The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

Sun.com (Oracle Sun Microsystems) vulnerable to SQL Injection Sun Microsystems, Inc . was a company selling computers, computer components, computer software, and information technology services. Sun was founded on February 24, 1982. Prior to the acquistition by Oracle its headquarters were in Santa Clara, California (part of Silicon Valley), on the former west campus of the Agnews Developmental Center. On January 27, 2010, Sun was acquired by  Oracle Corporation for US$7.4 billion , based on an agreement signed on April 20, 2009. Sun Microsystems, Inc. was subsequently renamed Oracle America, Inc. (+)  Targets : [-]  www.reman.sun.com [-]  www.ibb.sun.com (+)  Informations : (+) User          : availlist@192.9.170.151 (+) Database : remandb (+) Version     : 5.1.43-log (+) Datadir      : /DATA/5.1_jag/ (+) Other DB   : information_schema (+)  Tables from remandb : [-] files [-] reman...

694 Israel Mails Hacked By Dinelson Us ! Target :  https://asif-bag.co.il/ Pic :  https:// capitoltransmissionservices. com/capture2.jpg ListMail :  https:// capitoltransmissionservices. com/mails.html Login page :  https://asif-bag.co.il/index. php?susers_login Decrypter Password :  https://www.md5decrypter.co.uk/ Zip :  https:// capitoltransmissionservices. com/mails.zip Tables :  users -  user_perm -  user_2lang -  upload_zip -  upload_shop  News Source : Dinelson Us 

MySql.Com Hacked with Blind SQL Injection by Jackh4xor ! The Mysql website offers database software, services and support for your business, including the Enterprise server, the Network monitoring and advisory services and the production support. The wide range of products include: Mysql clusters, embedded database, drivers for JDBC, ODBC and Net, visual database tools (query browser, migration toolkit) and last but not least the MaxDB- the open source database certified for SAP/R3. The Mysql services are also made available for you. Choose among the Mysql training for database solutions, Mysql certification for the Developers and DBAs, Mysql consulting and support. It makes no difference if you are new in the database technology or a skilled developer of DBA, Mysql proposes services of all sorts for their customers. Vulnerable Target https://mysql.com/customers/view/index.html?id=1170 Host IP 213.136.52.29 Web Server Apache/2.2.15 (Fedora) Powered-by PHP/5.2.13 Injection Typ...

AI agents promise to automate everything from financial reconciliations to incident response. Yet every time an AI agent spins up a workflow, it has to authenticate somewhere; often with a high-privilege API key, OAuth token, or service account that defenders can't easily see. These "invisible" non-human identities (NHIs) now outnumber human accounts in most cloud environments, and they have become one of the ripest targets for attackers. Astrix's Field CTO Jonathan Sander put it bluntly in a recent Hacker News webinar : "One dangerous habit we've had for a long time is trusting application logic to act as the guardrails. That doesn't work when your AI agent is powered by LLMs that don't stop and think when they're about to do something wrong. They just do it." Why AI Agents Redefine Identity Risk Autonomy changes everything: An AI agent can chain multiple API calls and modify data without a human in the loop. If the underlying credential is exposed or overprivileged, each addit...

Powerful message from former C.I.A. Agent to every blogger , hacker and Americans ! News Source :  https://bankofamericasuck.com/

CAT is designed to facilitate manual web application penetration testing for more complex, demanding application testing tasks. It removes some of the more repetitive elements of the testing process, allowing the tester to focus on individual applications, thus enabling them to conduct a much more thorough test. Conceptually it is similar to other proxies available both commercially and open source, but CAT provides a richer feature set and greater performance, combined with a more intuitive user interface. There are a number of differences between CAT and currently available web proxies. They include: CAT uses Internet Explorer's rendering engine for accurate HTML representation It supports many different types of text conversions including: URL, Base64, Hex, Unicode, HTML/XML, SQL and JavaScript no quotes It offers integrated SQL Injection and XSS Detection Synchronized Proxies for Authentication and Authorisation checking Faster performance due to HTTP connection caching...

Mafia-country.cz.cc & Syriatourism.org Hacked by The 077 ( Hamdi HaCker ) Hacked Sites : Mafia-country.cz.cc Syriatourism.org

Thousands of Bank of America customers' account information could be in jeopardy after a major security breach. Christy Clark went to a Royal Oak drug store Friday, but when her debit card was declined, she knew something was wrong. "I was very embarrassed," Clark said. She went straight to the Bank of America branch near 12 Mile Road near Woodward Avenue in Royal Oak to report the problem. When she arrived, she was surprised to see the lobby packed with customers who experienced the same issue. "When I entered the branch, that's when I realized this was a bigger problem," Clark told Local 4. Bank of America told Local 4 this involves more than $100,000 worth of transitions. Bank employees told Clark they issued a number of temporary debit cards to customers who discovered money was missing from their account. Two bank staffers said they were also victims of this crime. A spokesperson for Bank of America said they are trying to figure out exactly how widespread the problem is...

XSS Vulnerability in   Zapak(gaming portal) by Milan Milo [ZHC]

Security Onion LiveDVD - Intrusion Detection for your Network ! The Security Onion LiveDVD is a bootable DVD that contains software used for installing, configuring, and testing Intrusion Detection Systems. Changelog: All Xubuntu 10.04 updates as of release date. Snort updated to 2.9.0.3. Suricata updated to 1.1beta1. Barnyard2 updated to 1.9 Stable. Vortex updated to 2.9.0. Installed OSSEC for host-based intrusion detection. Installed Squert web interface for Sguil. Installed Armitage GUI interface for Metasploit. Many improvements to Setup script for user-friendliness and capability Download Security Onion LiveDVD &  Presentation

Recently, Director of Information Technology, Per Kristensen stated that, a new type of the Qakbot virus appeared globally on March 15, 2011 and was observed in PCs in Nanaimo (Canada) at noon on March 16, 2011, as reported by Bclocal News on March 12, 2011. To safeguard important information about the city, the system was immediately put on a halt after the staff realized that the virus was swiftly circulating from PC to PC. Commenting on the matter, Per stated that, people can be sure that all their personal information and details are safe. He stated that, safeguarding their private information is their main concern. He added that, the city's system would not be turned on until they are sure that they sorted out the problem, as reported by Vancouver Sun on March 18, 2011. Kristensen stated that, the virus seems extremely complex, altering its signature to transfer through a computer various times. Kristensen stated that, the virus is classified as harmful and they are being ...

10 pakistan  sites defaced by Hell Hax0r ! Hacked sites : https://esonsind.com/ https://friendsofsialkot.com/ https://pakviewsports.com/ https://www.hard-safety.com/ https://www.badhawaind.com/ https://www.westwearco.com https://www.urbanwearintl.com https://www.kravmagasupplies.com https://lawsonsports.com/ https://www.tackisports.com/