The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

Group-IB , a Russian cybercrime investigation company has discovered a zero-day vulnerability, affects Adobe Reader X and Adobe Reader XI. The vulnerability is also included in new modified version of Blackhole Exploit-Kit , which is used for the distributing the banking Trojans (Zeus, Spyeye, Carberp, Citadel) with the help of exploitation different vulnerabilities in client-side software. The particular exploit is available in underground forums for as much as $50,000 and bug is dangerous because it permits cybercriminals to run arbitrary shellcode by bypassing the sandbox feature integrated into the more recent versions of Adobe Reader. For now this flaw is distributed only in only small circles of the underground but it has the potential for much larger post-exploitation methods. The exploit is limited to  Microsoft Windows installations of Adobe Reader and it can't be fully executed until the user closes his Web browser (...

Kim Dotcom is still fighting a legal battle in New Zealand against the United States over alleged copyright infringement and piracy. Kim Dotcom's upcoming Mega website Me.ga has had its domain name seized by the African nation of Gabon, with a government minister saying his country will not be used as a base for copyright infringement. Last week, Dotcom unveiled plans to relaunch his file-sharing site in January 2013, using the Gabonese domain me.ga, with the message " this button will change the world ." "Gabon cannot serve as a platform or screen for committing acts aimed at violating copyrights, nor be used by unscrupulous people," says the country's Communication Minister Blaise Louembe. Dotcom reassured his followers, by tweeting , " Don't worry. We have an alternative domain. This just demonstrates the bad faith witch hunt the US government is on...Gabon Minister used time machine to analyze legality of the future Mega. Verdict: Cyber cri...

In the UK a 41-year-old man has been arrested over a cyber attack on the website of the British Home Secretary Theresa May. He was arrested in a joint operation by Scotland Yard and local officers on Tuesday morning in Wedgewood Road. The man, who has not been named, was arrested on suspicion of assisting or encouraging crime contrary to the Serious Crime Act 2007. He was taken to a local police station and bailed to return in mid-December, pending further inquiries. Computers, telephones and media storage devices were seized from his home, according to police. Detective Inspector Jason Tunn, from the Metropolitan Police's eCrime Unit (PCeU), said, " The activity this morning demonstrates the commitment of the PCeU and our colleagues to combat cyber criminality anywhere within the UK and take action against those responsible. Assisting and encouraging cyber crime is a serious matter and I would advise all persons to consider their actions and any possible future ...

Yesterday Australian Pizza Hut website was compromised by a hacking group going by the name of 0-Day and Pyknic . Hackers defaced the website and claim that they made off with 260,000 Australian credit card numbers. Hack was 1st noticed by  Whirlpool Forum users. But a Pizza Hut spokeswoman said the company did not store such information on its website. " Pizza Hut can confirm that a layer of its website, pizzahut.com.au , was breached with access gained to names and contact information, including email addresses ". " We are working with our website providers to conduct a thorough investigation of the matter and have also reported the incident to the Office of the Australian Information Commissioner. We would like to reassure all of our customers that absolutely no credit card information was stolen and there is no need for concern regarding credit cards." "The security of our online ordering system has not been compromised in any way and our customers ca...

Dutch media report   Skype has Illegally (without court order) distributed a 16 years old user's personal information including user name, real name, email addresses and the home address used for payment to a private company consistently a police investigation into Anonymous-sanctioned cyber attacks on PayPal.  In 2011 most of the online payment solution companies blocked donations to WikiLeaks, in relation to this Anonymous Hacker DDOS paypal and Mastercard. During investigation of attack an IT firm reach skype for the information of their use and Skype  handed over the personal information of a 16-year-old  Illegally to them. Dutch media report that Police operating the case as 'Operation Talang' which is actually focussed on two persons. Joep Gommers, senior director of global research at the Dutch IT security firm iSIGHT Partners, was hired by PayPal to investigate the attacks. They are Alleged to...

Hacking group #NullCrew deface UNESCO Etxea website (unescoetxea.org), which is an internationally oriented NGOs working for the culture of peace, sustainable human development and human rights, at local and global levels. Deface page reads, " Welcome to the new front page of unesco etxea You have been targeted by NullCrew, as part of the FuckTheSystem movement. We have began the war, once again; but this time, good-luck even coming close to winning. " " The united nations, just a bunch of corrupt nations; united by one source of power.. And for that reason, we have came back; to repeat the process. Enjoy the candy. " After watching the data dumped on deface page including the kernel version of server and wordpress database configuration file we can judge that, hacker is able to upload the php shell on website of UNESCO Etxea and he deface the web page. #NullCrew today also hack  UK Ministry of Defence and dump database...