The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

Microsoft prepares critical Windows patch for Next Tuesday ! Microsoft will issue two bulletins for Patch Tuesday next week — a 'critical' one affecting Windows and an 'important' one for Office, the company said on Thursday. Affected software includes Windows Server 2003, Server 2008, Office XP, Office 2003, Office 2007, Office 2004 for Mac and Office 2008 for Mac, according to the advance notice. The light Patch Tuesday release follows 17 bulletins that Microsoft issued in April. Microsoft also said it is changing its Exploitability Index, the guide it uses to provide customers with information on the likelihood of a vulnerability being exploited.

Upload Vulnerability in Vikram Sarabhai Space Centre (ISRO) Website NOTE : Cant share link, bcoz of Security Reasons ;-)

XSS attack on France.com by Hitcher Link : Click Here

200 sites including three gov sites have been hacked by $(-)@(-)94 $h3rrY $!D {PCH} Hacked Sites List : http://pastebin.com/WBBba6wh

BackTrack 5 Release in 5 days, on 10th May ! For all those who haven’t heard, BackTrack 5 will be released in 5 days. So far, BT are on schedule and the whole team is excited by the release. The 10th will be a hectic day for us, so BT thought BT’d start putting out some information about BackTrack 5 ahead of time – to reduce thier load on the release day. BT know that there are probably many questions about BackTrack, to answer some of your questions here are some exciting points: BT5 release will start on May 10th (don’t bug us about the timezone), and will primarily be available for download via torrents. This is to reduce the massive load on our mirrors for the first few hours. As time progresses into the release , BT will then allow direct downloads from our mirrors. BT will have KDE (4.6) and Gnome (2.6) Desktop environment flavours 32 and 64 bit support A basic ARM BackTrack image which can be chrooted into from android enabled devices. (hopefully released May 10th) Th...

CCAvenue.com is a Commerce Service Provider, authorized as a Master Merchant, by Indian financial institutions, to appoint Sub Merchants, to accept and validate Internet payments via Credit Card, and Net banking facilities from the end-customers in real-time. Its one of the leading payment gateway of South East Asia. Today, CCAvenue.com got hacked by a hacker with code name d3hydr8 by exploiting SQL injection vulnerability in the website. The database was identified as MSSQL. Storing passwords in plain text in the database was a bad strategy followed by CCAvenue. Vishwas Patel, CEO of CCAvenue, replied on the incident calling it a mischievous slander against their name in an interview to Medianama. The hacker had disclosed the Apache version of the server of the site to be Apache/2.2.14 in his disclosure on seclist. Where as Patel adds that that server version was updated from 2.2.14 to 2.2.17 5 months back. A netcraft screen shot below indicates that the upgrade to Apache 2.2.17 ...

' The Hacker News ' Magazine - Social Engineering Edition - Issue 02 - May,2011 Released ! We are happy to Announce that 'The Hacker News' [THN] Magazine Issue 02 (May 2011) is Out . This time we cover "Social Engineering Edition" . The Index of Content is as Given Below : Social Engineering  Opsony By Anonymous Anna Hazare - The Revolution in India Message By Pattie Galle Hacking News of Month Hackers Toolkit updates & Downloads Defacement News Security and Hacking Events of Month Cyber Crime News Linux News Security Updates Vulnerability Exposure Download THN Magazine - Social Engineering Edition : Click Here Note : You can Download all Other ISSUES of THN MAGAZINE from Here