The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

30 more Website Has Been Hacked By Dinelson Us Hacked sites :  http://pastebin.com/pfw04vZj News Source :  Freed

WikiLeaks is among the 241 Nobel Peace Prize nominees this year. The nominees come from 53 organizations and are greater in number than in any previous year. Read More Here . Nobel-watcher and Peace Research Institute Oslo Director Kristian Berg Harpviken says he is not surprised WikiLeaks has been nominated and he expects it will receive more than one vote. " WikiLeaks has been on top of the international news headlines for the last 12 months," he said. "It is also something very new in more ways than just bringing interesting news. It is, in fact, newsworthy in and of itself as a phenomenon. It is an interesting and many ways challenging candidate in its own right. " We did a online Poll voting on this issue and the Results are as shown Below : These 241 nominations will be considered by the Nobel Committee, which will create a short list of nominees. The Nobel Peace Prize is awarded by a committee of five people chosen by the Norwegian parliament presi...

DB Audit v4.2.29 all-in-one database security and auditing solution ! . DB Audit Expert is a professional all-in-one database security and auditing solution for Oracle, Sybase, DB2, MySQL and Microsoft SQL Server. DB Audit Expert enables database and system administrators, security administrators, auditors and operators to track and analyze any database activity including database security, access and usage, data creation, change or deletion. What makes DB Audit really unique is its built-in support for multiple auditing methods giving you the flexibility to choose the best fit for your database security requirements. Key Benefits Improves system security and ensures system accountability. Captures both regular and “back-door” access to audited database systems. Features centralized security and auditing control of multiple database systems from a single location providing ease of management. Features unified auditing graphical interface that shortens the learning curve and is ...

Today guy from InSecurity.Ro  named  sway1990  found again a critical vulnerability (MySQL Injection) in their website. Some extracted informations : Version – ( 5.1.41-3ubuntu12.10 ) Main DB – ( c1eset ) HostName – ( web.axelsoft.ro ) User – ( c1eset@localhost ) DataBases : information_schema c1eset Tables of main db : concurs country eventsro joom_banner joom_bannerclient joom_bannertrack joom_categories joom_components joom_contact_details joom_content … joom_core_log_searches joom_groups, joom_jce_extensions joom_jce_groups … joom_users joom_weblinks jos__sessions jos_banner … A dministrator Account: username =admin password =51f9a6e361a03aee324bcc73fe8ab4a5:xt69awFsqAyvglBMcbtvq9HopIAnQ1jF email =emil@nod32.ro usertype =Super Administrator News Source : Kai Farmer

Wufeng County Procuratorat ( China Government ) website Hacked ! Hacked site :  http://www.wufeng.jcy.gov.cn/ News Source : Kai Farmer

Cross Site Scripting (XSS) vulnerability in Google Search Engine ! Vulnerabile Link :  http://www.google.com/custom?hl=en&cof=L%3Ahttps%3A%2F%2Flh5.googleusercontent.com%2F_bCYQxIvMQ2U%2FTRMT2a-UiQI%2FAAAAAAAAAYU%2FWXKFKDTesOs%2Fs640%2Fhackernews.jpg%3BBGC%3A%231f1f1f%3B&q=http%3A%2F%2Fwww.thehackernews.com%2F&btnG=Search

In the videos below, Joel Langill deconstructs each part of the worm to show it in action. In the second video you’ll see the best practices that InfoSec Institute uses (we have a training course dedicated to SCADA control systems which includes a robust Stuxnet lab) to mitigate this type of infection and security breach. Part 1: Introduction, Installation, and Injection Part 2: Mitigation & Prevention The Stuxnet worm has generated a lot of media attention and coverage for some of it’s features as well as targets. The complexity not normal for malware that we’ve witnessed, and consists of attacks against three different systems: Windows Infection Step7 Infection PLC Infection If you’d like to know more about Stuxnet & SCADA security, attend our SCADA Security Boot Camp. Leave a comment below if you have a specific instruction or ideas of what you’d like to learn in any follow-up or explanations of this video. News Source : Infosecinstitute.com

Bsnl India Helpdesk Admin panel Hacked ! Here in above pic a Indian Hackers Group " The Blackroot " Access to the Admin panel of Bsnl India Help-desk. Lol , Nothing is Secure, technical support by Bsnl also have Technical Problems ;-) News Source : Facebook 

Indonesian Soccer Association (PSSI) website hijacked by hackers ! Hackers apparently hijacked the website of the Indonesian Soccer Association (PSSI), placing an anti-corruption message on the PSSI’s homepage. The homepage currently displays a mouse holding two smoking pistol and carries the message “ Stop Corruption and Bribery in Indonesia. ” The hackers claimed to be members of a group named“ Fried Worker Activists Caring for Indonesia ”.

Zynga hacker, Ashley Mitchell jailed for two years ! British bloke Ashley Mitchell, 29, has been jailed for two years after stealing some 400 billion virtual gaming chips gaming company Zynga. Mitchell hacked his way into Zynga's back-end systems by pinching the identities of two Zynga employees and filleted the swag, some of which he managed to flog on Facebook and some he used to gamble his nights away playing online poker. Mitchell, of Paignton, Devon pleaded guilty to hacking the servers and pinching the chips, which were estimated to be worth around £7.4 million in real money. He flogged around a third of his ill-gotten gains for £53,612. James Taghdissian, prosecuting, told the court that Zynga realised in August 2009 that its chips were disappearing and suspicion fell on two employees. It turned out that Mitchell was using their details to gain access to the stash. Mitchell had been using his neighbours' Wi-Fi connections to carry out his hacks, which lead to t...

1337hax & Windowsforums hacked by Team - Indishell ! Hacked sites : http://1337hax.org/ http://www.zone-h.net/mirror/id/13288096 http://windowsforums.org/ http://www.zone-h.net/mirror/id/13288104

Tumblr security flaw , Clarification by Tumblr official staff ! On our yesterday post about  Tumblr security flaw : server IPS, API keys, passwords, etc were leaked , Finally Tumblr official staff gives a statement to all their users as below : A human error caused some sensitive server configuration information to be exposed this morning. Our technicians took immediate measures to protect from any issues that may come as a result. We’re triple checking everything and bringing in outside auditors to confirm, but we have no reason to believe that anything was compromised.  We’re certain that none of your personal information (passwords, etc.) was exposed, and your blog is backed up and safe as always.  This was an embarrassing error, but something we were prepared for. The fact that this occurred at all is still unacceptable, and we’ll be seriously evaluating and adjusting our processes to ensure an error like this can never happen again. ...