The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

NASA’s internal computer network is full of holes and is extremely vulnerable to an external cyberattack, an audit by the Office of the Inspector General has found. Even worse, it appears several of the vulnerabilities have been known for months, yet remained unpatched. “Six computer servers associated with IT [information technology] assets that control spacecraft and contain critical data had vulnerabilities that would allow a remote attacker to take control of or render them unavailable,” the audit report released today (March 28) by Inspector General Paul K. Martin said. “The attacker could use the compromised computers to exploit other weaknesses we identified, a situation that could severely degrade or cripple NASA’s operations,” the report continued. “We also found network servers that revealed encryption keys, encrypted passwords, and user account information to potential attackers.” It is not unusual for previously unknown network security holes to be found in large orga...

20 pakistan sites defaced by APH defacers: hell hax0r, hell b3ind3r and crash viper ( must put these names) Sites defaces: here are the mirrors  http://ates-hatti.com/attack/? id=4096 http://ates-hatti.com/attack/? id=4097 http://ates-hatti.com/attack/? id=4098 http://ates-hatti.com/attack/? id=4099 http://ates-hatti.com/attack/? id=4100 http://ates-hatti.com/attack/? id=4101 http://ates-hatti.com/attack/? id=4102 http://ates-hatti.com/attack/? id=4103 http://ates-hatti.com/attack/? id=4104 http://ates-hatti.com/attack/? id=4105 http://ates-hatti.com/attack/? id=4106 http://ates-hatti.com/attack/? id=4107 http://ates-hatti.com/attack/? id=4108 http://ates-hatti.com/attack/? id=4109 http://ates-hatti.com/attack/? id=4110 http://ates-hatti.com/attack/? id=4111 http://ates-hatti.com/attack/? id=4112

University of Regina 's web server hacked by SecurityBus On Monday an intruder to the University of Regina's main web server was detected. As a result, the U of R took immediate steps to deal with the situation and the institution's website is currently unavailable. Some essential services are available for faculty, staff and students through a temporary website at www.uregina.ca. In a press release, the U of R stated that after an initial assessment it's believed that house, personal and student records including financial records have not been affected.

Facebook Vulnerability - Beware of A New XSS on Facebook ! Url :   https://m.facebook.com/connect/prompt_feed.php?display=wap&user_message_prompt=%3Cscript%3Ealert%281 %29%3C/script%3E New Cross-site scripting vulnerability has been detected on Facebook and widely exploited in the mobile API version, this vulnerability allows a malicious user to include JavaScript content into a website and redirect victim’s browser to the prepared URL. I have already saw this flaw in the last few days, many of my friend list are posting some strange things on the wall and by Just visiting the infected website is enough to post a message that the attacker has chosen. Therefore it should be of no surprise that some of those messages are spreading very fast through Facebook. Some are posting links to infected websites, creating XSS worms that spread from user to user. There is no user interaction required, so the messages are spreading through Facebook at a fast pace. Facebook’s securit...

Multiple Vulnerability in McAfee Website , XSS and Other Attacks ! Researchers at the YGN Ethical Hacker Group have revealed multiple security vulnerabilities found in the McAfee.com website that leaves the company's portal susceptible to attacks and data leakage. The group found that the McAfee website contains flaws that also pose a threat to users, such as a cross-site scripting (XSS) vulnerability in the site where customers can download software. XSS vulnerabilities allow attackers to bypass controls and inject script, meaning a hacker could potentially lead users to download malicious files when they believe they are accessing approved McAfee software. The YGN Ethical Hacker Group also found eighteen instances of source code disclosure which gives attackers an advantage in preparing attacks, as they can search for flaws in how the application handles data in the user interface, as well as allow the attacker to set up a practice version of the application for experimenta...

Following on the heels of a sophisticated cyber assault against the European Union's Commission and External Action Service, reports have surfaced that the EU Parliament's information systems are also being targeted in an attack. Officials indicate that the attacks have successfully penetrated the Parliament's networks in what appears to be an effort at “snooping around” for information. “Information technology services are working day and night to investigate and have put in place some security measures,”  a spokesperson for the Parliament said. The security measures mentioned include the disabling of any access to email services. “This is not a couple of teenage boys hacking into the [EU] institutions,”  another official stated. It is not yet known if the Parliament attacks are connected with the assault on the Commission, though it appears to be a coordinated effort. Last week the Commission experienced a "serious" cyber attack as officials were preparing for ...

8 Websites Hacked By Albanian Hackers Team (Teo DownTurn & Unknown Hacker) Hacked Sites : 1) http://www.yjwz.com/index.html 2) http://ossonetwork.com/index.html 3) http://www.schoolshopper.com.au/aht.html 4) http://snoillim.com/Aht.html 5) http://www.getfitdonotquit.com/Aht.html 6) http://organicjewelries.com/Aht.html  7) http://unitedventuresinc.com/aht.html 8) http://tps-advertise.com/aht.html