "Currently our website is down, and we are trying to fix it," he said. "so far, he have not been able to identify any person related to the case but we are investigating." Cyber Crime has become a growing concern to Maldivian authorities of late; especially in terms of the number of minors thought to be involved in practices like hacking. Earlier this year, Dhiraagu become the latest high profile victim of Maldivian cyber crime after facing continued attacks on its servers. The Maldives Police Service arrested four individuals suspected of involvement with the January attacks after conducting special operations at addresses both in Male' and Addu Atoll. Three of the suspects then arrested were confirmed to be under 18 years of age. Police sai...

The US Government has yet again shuttered several domain names this week. The Department of Justice and Homeland Security's ICE office proudly announced that they had seized domains related to counterfeit goods and child pornography. What they failed to mention, however, is that one of the targeted domains belongs to a free DNS provider, and that 84,000 websites were wrongfully accused of links to child pornography crimes. As part of "Operation Save Our Children" ICE's Cyber Crimes Center has again seized several domain names, but not without making a huge error. Last Friday, thousands of site owners were surprised by a rather worrying banner that was placed on their domain. "Advertisement, distribution, transportation, receipt, and possession of child pornography constitute federal crimes that carry penalties for first time offenders of up to 30 years in federal prison, a $250,000 fine, forfeiture and restitution," was the worrying message they read on their websites. As with prev...

Operacion Tequila announced By Anonymous Hackers ! Statement from Anonymous on Operation Tequila  Anonymous is a group of independent individuals without a leader. We would like to present to the Mexican people and the world, our collective decisions and thoughts through the following statement.  Anonymous are ordinary people who fight for free-speech both on and off the internet. We have been treated as if we were puppets, without the right to protest or demand anything. We are fed up and we rebel against a system that considers us asleep and submissive, that believes that his actions would go unpunished and that truths would be hidden forever. This system is the same that punished without any hesitation the ones who tried to bring the truth to light. For  this reason alone, the unconditional defense of free-speech,  we understand that the traditional media, in collusion with the  government responsible for neglecting the social reality of the country  ...

Winamp Forums Hacked, Message from Winamp Management Team Released ! After Hacker  Winamp Management Team Release a message for all Users, as given Below ... Winamp Management Team —  Hello, My name is Geno Yoham and I am the General Manager of Winamp. Our entire team is dedicated to protecting the privacy of our users and has put extensive measures in place to ensure your information remains secure. As a result of these precautions, we quickly detected and blocked an attack on the Winamp Forums database. We have confirmed that this breach was isolated to the Winamp Forum (forums.winamp.com) site only. Other Winamp sites and products such as Winamp.com, dev.winamp.com and the Winamp Desktop Media Player were not affected in any way. We have determined that your email address was exposed as a result of this attack, so as a precautionary measure, we recommend that you change that your password on the Winamp Forums. In addition, we recommend that you change your pass...

300 WebSite Rooted by The 077 ( Hamdi HaCker ) Tunisian HaCker List :  https://pastebin.com/JZqqRPY6 News Source : Hamdi HaCker | Via email

It has been an embarrassing week for security firm HBGary and its HBGary Federal offshoot. HBGary Federal CEO Aaron Barr thought he had unmasked the hacker hordes of Anonymous and was preparing to name and shame those responsible for co-ordinating the group's actions, including the denial-of-service attacks that hit MasterCard, Visa, and other perceived enemies of WikiLeaks late last year. When Barr told one of those he believed to be an Anonymous ringleader about his forthcoming exposé, the Anonymous response was swift and humiliating. HBGary's servers were broken into, its e-mails pillaged and published to the world, its data destroyed, and its website defaced. As an added bonus, a second site owned and operated by Greg Hoglund, owner of HBGary, was taken offline and the user registration database published. Over the last week, I've talked to some of those who participated in the HBGary hack to learn in detail how t Click Here to read Complete Story.....

The group of anonymous "hacktivists" that made headlines for online cyberattacks in December just released a bombshell online: a decrypted version of the same cyberworm that crippled Iran's nuclear power program. The ones and zeroes that make up the code called the Stuxnet worm -- described as the most sophisticated cyberweapon ever created -- were reportedly found when the faceless group hacked into the computers of HBGary, a U.S. security company that the anonymous collective viewed as an enemy. And the security experts spoke with said the leaked code was serious cause for concern. "There is the real potential that others will build on what is being released," Michael Gregg, chief operating officer of cybersecurity firm Superior Solutions. Gregg was quick to clarify that the group hasn't released the Stuxnet worm itself, but rather a decrypted version of it HBGary had been studying -- which could act almost like a building block for cybercrooks. "A...

The CBI will seek Pakistan government's help in identifying members of a hacker group 'VERGIL' operating from that country and was allegedly involved in defacing the official website of Bureau of Police Research and Development (BPRD) in 2010. Accepting a CBI plea, a Delhi court today issued a 'letter of request' to the department of justice in Pakistan forobtaining information and documents relating to the case. The agency had moved an application before chief metropolitan magistrate Vinod Yadav, who said he was satisfied that a case has been made out for issuing the 'letter of request'. "Considering the facts and the circumstances of the case in totality, in my opinion, CBI has been able to make out a good case for issuance of Letter of Request under section 166 (A) CrPC in favour of the department of justice in Pakistan for obtaining the information and documents," the CMM said. The CBI registered a case on the basis of a complaint recei...

After the 2011 Grammys, many people were left asking, " Who is Esperanza Spalding? " The little known jazz singer took home a 2011 Grammy for Best New Artist, beating out teen pop sensation Justin Bieber. Legions of Justin Bieber fans weren't too happy with the Esperanza Spalding Grammy win . Many took to Twitter to vent about how Justin Bieber should have won a Grammy. Other members of Bieber Nation hacked the Esperanza Spalding Wiki page. First, Esperanza Spalding's middle name was changed to " Quesadilla. " The bio on the Esperanza Spalding Wiki page said: " JUSTIN BIEBER DESERVED IT GO DIE IN A HOLE. WHO THE HECK ARE YOU ANYWAY? " Later, some Bieber hater wrote " HaHa Justin Bieber, you're just a little boy with no Grammy for Best New Artist. " Here is a Esperanza Spalding wiki hack photo