The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

Double nibble URI decoding XSS Vulnerability on   EC Council website What EC Council is ? They offers certifications in certified ethical hacker ceh, Computer Security, network security, internet security program and computer forensics and penetration testing. Information Security, Ethical Hacking, Computer Forensics, Advanced Penetration Testing, Application Security, Disaster Recovery and other critical Information Security Topics and Security Courses. XSS POC : Link : Click Here Submitted By :  Nulled Byte

2000 Websites defaced by The 077 ( Hamdi HAcKer ) Tunisian HaCker 17 Years old The 077 ( Hamdi HAcKer ) from Tunisia strike again to 2000 websites with mass defacement. List/Mirror of hacked sites are here :  https://www.zone-h.com/archive/notifier=The%20077   (Use proxy to open link, if your are not able to open it directly)

Operations AntiSec : Anonymous takes down Tunisian government site As LulzSec calling it quits, but the hacking via Operations AntiSec continues. Hacker group Anonymous claimed responsibility of taking down Tunisian government's official website moments ago.The seized domain now displays text posted by Anonymous, along with a masked image that signifies the hacker collective as shown. Anonymous said " The internet is the last frontier and we will not let corrupt governments spoil it.We are Anonymous, We are LulzSec, We are People from around the world who are stepping in the name of freedom. " Tunisian government blocks social networking sites Facebook and YouTube. Several other sites filtered which include, porn sites, gay and lesbian sites, dating sites etc.

ThePiratebay removes  50 Days Of Lulz Yesterday Hacker group LulzSec has announced that after 50 days of hacking companies and organizations, it is finally done. The group confirmed its retirement . With this they also Released a Torrent file : https://thepiratebay.org/torrent/6495523/50_Days_of_Lulz Thepiratebay just deleted the lulzsec torrent " 50 days of lulz " , reason theres some virus in it. Check Virus Details here . Thepiratebay does not allow files that are mislabeled, or contain virus/trojan's, or child pornography. Being as how this torrent was extremely popular, it may have infected 100's of thousands of people already. Lulzsec's account on thepiratebay was not banned so they are cleared to upload the same torrent again without the alleged "trojan". @AnonymousIRC said, " We will see to get a clean torrent up ASAP. #AntiSec " . We do have to wonder, what happens now ? Does the Internet go back to normal with websites ...

Toggle.com [ forum & blog ] hacked by   CYB-IMP [ Cyber Impossibilities ] One of the biggest Software download website  Toggle.com with world rank 10,000 got hacked by a new hackers group called CYB-IMP [ Cyber Impossibilities ]  . They Deface   forum.toggle.com and blog.toggle.com  as shown (Mirrors of hack given below) The groups members are : L0ckreader'z the one who done the most of work & other are : masterSELL ; Oldfacce ; PretoriaN. ; Snnuzz  This Hack was done by 16 P.M. Today and this was as a presentation of new group CYB-IMP ,in the deface page there is shown the Albanian flag so they represented themselves as ALBANIANS . Hackers also leak the database and Server Info on Pastie : //// ### FORUM & BLOG TOGGLE.COM OWNED ### \\\\ blog.toggle.com db : define('DB_NAME', 'blogtog_wordpress'); /** Tu nombre de usuario de MySQL */ define('DB_USER', 'blogtog_blogtog'); /** Tu contraseГѓВ±a de MySQL */ defin...

Lulzsec Exposed, Long Live Anonymous ! Lulz war ! Today Hacking group "Lulzsec" completed their 50th day and also announce the retirement of Lulz boat . What are the Reasons behind this ? Lulz Security's rise to prominence has been extraordinarily fast.The hacking group first emerged in May and in the past few weeks has attacked the websites of some of the world's leading corporations and governments. The group specialises in locating websites with poor security and then stealing information from them and posting it online via Twitter account, well They have 278,429 Followers]in 50days. To understand who/what lulzsec is, you need to understand where they came from. Everything originates from the chan (4chan/711chan/etc.) culture. It's a culture built around the anonymity of the internet. If your anonymous no one can find you. No one can hurt you, so your invincable. According to Anonymous " The problem with Lulzsec is that they lack the skills to kee...

50 Days of Lulz - LulzSec Says Goodbye & Operation AntiSec will Continue Hacker group LulzSec has announced that after 50 days of hacking companies and organizations, it is finally done. LulzSec tweet a message which was posted on Pastebin : https://pastebin.com/1znEGmHa The group confirmed its retirement on the LulzSec Twitter feed , which managed to amass 277,540 followers during its short stint online. " For the past 50 days we've been disrupting and exposing corporations, governments, often the general population itself, and quite possibly everything in between, just because we could ," writes LulzSec. " All to selflessly entertain others – vanity, fame, recognition, all of these things are shadowed by our desire for that which we all love. The raw, uninterrupted, chaotic thrill of entertainment and anarchy. " The group was also behind attacks on Sony, attacks on PBS, the US Senate, the CIA, and a slew of gaming sites popular with 4Chan users including EVE Online, M...

Wikileaks - We help you safely Get the Truth ! Note : The Article is Taken from "The Hacker News Magazine" - June Edition. Download Magazine here .. The United States Department of Justice has left no stone unturned in their ruthless attempts to uncover or fabricate evidence against Wikileaks founder Julian Assange. Their goal is to charge Assange with conspiracy to commit espionage. If the United States is successful Julian Assange will become the United States convenient scapegoat, along with others like US citizen and Army Pvt. Bradley Manning. These two will disproportionately take the blame for the United States failed policies and crimes.  Julian Assange has said that the long and cruel detention and forthcoming US government prosecution of Army Pvt. Bradley Manning is nothing more than an attempt to "terrorize whistle-blowers" and that Pvt. Manning like himself is a victim of alleged government repression and mistreatment. "There is no doubt t...

NATO Reports Data Breach to One of Its Websites The North Atlantic Treaty Organization (NATO) has just issued a short statement that reads as follows: " Police dealing with digital crimes have notified NATO of a probable data breach from a NATO-related website operated by an external company. NATO's e-Bookshop is a separate service for the public for the release of NATO information and does not contain any classified data. Access to the site has been blocked and subscribers have been notified. " It's unclear whether Anonymous is behind this attack against NATO's e-Bookshop or LulzSec did this for "Operation Anti-Security" . Stay Tuned for Updates .

TeaMp0isoN leak Former British PM Tony Blair Data Twitter Become the best place for Hackers to Leak data now and the best part is that , Twitter will never block you for such actions. After Lulzsec, Anonymous .. now Pakistani Hackers Group "TeaMp0isoN" is back with some New leaks. Last time they claim to deface the website of one Lulzsec team member . This time TeaMp0isoN leak data of Former British PM Tony Blair via there Twitter account. The Leak is done via pastebin post , which includes personal information on former British Prime Minister Tony Blair, including the contents of his electronic address book, with contact data for members of Parliament and for what could be Blair's dentist and his mechanic. TeaMp0isoN also tweet that " Tony Blair is a war criminal, he should be locked up. "  The contact list appears to be from when Blair was prime minister and includes a phone number for 10 Downing Street.  According to Hackers " THE INFORMA...

PBS (Public Broadcasting Service) & Writerspace Hacked Again by Warv0x (AKA Kaihoe) Yes ! Its True that  PBS (Public Broadcasting Service) Hacked once again .Last time, A month before Public Broadcasting Service (PBS) Hacked by Lulzsec and Users data ,Database was Leaked and then Lulzsec claim that PSB.org was hacked with 0day exploit for MoveableType . This time  Warv0x (AKA Kaihoe) expose the whole Database of  PBS.org  using SQL injection. According to Warv0x (AKA Kaihoe) " This wasn't done for fame or fun,just proving LulzSec aren't as goodas they think they are. I haven't rooted the box or been up to crack the hashes, I'm just proving that most of their attacks are very lame and basic (i'm pretty sure and automated) SQL injections and further privilege escalation, which is just matter of time. " He also said " Support for WebNinjas & Jester, good job at exposing them.Sad to mention, but I really agree with th3j35t3r & WebNin...

IBGE Hacked by FIREH4CK3R FIREH4CK3R hacker today deface IBGE ( https://www.ibge.gov.br/home/ ) website . Message By Hacker : This month, the government will experience the largest number of virtual nature of attacks in its history made ​​by Shell Fail. You see such attacks as a protest of a nationalist group that wants to make Brazil a better country.Be proud of being Brazilian, love your country, just so we can grow and evolve! Attacked by FIREH4CK3R. Brazil, a country of all! * There is no space for groups or ideology as LulzSec Anonymous in Brazil *

Black and Berg Cybersecurity Consulting Hacked in support of Operation Antisec Black and Berg Cybersecurity Consulting  ( https://www.blackbergsecurity.us/ )  website got hacked by some " handbanana " with email " antisec@gmx.com " . He make a Lots of Details public via a pastebin post. Black and Berg website is on Wordpress 3.1.3 and hacker use some Remote exploit to get into this.  Server Kernel Info :   Linux monkian 2.6.32.8-grsec-2.1.14-modsign-xeon-64 #2 SMP Sat Mar 13 00:42:43 PST 2010 x86_64 GNU/Linux  Directory List : Database Configuration : Username , Password Message by Hacker " Done in the name of #AntiSecGreetz to LulzSec, zf0, Topiary, and jericho ".