The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

The Recording Industry Association of America (RIAA) website was hit by a distributed denial-of-service (DDoS) attack at the hands of the hacktivist group Anonymous. The DDoS attack was launched to protest the RIAA's demand for $75 trillion in damages from the peer-to-peer music-sharing network LimeWire, the security firm Sophos reported. The attack occurred last Friday (March 25) at 7 p.m. EDT and brought down the RIAA site for about five hours. The site is back online now. According to Computerworld, Judge Kimba Wood of the U.S. District Court for the Southern District of New York rejected the RIAA's lawsuit against LimeWire earlier this month, calling it "absurd" that the RIAA asked for up to $150,000 for 11,000 copyrighted songs made available for free on LimeWire. (Last October, Judge Wood ordered LimeWire to be taken down due to copyright infringement). The $75 trillion figure would be "more money than the entire music industry has made since Edison's invention of the phono...

NASA's internal computer network is full of holes and is extremely vulnerable to an external cyberattack, an audit by the Office of the Inspector General has found. Even worse, it appears several of the vulnerabilities have been known for months, yet remained unpatched. "Six computer servers associated with IT [information technology] assets that control spacecraft and contain critical data had vulnerabilities that would allow a remote attacker to take control of or render them unavailable," the audit report released today (March 28) by Inspector General Paul K. Martin said. "The attacker could use the compromised computers to exploit other weaknesses we identified, a situation that could severely degrade or cripple NASA's operations," the report continued. "We also found network servers that revealed encryption keys, encrypted passwords, and user account information to potential attackers." It is not unusual for previously unknown network security holes to be found in large orga...

20 pakistan sites defaced by APH defacers: hell hax0r, hell b3ind3r and crash viper ( must put these names) Sites defaces: here are the mirrors  https://ates-hatti.com/attack/? id=4096 https://ates-hatti.com/attack/? id=4097 https://ates-hatti.com/attack/? id=4098 https://ates-hatti.com/attack/? id=4099 https://ates-hatti.com/attack/? id=4100 https://ates-hatti.com/attack/? id=4101 https://ates-hatti.com/attack/? id=4102 https://ates-hatti.com/attack/? id=4103 https://ates-hatti.com/attack/? id=4104 https://ates-hatti.com/attack/? id=4105 https://ates-hatti.com/attack/? id=4106 https://ates-hatti.com/attack/? id=4107 https://ates-hatti.com/attack/? id=4108 https://ates-hatti.com/attack/? id=4109 https://ates-hatti.com/attack/? id=4110 https://ates-hatti.com/attack/? id=4111 https://ates-hatti.com/attack/? id=4112

University of Regina 's web server hacked by SecurityBus On Monday an intruder to the University of Regina's main web server was detected. As a result, the U of R took immediate steps to deal with the situation and the institution's website is currently unavailable. Some essential services are available for faculty, staff and students through a temporary website at www.uregina.ca. In a press release, the U of R stated that after an initial assessment it's believed that house, personal and student records including financial records have not been affected.

Facebook Vulnerability - Beware of A New XSS on Facebook ! Url :   https://m.facebook.com/connect/prompt_feed.php?display=wap&user_message_prompt=%3Cscript%3Ealert%281 %29%3C/script%3E New Cross-site scripting vulnerability has been detected on Facebook and widely exploited in the mobile API version, this vulnerability allows a malicious user to include JavaScript content into a website and redirect victim's browser to the prepared URL. I have already saw this flaw in the last few days, many of my friend list are posting some strange things on the wall and by Just visiting the infected website is enough to post a message that the attacker has chosen. Therefore it should be of no surprise that some of those messages are spreading very fast through Facebook. Some are posting links to infected websites, creating XSS worms that spread from user to user. There is no user interaction required, so the messages are spreading through Facebook at a fast pace. Facebook's securit...