The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

IBGE Hacked by FIREH4CK3R FIREH4CK3R hacker today deface IBGE ( http://www.ibge.gov.br/home/ ) website . Message By Hacker : This month, the government will experience the largest number of virtual nature of attacks in its history made ​​by Shell Fail. You see such attacks as a protest of a nationalist group that wants to make Brazil a better country.Be proud of being Brazilian, love your country, just so we can grow and evolve! Attacked by FIREH4CK3R. Brazil, a country of all! * There is no space for groups or ideology as LulzSec Anonymous in Brazil *

Black and Berg Cybersecurity Consulting Hacked in support of Operation Antisec Black and Berg Cybersecurity Consulting  ( http://www.blackbergsecurity.us/ )  website got hacked by some " handbanana " with email " antisec@gmx.com " . He make a Lots of Details public via a pastebin post. Black and Berg website is on Wordpress 3.1.3 and hacker use some Remote exploit to get into this.  Server Kernel Info :   Linux monkian 2.6.32.8-grsec-2.1.14-modsign-xeon-64 #2 SMP Sat Mar 13 00:42:43 PST 2010 x86_64 GNU/Linux  Directory List : Database Configuration : Username , Password Message by Hacker " Done in the name of #AntiSecGreetz to LulzSec, zf0, Topiary, and jericho ".

Th3J35t3r (The Jester) claim to expose identities of LulzSec Leader "Sabu" Th3J35t3r (The Jester) Just now Tweet " www.lulzsecurity.com - TANGO DOWN - 'this is General Hummel, from Alcatraz, Out' - http://t.co/oNm29Pv for the lulz. ". He doing ddos attack on Lulzsec website " www.lulzsecurity.com". and also he release a pastebin post, that includes some exposure about the Lulzsec leader "sabu". Some of the exposed info is: Name(s): Xavier Kaotico, Xavier de Leon Email: sabu@pure-elite.org, xavier@pure-elite.org, xavier@sentinix.org, xavier@tigerteam.se Age: 30 as of 2011-06-21 Location: Possibly New York City, NY (has lived there) Websites: sabu.net, pure-elite.org, confinement.org Profession: Independent IT consultant Interests: Python programming, Linux, network security, exploit development There are lots of Dox Information he posted in the pastebin :  http://pastebin.com/76TsPHeU  . There is Server Info ...

150 United Kingdom (.co.uk) Domains Defaced by Bl@ckZero Hacked Sites List :  http://pastebin.com/tVVzXMbf Mirrors: Posted on Zone-h, Mirror.sec-t and Legend-h http://zone-h.org/archive/notifier=BL@CKZERO

JustHost Hosting Server Compromised, More than 1000's of websites at Risk ! JustHost.com Server Breached ! " Just host is one of the fast growing hosting industries with the good uptime reliability with the best support and it’s new to the world wide in the year 2008.Just host .com is one of the uppermost web hosting suppliers and are identified for their uptime reliability with the most superb support. "  Millions of websites Hosted on various JustHost Servers. One of them got Hacked by some hacker. Breached data become public from twitter account of " ContraHax " . This Hack is seems to be Dedicated to " Antisec operation " Started by Anonymous and Lulzsec. The exposed data includes : 1.) DNS file :  http://pastebin.com/bXLEw0TL 2.) Directories of Websites  3.) /etc/passwd Backup :  http://pastebin.com/M637rkJz We Have Inform JustHost admins, Stay Tuned for their Comments on This Security Breach.

LulzSec shuts down Brazilian government Websites LulzSec has targeted another major government site & to bring down several major targets in Brazil, including the Websites of the Brazilian government and the President's office. " Tango down ," LulzSec trumpeted on its Twitter feed – a phrase used to describe the obliteration of an enemy. Later, LulzSec followed that tweet up with a second: " Our Brazilian unit is making progress. Well done @LulzSecBrazil, brothers! " As of this morning, both Brazilian sites remain offline.

The Social-Engineer Toolkit v1.5 Released The Social Engineering Toolkit (SET) is a python-driven suite of custom tools which solely focuses on attacking the human element of penetration testing. It’s main purpose is to augment and simulate social-engineering attacks and allow the tester to effectively test how a targeted attack may succeed. Official change log: Added shell.py to support both Linux and OSX for the SET Interactive Shell, uses same code repository Added shell to support Linux/OSX for SET Interactive Shell Added download to support Linux/OSX for SET Interactive Shell Added upload to support Linux/OSX for SET Interactive Shell Added ps to support Linux/OSX for SET Interactive Shell Added kill to support Linux/OSX for SET Interative Shell Fixed a bug in mass mailer where TLS would execute after ehlo not before. Thanks pr1me Changed download path to replace forward and back slashes with a _ so it would not cause strange nix issues with back slashes and forward ...

101 Sites hacked By Swats the Toxified Crew 101 websites Hacked by  Swats The TOxified Crew members: Bluff Master Hacker Shashank Gupta the D3c0mpil3r Sonam The Grey Hat Hacker Steve Antony D4rkShell Maroof   Hacked Sites List :  http://pastebin.com/6GHhzuY1

Ani-Shell v1.2 - Email-Alerts , Mass Code injector New Features :- Trace-back (Email Alerts) PHP Evaluate Better Command Execution (even supports older version of PHP) Mass Code Injector (Appender and Over-writer) Lock Mode Customization Release Note : 1. Email Traceback is set to Off as default and emails will not be sent , If you are setting  this feature on make sure you change the default email address  (lionaneesh@gmail.com) to Your email  address , Please Change it before using. 2. Username and Passwords are set to lioanneesh and lionaneesh respectively , Please change them for better   security. 3. As a default Lock Mode is set to on! This should not be change unless you want your shell exposed. DOWNLOAD

DOLE website  vulnerable to hackers ! A hacker with Codename  " No.One "  release some vulnerability regarding DOLE via a pastebin post. We analyse it & Explaining the possible Security Breach.  Hackers Find a vulnerable site on  125.5.39.135   , which having two domains on it :   http://www.dole.gov.ph/   Official Website of the Department of Labor and Employment - Republic of Philippines . Is it vulnerable ?   Yes ! see :  http://www.dole.gov.ph/secondpage.php?id=2113'  . Its SQL injection . Now Hacker is able to get database from this site . For example the current database name is " dolews_4a351sd " and Hacker also may be able to upload to upload shell on server using this. This Attack may lead to rooting of  125.5.39.135 Server, Which also other sites. Hackers may be able to deface the site or can steal source code too.  This Report is submitted by " No.One " Hacker a...

New XSS Vulnerability found on Sony PlayStation by c7-elixir - The C7 Crew YES ! Sony is still Vulnerable to various bugs like XSS. Today a hacker  c7-elixir from The C7 Crew has expose new XSS attack on Sony PlayStation's Website as shown. Sony got hacked 20 times in last two months by number of hackers from all over world. One more REQUEST to Sony : FIX IT BOSS ! Vulnerable Link 

Lulzsec member blog hacked by TeaMp0isoN Personal Blog http://sven-slootweg.nl/ of one of the Lulzsec Member get defaced by TeaMp0isoN . Get more details about  TeaMp0isoN . BREAKING NEWS: TEH LULZBOAT HAS OFFICALY SANK WITH 100S OF ANON MEMBERS ON BOARD!No matter how many bots you gather, no matter how much people you lie to, no matter how much pre-made tools you use, you will _NEVER_ represent the real hacking scene, we warned you, we told you we do not make empty threats, we gave u 48hrs to secure your ircs yet u failed to do so, instead u posted hashes from public forums and then claimed you doxed us and laughed at the fact that i was 17years old. stop telling yourself that u are hackers, putting a ip into a irc is NOT hacking nor is using pre-made tools and scripts to grab databases… you do not represent the anti-sec movement, u are not allowed to greet underground groups like zf0, ab, h0n0, el8 like your member “AnonSabu” was doing, you will never be apart of the un...