The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

XSS attack on CIA (Central Itelligence Agency) Website by lionaneesh After Ddos attack on CIA (Central Itelligence Agency) website by Lulzsec, lionaneesh , an Indian hacker have found XSS Vulnerability on same site as shown. The Vulnerabile link is here  . You can join Loinaneesh on Twitter . 

LulzSec Leaks 62,000 Email/Passwords of writerspace.com LulzSec Leaks 62,000 Email/Password Combo Internet Goodie Bag. Lulz hasn't said where they got the data, Even they are not sure that, these logins are from which site. They tweet the download link as shown :  https://www.mediafire.com/?9em5xp7r0rd2yod According to  Mikko H. Hypponen ,CRO of F-secure - " The list of 62,000 emails/passwords just released by @LulzSec is probably the user database of writerspace.com. " He also give Reason that " Why writerspace.com? Well, the most common passwords include these: mystery, bookworm, reader, romance, library, booklover and..writerspace.So basically that's why I believe the latest Lulzsec password leak originates from writerspace.com. I'm guessing it's their user database "

Anonymous Hackers hit 50 Malaysian government websites Malaysia has been hit by a wave of attacks after the " Anonymous " hacker group accused the government of Internet censorship. More than 50 government websites were hit and 41 of them were closed The Malaysian Communications and Multimedia Commission (MCMC) said in a statement the attacks on websites with the .gov.my domain started shortly before midnight Wednesday and lasted several hours. Little damage was caused and these were denial of service attacks. Apparently most of the websites have already recovered. Anonymous warned on a website that it would target the government portal www.Malaysia.gov.my on Wednesday. It was still down this morning. It is interesting that it has just woken up to this problem. Malaysia's media operate under strict censorship laws. Until now websites have remained relatively free, due to an official pledge not to censor the Internet in a bit to get foreign cash into the countr...

PayPal vulnerability : Hack any Paypal account within 30 seconds UPDATE :  This has been debunked, Paypal accounts are safe.  https://thenextweb.com  have spoken in depth to Matt Langley, the person who discovered the supposed issue, and it's clear why he assumed there was a serious security breach but the issue is far less serious than initially thought. Matt Langley explains: " It seems that the 'victim' had opened an account using an email address of mine, with extra characters thrown in, which Gmail ignores and accepts as the same email address, so it was gmail which uncorrupted the email address and sent the emails to me, not Paypal. I had previously reported an account set-up with fraudulent email address to Paypal many times in the past, but only yesterday noticed that the email address was different to mine, in a way which on any other email system in the world would be a different email address. " OLD : A security vulnerability in PayPal's ...

This utility provides a Web interface for remote operation c operating system and its service / daemon. Opportunity Description / features: Authorization for cookies Server Information File manager (copy, rename, move, delete, chmod, touch, creating files and folders) View, hexview, editing, downloading, uploading files Working with zip archives (packing, unpacking) + compression tar.gz Console SQL Manager (MySql, PostgreSql) Execute PHP code Working with Strings + hash search online databases Bindport and back-Connect (Perl) Bruteforce FTP, MySQL, PgSQL Search files, search text in files Support for * nix-like and Windows systems Antipoiskovik (check User-Agent, if a search engine then returns 404 error) You can use AJAX Small size. The boxed version is 22.8 Kb Choice of encoding, which employs a shell. Changelog (v2.5.1): Remove comments from the first line . Added option to dump certain columns of tables. the size of large files are now well defin...

LulzSec take down CIA Website The hacker group Lulz Security has claimed it has brought down the public-facing website of the US Central Intelligence Agency. Infamous for a series of high-profile hacks on Sony, Nintendo, the PBS, FBI affiliates, LulzSec claimed on Wednesday its responsibility for hacking the website for the U.S. Central Intelligence Agency. " Tango Down - cia.gov - for the lulz ," the group tweeted at around 6 p.m., June 15 at  https://twitter.com/#!/LulzSec/status/81115804636155906 Over the weekend, a portion of the Senate website was hacked, and the same website was targeted again on Wednesday. LulzSec was unable to access proprietary data due to a firewall, the Senate acknowledged today. The hacker group tweeted an hour ago, "Lulz Security, where the entertainment is always at your expense, whether you realize it or not. Wrecking your infrastructures since 2011." Its Twitter followers have swelled to nearly 160,000. A CIA spokeswom...

Interview with Team Inj3ct0r ( 1337day ) Inj3ct0r provides useful information to people who perform penetration testing, IDS signature development, and exploit research. This project was created to provide information on exploit techniques and to create a useful resource for exploit developers and security professionals. The tools and information on this site are provided for legal security research and testing purposes only. The project does not belong to the Turkish, American, Russian, Chinese, Ukrainian etc hackers. THN : What is injector Team doing these days , what plans are there about forum and how these things will help beginners ? Inj3ct0r : inj3ct0r is not an institute for beginners.  Forums and all are coming, look out for news alerts. THN : Most of the time we hear that the Injector admin belongs to Pakistan , is it true ? Inj3ct0r : They may be and they may not be from that country.   One of admin says –" Patriotism is the last refuge of a scoundrel." ...

Lulzsec Hackers Break Into U.S. Senate Computers The loosely organized hacker group Lulz Security broke into a public portion of the Senate website but did not reach behind a firewall into a more sensitive portion of the network, Martina Bradford, the deputy Senate sergeant at arms.Lulz announced the hack on Monday. Lulz Security, who have hacked into Sony's website and the U.S. Public Broadcasting System, posted online a list of files that appear not to be sensitive but indicate the hackers had been into the Senate's computer network. " We don't like the US government very much, " Lulz Security said at the top of their release. " This is a small, just-for-kicks release of some internal data from Senate.gov - is this an act of war, gentlemen? Problem? " The Senate has been the frequent target of hacking attacks, with tens of thousands thwarted each month, Senate Sergeant at Arms Terrance Gainer told Reuters in early June. Still, the break-in is ...

60 websites defaced by SbZ-GHoST TeaM against Denmark ,USA & Israel SbZ-GHoST TeaM hack almost 60 website with a message on deface page " This Hack iS To DeFend Islam That Has Been Harrased by Denmark and USA and Israel " .  Hacked sites list at  https://pastebin.com/tPDjektH

Video Presentation on Stuxnet by Hungry Beast In June last year, a computer virus called Stuxnet was discovered lurking in the data banks of power plants, traffic control systems and factories around the world. Pandora's box has been opened; on the new battlefield the aggressors are anonymous, the shots are fired without starting wars and the foot soldiers can pull their triggers without leaving their desks. Last week the United States government announced they would retaliate to a cyber-attack with conventional force. The threat is real, and the age in which a computer bug could cost lives has begun.

Turkey police arrests 32 Anonymous hackers for DDOS attack Turkey have detained 32 more suspects that the authorities believe are linked to Anonymous. The Turkish state-run news agency reports that the suspect were taken into custody by police after raids in dozens of cities it's not clear how the police linked the 32 people to the hacker group. The arrests in Turkey came after the hacker group targeted the Turkish websites of the prime minister's office and parliament in what the group called a protest against the plans of the Turkish government to place filters on the internet. Anonymous also issued a statement that said, "Regardless of how many times you are told, you refuse to understand. There are no leaders of Anonymous. Anonymous is not based on personal distinction," the group posted in a statement. "You have not detained three participants of Anonymous. We have no members and we are not a group of any kind. You have, however, detained three civilians expressing themselv...

26,000 Porn websites passwords exposed by LulzSec LulzSec hacking group has published login passwords for almost 26,000 users of an x-rated porn website via there Twitter Account. LulzSec drew particular attention to various government and military email addresses (.mil and .gov) that appeared to have accounts with the porn website . Read More at NakedSecurity