The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

Today guy from InSecurity.Ro  named  sway1990  found again a critical vulnerability (MySQL Injection) in their website. Some extracted informations : Version – ( 5.1.41-3ubuntu12.10 ) Main DB – ( c1eset ) HostName – ( web.axelsoft.ro ) User – ( c1eset@localhost ) DataBases : information_schema c1eset Tables of main db : concurs country eventsro joom_banner joom_bannerclient joom_bannertrack joom_categories joom_components joom_contact_details joom_content … joom_core_log_searches joom_groups, joom_jce_extensions joom_jce_groups … joom_users joom_weblinks jos__sessions jos_banner … A dministrator Account: username =admin password =51f9a6e361a03aee324bcc73fe8ab4a5:xt69awFsqAyvglBMcbtvq9HopIAnQ1jF email =emil@nod32.ro usertype =Super Administrator News Source : Kai Farmer

Wufeng County Procuratorat ( China Government ) website Hacked ! Hacked site :  http://www.wufeng.jcy.gov.cn/ News Source : Kai Farmer

Cross Site Scripting (XSS) vulnerability in Google Search Engine ! Vulnerabile Link :  http://www.google.com/custom?hl=en&cof=L%3Ahttps%3A%2F%2Flh5.googleusercontent.com%2F_bCYQxIvMQ2U%2FTRMT2a-UiQI%2FAAAAAAAAAYU%2FWXKFKDTesOs%2Fs640%2Fhackernews.jpg%3BBGC%3A%231f1f1f%3B&q=http%3A%2F%2Fwww.thehackernews.com%2F&btnG=Search

In the videos below, Joel Langill deconstructs each part of the worm to show it in action. In the second video you’ll see the best practices that InfoSec Institute uses (we have a training course dedicated to SCADA control systems which includes a robust Stuxnet lab) to mitigate this type of infection and security breach. Part 1: Introduction, Installation, and Injection Part 2: Mitigation & Prevention The Stuxnet worm has generated a lot of media attention and coverage for some of it’s features as well as targets. The complexity not normal for malware that we’ve witnessed, and consists of attacks against three different systems: Windows Infection Step7 Infection PLC Infection If you’d like to know more about Stuxnet & SCADA security, attend our SCADA Security Boot Camp. Leave a comment below if you have a specific instruction or ideas of what you’d like to learn in any follow-up or explanations of this video. News Source : Infosecinstitute.com

Bsnl India Helpdesk Admin panel Hacked ! Here in above pic a Indian Hackers Group " The Blackroot " Access to the Admin panel of Bsnl India Help-desk. Lol , Nothing is Secure, technical support by Bsnl also have Technical Problems ;-) News Source : Facebook