The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

François Dupoux has released an updated version of SystemRescueCd, a Gentoo-based live CD containing a collection of utilities for disk management and data rescue tasks. What's new in version 2.1.0? "Updated standard kernels to 2.6.35.12 (long-term kernel: rescuecd + rescue64); alternative kernels re-based on linux-2.6.38.2 (most recent kernel); patched alternative kernels with loop-aes-3.6b (encrypt disks using AES); updated Testdisk to 6.11.3 (checks and undeletes partitions + PhotoRec); updated hdparm to 9.36 (utility to change hard drive parameters); updated the Xfce desktop environment to new major version 4.8; updated gDisk to 0.7.1 (the package has been renamed gptfdisk); 32-bit kernels (rescuecd + altker32) compiled for i586 instead of i686." Change log.  Updated standard kernels to 2.6.35.12 (long-term kernel: rescuecd + rescue64) Alternative kernels rebased on linux-2.6.38.2 (most recent kernel) Patched alternative kernels with loop-aes-3.6b (encrypt d...

Here's an interesting way to get noticed for a job (or fine) by Microsoft.. A hacker known as "Predator" has been able to phish information from Xbox Live's Director of Policy and Enforcement, Stephen Toulouse (aka "Stepto"), gaining email and address information via his personal website server and was then able to alter the Chief's details online. This latest hacker attack on Xbox Live accounts follows a leak of info belonging to Director of Programming Larry Hryb (aka "Major Nelson") around this time last year. On the outset no serious harm was done by the little scam, but it's a scam "Predator" hopes will make a statement to Microsoft in regards to their security policies. He states "I'm simply letting them know I'm willing to help them secure accounts from future hackers" – an innovative method of self-promotion! In a boastful video uploaded to YouTube "Predator" claims to be "Xbox Live's greatest account jacker" and is raking in the cash from causing trouble for Xbox online...

ZeuS Source Code Leaked, Available for Sale ! The source is C++ and supposedly contains everything. The seller is asking for 5500 WebMoney/LibertyReserve for the full source code of version 2.0.8.9. The source code has been leaked but the archive is password-protected. Now there's a race to see who can crack the password. In addition, someone has even given out an MD5 hash of the password. Dunno if it's legit but it's certainly making this an interesting race indeed.

Toyota 4x4 - Toyota Land Cruiser Hacked by The 077 Hacked site :  https://4x4-toyota.fr/

The Internet System Consortium's (ISC) open source DHCP client (dhclient) allows DHCP servers to inject commands which could allow an attacker to obtain root privileges. The problem is caused by incorrect filtering of metadata in server response fields. By using crafted host names, and depending on the operating system and what further processing is performed by dhclient-script, it can allow commands to be passed to the shell and executed. A successful attack does, however, require there to be an unauthorised or compromised DHCP server on the local network. Dhclient versions 3.0.x to 4.2.x are affected. The ISC has released an update. Alternatively, users can deactivate host name evaluation or add an additional line to dhclient-script. Instructions for doing so can be found in the ISC's advisory. Alongside dhclient-script, X.org's 'X server resource database utility' (xrdb) is also affected, as it also evaluates host names transferred via DHCP. Crafted host name...