The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

Law enforcement organization hit by hackers ! Computer hackers have stolen names, addresses, Social Security numbers and credit card information of about 2,000 retired public safety officers belonging to the Peace Officers Research Association of California, according to a email sent to them on Thursday night. PORAC informed its members that its data server was breached earlier this month. The hackers stole application files of retired associate members going back to 2008, including dates of birth, addresses and phone numbers and email addresses. "Based on our investigation, it appears that the breach was limited to (retiree) applications and we have no reason to believe that other PORAC members were affected," PORAC President Ron Cottingham said in the email. Cottingham told The Bee this morning that the association was following up with a letters that will be mailed out today. The organization started receiving reports last week that members' credit cards were ...

imm0rt4l5 Hackers Hit 3 Pakistani websites ! Defaced Site : 1.)  mcl.com.pk Muslim Constructors (Pvt.) Ltd., popularly known as MCL URL : https://www.mcl.com.pk mirror : https://www.turk-h.org/defacement/view/383420/mcl.com.pk/ 2.) novait.com.pk the Internet service provider. URL : https://novait.com.pk/index.php?page_id=2 Proof : https://i55.tinypic.com/1jrgid.png 3.) gmsons.com.pk URL :https://www.gmsons.com.pk/productsDesc.php?id=3 Proof : https://i51.tinypic.com/2hibe3k.jpg

Pangolin 3.2.3 - Automatic SQL injection penetration testing tool New Release ! Pangolin is an automatic SQL injection penetration testing (Pen-testing) tool for Website manager or IT Security analyst. Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or users specific DBMS tables/columns, run his own SQL statement, read specific files on the file system and more. Test many types of databases Your web applications using Access,DB2,Informix,Microsoft SQL Server 2000,Microsoft SQL Server 2005,Microsoft SQL Server 2008,MySQL,Oracle,PostgreSQL,Sqlite3,Sybase? Pangolin supports all of them. Features: Au...

151 websites Got hacked By Albania hacker Force [AHF CREW] Hacked Site List :  https://pastebin.com/jhmxB1zt

Wfaic.gov.cn  Hacked By Anonymous Hackers #OpIran Hacked Site : https://www.wfaic.gov.cn/home.html

Trinity College Dublin Reports Data breach ! A file containing the names of students and staff of Trinity College Dublin, along with their addresses, ID numbers and email addresses, was "inadvertently" made accessible on a local network, the college said. TCD said today it had reported the incident to the Data Protection Commissioner. The college said it had been advised on March 30th that a file containing student and staff names, addresses, ID numbers and email addresses, which had been provided to the library, "was inadvertently made accessible on the local college network between August 2009 until March 2011". It said in a statement to those affected that the information was not accessible through the internet and that it had no reason to believe their privacy had been compromised. "For your security, we encourage you to be aware of email scams that ask for personal or sensitive information." The statement added: "In line with data protection legislation the college has ...

6 denmark websites hacked by ahmdosa ! Hacked Sites : https://aloegel.dk/ https://barndeluxe.dk/ https://drikkegel.dk/ https://julie-jensen.dk/ https://sygehusplan2010.dk/ https://timo-jensen.dk

ICANN Hires Def Con Founder Jeff Moss as Security Chief ! Jeff Moss, the hacker better known as " The Dark Tangent ," has been named Vice President and Chief Security Officer of ICANN, the non-profit corporation that manages the Internet's names and numbering infrastructure. He is the founder of DEF CON, the world's largest conference for hackers, as well as the Black Hat security conference. A phone phreaker in his youth, Moss has recently worked as a white hat hacker, working to secure networks from attack. "He has the in-depth insider's knowledge that can only come from fighting in the trenches of the on-going war against cyber threats," said ICANN president Rod Beckstrom in a statement. Moss is well known for having created the game "Spot the Fed" in which a hacker who thinks he's identified an undercover federal agent in the crowd at DEF CON can point him out, make his case, and if the crowd agrees, take home a coveted "I Spotted The Fed at DEF CON" t-shirt. D...

Cross site scripting (XSS) vulnerability in Rebook.com Found By Zero Cool Vulnerable Link :   https://www.reebok.com/IN/ search?t=%3E%22%3E%3CMARQUEE% 3EHACKED%20BY%20ZERO%20COOL% 3C/MARQUEE%3E%3Ciframe+src+% 3D%22https://www.thehackernews. com%22+width%3D%22100%25%22+ height%3D%22100%25%22%3E%3C% 2Fiframe%3E&Submit=Go

PacketManipulator 0.3 released - including Windows Installer ! PacketManipulator is a network scanning frontend. PacketManipulator is developed in the Python programming language, and its interface is built with the GTK Toolkit. The project goal is to develop a frontend that is really useful for advanced users and easy to be used by newbies. With PacketManipulator, network admin can forge custom packets and send them over the wire to analyze the network, sniff on a selected interface or simply edit a pcap file for further replay. Download  PacketManipulator-0.3-installer-winxp.exe  ( 11.9 MB) For Installation Guide and Further Read : Click Here

Dslreports.com hacked , Over 9000 accounts compromised ! DSL Reports - the information and review site on high speed Internet services which operates over 200 forums - has been hit with a blind SQL injection attack, which resulted in the compromise of at least 9000 accounts. Founder Justin Beech posted a notification about the intrusion on the forum dedicated to the site, in which he specified that no login names, zip codes and private posts were compromised. The attack went on for four hours on Wednesday and it was blocked before it had completed more than 8% of its work. All the same, the attackers managed to obtain a large number of email/password pairs. "The ones they obtained were basically random. So they cover the entire 10 year history of the membership but sprinkled randomly. Some are very old accounts, some are new accounts, some inactive or deleted," says Beech. "I identified the newest accounts, those that were obtained and have logged in over the ...

US Congress wants answers from Sony on PlayStation hack ! A U.S. congressional committee has asked Sony Computer Entertainment to explain several issues surrounding the massive potential leak of information on customers of its PlayStation Network. The network, which serves as an e-commerce and online gaming platform for the PlayStation 3, has been offline for more than a week after Sony discovered an intruder broke through its cyberdefenses and into the network. The service remains unavailable and Sony has warned its 77 million subscribers that their personal information may have been leaked, including, potentially, credit card numbers. A subcommittee of the House of Representatives' Committee on Energy and Commerce sent a letter to Sony on Friday that seeks answers to many of the same questions that Sony's users have about the attack and the company's response. Chief among those is Sony's apparent slowness in taking the network offline and informing customers....