-->
#1 Trusted Cybersecurity News Platform
Followed by 5.70+ million
The Hacker News Logo
Get the Latest News
cybersecurity

The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

White House Cyber-Security Strategy Could Guard Health Care Payments !

White House Cyber-Security Strategy Could Guard Health Care Payments !

May 10, 2011
The National Strategy for Trusted Identities in Cyberspace aims to help consumers pay for services such as health care more securely and avoid identity theft. Recent guidelines issued by the White House on cyber-security could provide an impetus for secure online bill paying in health care, according to health care industry experts. The National Strategy for Trusted Identities in Cyberspace presented by the White House provides direction on how to protect consumers and businesses from identity theft and fraud in online transactions by creating an identity ecosystem. Under the ecosystem strategy, consumers would maintain their anonymity during transactions by providing one piece of information, such as age, but not name, address, birth date or other information. "The rapid and vastly positive changes that have followed the rise of online transactions—like making purchases or downloading bank statements—have also led to new challenges," President Obama wrote in the str...
BackTrack 5 Released - Direct FTP Download Now !

BackTrack 5 Released - Direct FTP Download Now !

May 10, 2011
BackTrack 5 Released – Penetration Testing Distribution, Download Now ! Download : http://www.backtrack-linux.org/downloads/ Direct Links from FTP :  http://mirrors.rit.edu/backtrack/
Anonymous IRC hacker, Ryan Cleary Exposed !

Anonymous IRC hacker, Ryan Cleary Exposed !

May 10, 2011
Anonymous IRC hacker, Ryan Cleary  Exposed ! The ‘Anonymous’ collective named Ryan Cleary as the person responsible for breaching two of its own sites. The 18-year-old was accused of trying to bring down message boards used by Anonymous members to communicate with each other. Read Here ‘ We regret to inform you today that our network has been compromised by a former IRC-operator and fellow helper named “Ryan” ,’ a post on its AnonOps site said. ‘He decided that he didn’t like the leaderless command structure that AnonOps network admins use. So he organised a coup d’etat.’ Mr Cleary was accused of stealing passwords and targeting the network servers used to keep Anonymous’s websites running. ‘ This is not a joke, this isn’t a lie, this is the truth and we are sorry for that, ’ the post added. A later update showed a screenshot of a ‘ revenge attack ’ that gave the alleged culprit’s full name, address and phone numbers. Anonymous is still under attack. Going to Ano...
cyber security

The Systems That Power America Are Under Threat. Is Your ICS/OT Program Ready?

websiteSANS InstituteCritical infrastructure / Webinar
Discover where federal ICS programs are most exposed and what closing the skills gap requires in practice.
cyber security

Inside Device Code Phishing: Live Demos, Real Kits, and What's Next

websitePush SecurityPhishing Attack / Webinar
Device code attacks are up 37x this year, with 18+ kits in the wild. Now available on-demand.
Complete ZeuS source code has been leaked !

Complete ZeuS source code has been leaked !

May 10, 2011
Complete ZeuS source code has been leaked On the 23rd of March 2011 we posted a blog about the source code for the infamous crime kit ZeuS (Wsnpoem/Zbot) being sold on at least two dark market forums (see: http://www.csis.dk/en/csis/blog/3176/). This weekend we found the complete source code for this crime kit being leaked to the masses on several underground forums as well as through other channels. We already collected several addresses from where it is being distributed in a compressed zip archive. We even compiled it in our lab and it works like a charm. When unzipped it looks like this: We can hereby confirm that the complete ZeuS/Zbot source code is freely available for inspection, inspiration or perhaps to be compiled and used in future attacks. ZeuS/Zbot is already considered as being amongst the most pervasive banking Trojan in the global threat landscape. It is an advanced crime kit and very configurable. With the release and leakage of the source code the ZeuS/Zbot co...
Channel [V] INDIA website HacKeD By MaDnI ( Pak Cyber Army )

Channel [V] INDIA website HacKeD By MaDnI ( Pak Cyber Army )

May 10, 2011
Channel [V] INDIA website HacKeD By MaDnI ( Pak Cyber Army ) Hacked Site : http://www.channelv.in/forum/ Mirror : http://www.zone-h.com/mirror/id/13675949
You got owned, Exposure about privacy on facebook !

You got owned, Exposure about privacy on facebook !

May 10, 2011
You got owned, Exposure about privacy on facebook ! If you had any doubts regarding privacy on facebook, here is a list containing hundreds of user and password, how can this be ? Easy, any application that asks for permission can get your credentials! And then do not say that we had not warned :P WikiLeaks founder Julian Assange says Facebook is Spying on You and Your Loved Ones “Here we have the world's most comprehensive database about people, their relationships, their names, their addresses, their locations and the communications with each other, their relatives, all sitting within the United States, all accessible to U.S. intelligence.” Read More News Regarding Facebook on THN : Assange says Facebook is spying tool for US intelligence ! A Syrian Man-In-The-Middle Attack against Facebook Facebook is not Exclusion, XML Vulnerability ! Truth About Facebook -  CIA, U.S. government - Everything Related ! Vulnerability in Facebook Email feature Exposed ! Face...
Linux kernel 2.6.38.6 ( stable) has been released !

Linux kernel 2.6.38.6 ( stable) has been released !

May 10, 2011
Linux kernel 2.6.38.6 ( stable) has been released ! The latest -Stable kernel has been raised again after Greg released a new version : 2.6.38.6. This is a maintenance update, so no new feature are included, only bug fixes and minor changes. Even though Greg urges users to upgrade to this version, it's wiser to look at the  ChangeLog  to decide whether you really need to upgrade to this version or not. Personally, i don't really see any important updates in this release, so if you have no problem with your current kernel (2.6.38.x series), you can stay with it until 2.6.39 comes up in probably a week or two. Download :  http://www.kernel.org/
Rajasthan State marketing site infected with malicious code

Rajasthan State marketing site infected with malicious code

May 10, 2011
India’s Rajasthan State Co-operative Marketing Federation Ltd (http://rajfed.gov.in/) has been infected with a malicious script tag. This government site promotes the objectives of procuring agricultural produce from farmers through the member societies on support prices declared by the Govt. of India. Here is the home page of this site: The malicious script has been injected at the bottom of this page. Here is the screenshot of source page, Below, you can see a decoded version of the script using Malzilla. ( http://malzilla.sourceforge.net/ ) The decoded script tag leads to JavaScript from “ hxxp://cs.cskick.cn/cs/sc.js ”. Currently, this malicious site is down. A quick Google search for this domain shows that it has been involved with malicious activity in the past. Trend Micro has issued a report for a separate threat hosted at that same domain. Submitted by :  Umesh
Sony 3rd massive leak - 100 million users personal info hacked in Japan !

Sony 3rd massive leak - 100 million users personal info hacked in Japan !

May 10, 2011
Sony 3rd massive leak - 100 million user's personal info hacked in Japan ! Personal information on a total of 100 million people has possibly been hacked and leaked from online game and other Internet services provided by the Sony Group worldwide, sparking fears that it could develop into the worst information leakage case ever. Sony has been under fire for being slow to announce the incident. It is essential for the electronics and entertainment giant to clarify the whole picture of the damage as quickly as possible and gather itself together to follow up the case in order to recover consumers' confidence. According to the revelation, personal information including the names, IDs and passwords of about 77 million people in some 60 countries -- mainly in North America -- was hacked and leaked from Sony's Internet services that provide game software for PlayStation 3 and other game consoles and distribute movies and music for TV viewers. Furthermore, private inform...
SkidHacker.com, Underground-Hacking.Net & IndoCoder.or.id Hacked by Shadow008 (PakCyberArmy)

SkidHacker.com, Underground-Hacking.Net & IndoCoder.or.id Hacked by Shadow008 (PakCyberArmy)

May 10, 2011
SkidHacker.com , Underground-Hacking.Net & IndoCoder.or.id Hacked by Shadow008 (PakCyberArmy) Sites Hacked: Forum: http://www.indocoder.or.id/community/ Blog: http://www.indocoder.or.id/journal/ Mirror: Forum: http://www.k0-ka.in/attack/?id=1498 Blog: http://zone-h.com/mirror/id/13632754 ___________________________________________________ Sites Hacked: http://underground-hacking.net/ Mirror: http://zone-h.com/mirror/id/13667406 ___________________________________________________ Sites Hacked: http://www.skidhacker.com/ Mirror: http://zone-h.com/mirror/id/13668102
Cbseguess.com 4243 users data compromised !

Cbseguess.com 4243 users data compromised !

May 10, 2011
Cbseguess.com   4243  users data compromised ! http://cbseguess.com/ Hacked By Indian Hacker 'Akash Jain', and almost 4243 users data Compromised .
Samsung Data Management Server with Sql Injection Login Bypass vulnerability

Samsung Data Management Server with Sql Injection Login Bypass vulnerability

May 10, 2011
Samsung Data Management Server with Sql Injection Login Bypass vulnerability Here we have one more example of human stupidity. Samsung Data Management Server with Sql Injection Login Bypass vulnerability . Anyone can easy hack into admin panel of server... here a screen shot of admin panel : Sorry ! We can't Disclose the location/URL of Panel just because of security reasons. But Samsung should fix this as soon as possible !
French security firm VUPEN Say New Bugs Can Bypass Google Chrome Sandbox !

French security firm VUPEN Say New Bugs Can Bypass Google Chrome Sandbox !

May 10, 2011
French security firm VUPEN Say New Bugs Can Bypass Google Chrome Sandbox ! Researchers at the French security firm VUPEN say that they have discovered several new vulnerabilities in Google Chrome that enable them to bypass the browser's sandbox, as well as ASLR and DEP and run arbitrary code on a vulnerable machine. The company said that they are not going to disclose the details of the bugs right now, but that they have shared information on them with some of their government customers through its customer program. The vulnerabilities are present in the latest version of Chrome running on Windows 7, VUPEN said. VUPEN published a video (  http://www.vupen.com/demos / ) that demonstrates an attack that exploits the Chrome vulnerabilities, although there is no further clues about the bugs themselves. "The exploit shown in this video is one of the most sophisticated codes we have seen and created so far as it bypasses all security features including ASLR/DEP/Sandbox, it...
⚡ Top Stories This Week
Expert Insights Articles Videos
Cybersecurity Resources