The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

On Tuesday, April 26 Sony shared that some information that was compromised in connection with an illegal and unauthorized intrusion into our network. Once again, Sony'd like to apologize to the many users who were inconvenienced and worried about this situation. Sony want to state this again given the increase in speculation about credit card information being used fraudulently. One report indicated that a group tried to sell millions of credit card numbers back to Sony. To my knowledge there is no truth to this report of a list, or that Sony was offered an opportunity to purchase the list. One other point to clarify is from  this weekend's press conference . While the passwords that were stored were not "encrypted," they were transformed using a cryptographic hash function. There is a difference between these two types of security measures which is why Sony said the passwords had not been encrypted. But I want to be very clear that the passwords were not stored in our databa...

One more Hacker Website Ub3rHakerz.NET Hacked By Shadow008 (PakCyberArmy) Sites Hacked :  https://ub3rhakerz.net/ Mirror : https://zone-h.com/mirror/id/13604712

Source Code of Osama FaceBook worm Leaked ! Source Code :  https://www.reddit.com/tb/h3mdu

PacketFence is a free and open source network access control (NAC) system. It can be used to effectively secure networks - from small to very large heterogeneous networks. PacketFence has been deployed in production environments where thousands of users are involved - on wired and wireless networks. PacketFence provides an impressive list of supported features. Among them, there are: Registration of network components through a captive portal Automatic isolation, if desired, of unwanted devices such as Apple iPod, Sony PlayStation, wireless access points and more Instant stopping of computer worms or virus propagation Blocking of attacks on your servers or other network components Compliance for computers present on your network (software installed, particular configurations, etc.) PacketFence is an unobtrusive solution that works with equipment from many vendors (wired or wireless) such as Cisco, Nortel, Hewlett-Packard, Enterasys, Accton/Edge-corE, 3Com, D-Link, Intel, Dell...

Bhutan Government 's hacked with Blind Sqli Injection Hacked Site : bhutan.gov.bt

Bryantx.gov - City of Bryan Hacked and 175 emails/passwords Exposed By   Fr0664/FCA Hacker Expose  175 emails/passwords at  https://pastebin.com/weSMwxAi

Tor 0.2.2.25-alpha released - To Toggle, or not to Toggle & The End of Torbutton! Tor 0.2.2.25-alpha fixes many bugs: hidden service clients are more robust, routers no longer overreport their bandwidth, Win7 should crash a little less, and NEWNYM (as used by Vidalia's "new identity" button)now prevents hidden service-related activity from being linkable. It provides more information to Vidalia so you can see if your bridge is working. Also, 0.2.2.25-alpha revamps the Entry/Exit/ExcludeNodes and StrictNodes configuration options to make them more reliable, more understandable, and more regularly applied. If you use those options, please see the revised documentation for them in the manual page. TorButton Modifies to " To Toggle, or not to Toggle " : Read Here Download : https://www.torproject.org/download/download

Assange says Facebook is spying tool for US intelligence ! WikiLeaks editor-in-chief Julian Assange has branded Facebook an "appalling spying machine". According to Assange, whose WikiLeaks whistle-blowing site has propelled him into the media limelight, US intelligence services have direct access to records of Facebook users. "Facebook is the most appalling spying machine that's ever been invented," he said in an interview with Russia Today. "Here we have the world's most comprehensive database about people, their relationships, their addresses and locations, their communications with each other - all sitting within the United States and all accessible to US intelligence." Assange claimed that because of the costs involved each time an internet company was asked for access to specific data files, the big companies have built in back doors for officials to help themselves to whatever data they wanted. "Facebook, Google, Yahoo – all these major US organisations - hav...

0day Exploit Released : Adobe, HP, Sun, Microsoft Interix & many more Vendors FTP hackable ! Topic : Multiple Vendors libc/glob(3) resource exhaustion (+0day remote ftpd-anon) CVE : CVE-2010-2632 CWE : CWE-NOMAPPING SecurityRisk : Medium (About) Remote Exploit : Yes Local Exploit : Yes Victim interaction required : No Credit : Maksymilian Arciemowicz Affected Software (verified): - - OpenBSD 4.7 - - NetBSD 5.0.2 - - FreeBSD 7.3/8.1 - - Oracle Sun Solaris 10 - - GNU Libc (glibc) Affected Ftp Servers: - - ftp.openbsd.org (verified 02.07.2010: "connection refused" and ban) - - ftp.netbsd.org (verified 02.07.2010: "connection limit of 160 reached" and ban) - - ftp.freebsd.org - - ftp.adobe.com - - ftp.hp.com - - ftp.sun.com - - more more and more Affected Vendors (not verified): - - Apple - - Microsoft Interix - - HP - - more more more Exploit Download :  https://www.exploit-db.com/exploits/15215/

Netherlands-based Rabobank down under DDoS attack ! The internet and mobile banking services of Netherlands-based Rabobank were crippled by a distributed denial of service attack yesterday. The attack sent the banking services offline but did not affect Australian operations, according to the bank. "Currently many of our clients experienced [difficulty] when using internet banking," the bank wrote in a statement. A large range of network traffic [has] to do with an attack in the form of a DDOS." The perpetrators of the attacks were unknown, and the bank has not said if they were behind a seperate DDoS attack in Feburary. A Dutch anarchist group called the Conspiracy Cells of Fire claimed responsibility for the Feburary attacks in a communique but the Dutch domestic intelligence service AIVD said the claim was a hoax. The bank has issued an apology on its Dutch website and moved to assure customers that account information had not been compromised.

Google Hack DB Tool is a database tool with almost 8,000 entries. It allows administrators the ability to check their site for vulnerabilities based on data stored in Google. With this tool you can find out if your website has indexed vulnerabilities in google. This can lead to sensitive information disclosure. This way you can find out what google knows about you. 7974 entries (Including 4203 for SQL Injection) So be sure to scan your IP addresses frequently and eliminate all vulnerabilities. Features of the Google Hack DB Tool: Find information disclosure. Find sensitive files. Find sensitive directories. Find vulnerable software. Find personal information. Download Google Hack Database Tool v1.1 here

Hack your Sony PSP : ISO Tool v1.975 Released ! So I don't know if you're familiar with the latest version of Takka's ISO Tool or not, but I just downloaded it after reading about this "Fake NP data" feature. While I'm not 100% clear, mainly because of the poor Google Translation, it seems v1.975 can patch EBOOT.BIN game files, NPDRM'ing ISOs to appear as downloaded PSN content, letting you load 'em up … possibly without HEN or CFW? And that's what I'm not clear on. I've been playing with ISO Tool v1.975 on my PSPgo… I have a few legitimately purchased games from PSN installed; however, my PSP isn't "activated" (that's another story) and I can't activate it with PSN being down, thus I'm stuck with error 8010850F ("To use this content, you must activate the system."). But here is how it works anyway: Load up ISO Tool Press [Triangle] to bring up the SYS MENU Select "Make fake_np data File." Browse to and press [Cross] on a PSN-downloaded directory Select "Yes" to start the ...