The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

LulzSec's Leader Sabu can be at DefCon Security conference LulzSec's Leader Sabu can be at DefCon Security conference in Las Vegas these days. According to a Article on PCMag , Author note some Tweet chat Between "Sabu" and "th3j35t3r". The LulzSec leader Sabu claimed to have been available in DefCon via a tweet . " #DEFCON Come find me in the middle of the vendor room, directly opposite No Starch Press. Mention ANTISEC and get a free sticker. #fuckfeds ". On this  thejester (th3j35t3r) , claimed to be at DefCon as well and challenged Sabu to meet with him in public. Sabu Replied via tweeting : " @th3j35t3r Again, you're still trying to set me up with #feds. How about you MAN UP and meet me privately. I'm not going to jail for you. ". It's unconfirmed as yet whether Sabu was truly in attendance at DefCon. In one tweet , Sabu does refer to " two feds that came to the booth, " presumably the No Starch Press bo...

Lulzsec  Brazil  Leaks the Federal Police 8 GB of Data Lulzsec Hackers from Brazil Today leaks the huge 8Gb of Documents data of Federal Police on their website . The Data includes the various Documents and photographs related to Federal Office. This is another mass leak after ,  10GB data of law enforcement agencies leaked by #AntiSec Hackers yesterday.

Pakistani Matrimonial Website ' PakRishta ' defaced by Cyb3r R3b3li@nZ Pakistani Matrimonial Website ' PakRishta.com ' defaced by Hacker name " Cyb3r R3b3li@nZ " . Hacker said " This site is just hacked to inform the admin to remove the file uploading vulnerabilities in the profile picture uploading. This vulnerability allow the attacker to upload any malicious file on the server. " Mirror of hack :  https://zone-h.org/mirror/id/14581926 Submitted By: F@si Wolf

Italian Police website  SAPPE   defaced by #Antisec Hackers Anonymous Hackers deface the website of Italian Police ,  SAPPE - Independent Police Trade Union Prison  for Operation Antisec. Hackers dedicate there Hacks to Operation #FreeTopiary also. Hack is possibly Perform by  @LulzSecITALY  &  @anonitaly  . Hacker Leave a Pastebin Url on deface page , which contains a message by hackers. Complete message is :

10GB data of law enforcement agencies leaked by #AntiSec AntiSec , Lulzsec and Anonymous Hackers once again leak a huge data of 10GB at  https://vv7pabmmyr2vnflf.tor2web.org/  , hacked from 70 law enforcement agencies. The leak contain hundreds of compromising email spools, personal information about officers, police training videos, and the contents of insecure anonymous tip systems. Also Over 300 mail accounts from 56 law enforcement domains. Missouri Sheriff account dump (mosheriffs.com)7000+ usernames, passwords, home addresses, phones and SSNs. Online Police Training Academy filesPDFs, videos, HTML . Plesk plaintext server passwords (ftp/ssh, email, cpanel, protected dirs).files. "Report a Crime" snitch list compilation (60+ entries).  Stolen Credit Card information from mosheriffs.com online store also leaked on Pastebin . The Data is leaked on twitter via account @ioerror . Update : Video from Newsy . Multisource political news, world news, and en...

Pentagon launches " Cyber Fast Track " program to fund hacker innovation Peiter Zatko, a hacker known as Mudge who is now at the Defense Advanced Research Projects Agency, said he joined the Pentagon's research arm to try and build bridges between the government's cybersecurity needs and hackers working on innovative projects. DARPA has launched the "Cyber Fast Track" program, intended to cut red tape for hackers to apply for funding for projects that would help the Defense Department secure computer networks. The Defense Advanced Research Projects Agency (DARPA) is an agency of the United States Department of Defense responsible for the development of new technology for use by the military. DARPA has been responsible for funding the development of many technologies which have had a major effect on the world, including computer networking, as well as NLS, which was both the first hypertext system, and an important precursor to the contemporary ubiquitou...

SIG Sauer - Security Intelligence Group Hacked by LulzaMac Nothing is Secure on Internet Now.  SIGARMS Academy website Hacked by hacker " LulzaMac ". SIGARMS Academy is committed to providing safe, responsible and accurate firearms training and courses which are nationally and internationally recognized for law enforcement, military, and the private security industry.  Hacker Expose the Usernames, Password and Email of Users and Admin via Pastebin link as shown below. Hacker Promise to leak huge database from  https://www.freeappaday.com/  soon.

Forbes.com Vulnerable to XSS injection One of the Leading News Company Forbes is Vulnerable. Hacker with name " B1uB3rry " expose that Forbes.com is vulnerable to possible SQL injection but confirmed to be vulnerable to Cross Site Script Injection (XSS) & HTML Injection. According to hacker " One can easily deface the website as other vulnerabilities exist. "  Live Example of XSS injection on Forbes  . Hacker is Admin of  B1uB3rry Security Team (San Antonio, TX). Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications that enables attackers to inject client-side script into web pages viewed by other users. UPDATE: Another XSS on Subdomain of Forbes . This Vulnerability also exposed by a hacker on Twitter .

BlackBuntu V0.3 Released For Blackbuntu 0.3 we are supporting both x86 and x86_64 architectures.Security and Penetration Testing tools available in Blackbuntu : Information Gathering Network Mapping Vulnerability Identification Penetration Privilege Escalation Maintaining Access Radio Network Analysis VoIP Analysis Digital Forensic Reverse Engineering Miscellanious You can download the Blackbuntu Community Edition 0.3 ISO DVD with the following link: ISO Image(Torrent) Blackbuntu Community Edition 0.3 x86 torrent Blackbuntu Community Edition 0.3 x86_64 torrent VMWARE (Torrent) Blackbuntu Community Edition 0.3 x86 torrent Blackbuntu Community Edition 0.3 x86_64 torrent Virtual Box Image(Torrent) Blackbuntu Community Edition 0.3 x86 torrent Blackbuntu Community Edition 0.3 x86_64 torrent

Customs Authority of Yemen hacked for Protest against Government  Today a Yemen Hacker " Alexploiter " Deface the Website of Customs Authority of Yemen , to show his Protest against Government. Hacker claim that" Well this week i hacked .gov.ye (Yemens govs sites) for now i am controlling the DB of the customs authority of Yemen and there is many more .gov.ye going down soon , reason is that the situation in Yemen now getting worse and worse , and we cant keep watching our bad gov killing the the people in theremore .gov.ye site is going down soon ".

#Blackhat Conference : Square Mobile Gadget allows to Hack Credit Cards Researchers at the Black Hat security conference today revealed two ways the Square payment system , which turns any iPhone, iPad or Android into a point-of-sale credit card processor, could be used for fraud.  Square a mobile gadget that enables Android, iPhone, iPad, and iPod touch users to accept credit card payments  can be hacked to steal credit card data, with very little technical hardware required. Adam Laurie and Zac Franken, directors of Aperture Labs, discovered that due to a lack of encryption in the current Square app and free dongle for swiping cards, the mobile payment system can be used to steal credit card information, without even having the physical credit card.Square works by converting credit card data into an audio file that is then transmitted to the credit card issuer for authorization. "The dongle is a skimmer. It turns any iPhone into a skimmer," Laurie said. To clone a ca...

c0c0n 2011 (Hacking and Security Conference) - Call for Papers Announcing c0c0n 2011 - Oct 7-8 Cochin , India c0c0n is an annual event conducted as part of the International Information Security Day. The Information Security Research Association along with Matriux Security Community is organizing a two day International Security and Hacking Conference titled c0c0n 2011, as part of Information Security Day 2011. Various technical, non-technical, legal and community events are organized as part of the program. c0c0n 2011 is scheduled on 07 and 08 Oct 2011.The number of digital security incidents and cyber crimes are increasing daily on a proportionate rate. The industry is demanding more and more security professionals and controls to curb this never ending threat to information systems. c0c0n is aimed at providing a platform to discuss, showcase, educate, understand and spread awareness on the latest trends in information, cyber and hi-tech crimes. It also aims to provide a hand-s...

Get Ready for Microsoft 13 updates for August Patch Tuesday Microsoft has announced that it will release 13 bulletins to address 22 vulnerabilities in Windows, Office, Internet Explorer, .NET and Visual Studio on its next Patch Tuesday. Another "critical" bulletin affects Windows server operating systems, and addresses a code-execution risk on unpatched systems. Also of note is an update restricted to newer versions of Windows (Windows 7 and Windows 2008) that tackles a potential, though difficult to exploit, code-execution risk. Scheduled for release next Tuesday 9th August. Wolfgang Kandek, CTO of Qualys, commented that the update will have patches for end-users, server administrators, office users and software developers. He said: " Top priority should be given to a critical bulletin that affects Internet Explorer 6 through 9 on Windows 7, XP, Vista, 2003 and 2008. If left unpatched, attackers could use this vulnerability to remotely take control of victims' sys...