The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

Has anyone you know ever lost control of an email account and inadvertently sent spam—or worse—to their friends and family? There are plenty of examples (like the classic  "Mugged in London" scam ) that demonstrate why it's important to take steps to help secure your activities online. Your Gmail account, your photos, your private documents—if you reuse the same password on multiple sites and one of those sites gets hacked, or your password is conned out of you directly through a phishing scam, it can be used to access some of your most closely-held information. Most of us are used to entrusting our information to a password, but we know that some of you are looking for something stronger. As we announced to our Google Apps customers  a few months ago , we've developed an advanced opt-in security feature called  2-step verification that makes your Google Account significantly more secure by helping to verify that you're the real owner of your account. Now it...

Free cellphone encryption is coming to Android users in Egypt courtesy of San Francisco software maker Whisper Systems. Until now, Redphone and TextSecure, voice- and text-encryption apps respectively, have generally been available in the US only. Whisper Systems has been working on making the packages available internationally. With cellphone communication playing a vital role in the more than two weeks of protests in Cairo and Alexandria, the company decided to jump-start a version for Egyptians, said principal Moxie Marlinspike. "Given the events in Egypt, we've stepped up our efforts to incorporate international support, and are almost ready to do our first international release by deploying RedPhone and TextSecure (which is also unavailable there) into Egypt," he wrote in an email. Marlinspike is no stranger to government surveillance. While returning from a trip overseas, US feds recently confiscated his handset and laptop. TextSecure uses strong encryption to make text ...

The Egyptian government shut down most of its country's internet not by phoning ISPs one at a time, but by simply throwing a switch in a crucial data center in Cairo. That according to a February presentation to the Department of Homeland Security's Infosec Technology Transition Council. The presentation — made by Bill Woodcock, research director of the Packet Clearing House — argues that the Egyptian Communications Ministry acted quite responsibly in the procedure it used to cut ties from the net, after the shutdown was ordered by Egypt's much-feared intelligence service. "Most of the outage was effected through a breaker flipped in the Ramses exchange, and the rest was phone calls and arm-twisting," the presentation says. 'Ramses exchange' refers to a central building in Cairo where Egyptian ISPs meet to trade traffic and connect outside of the country, a facility known as an Internet Exchange Point. The report's timeline also contradicts many observers' guesses that a smal...

Anonymous Response to Egyptian President Mubarak 's Second Speech ! Mr. Mubarak Billions of people around the world have naively held their hopes high only to watch in dismay while one single stubborn man once again highjacked the lives of millions.- The blood of the fallen in the struggle for freedom will not be crushed by your blind disregard for those clamouring for you to relinquish your desperate hold on power. Your abuses must end, now, and with them your pathetically transparent attempt to retain control through your henchmen, professional torturer, Mr Suleiman.- Your fractured, failed, despotic regime cannot be tolerated a minute longer. The people have spoken, in their millions. Your refusal to acknlowledge this fact and depart with dignity has shown us your delusion . You are aware of this, and so are we.- The Egyptian people are an inspiration for all living under a dictatorship. They will no longer stand by and listen to you speak on their behalf. They will be ...

This is the first time Mr.  Amr Thabet from Egypt , student at Alexandria University Faculty of Engineering Mechanical Department  ,  reverse a rootkit. He choose Stuxnet Rootkit (as it's a famous virus) and begin reversing.. Finally now he convert it into C++ code with a commented IDA Pro v.5.1 Database for it. Download Here

Online dating giant  eHarmony  has begun urging many users to change their passwords, after being alerted  to a potential security breach of customer information. The individual responsible for all the ruckus is an Argentinian hacker who recently claimed responsibility for a similar breach  at competing e-dating site PlentyOfFish.com . Late last year,  Chris "Ch" Russo , a self-styled "security researcher" from Buenos Aires, told me he'd discovered vulnerabilities in eHarmony's network that allowed him to view passwords and other information on tens of thousands of eHarmony users. Russo first alerted me to his findings in late December, right after he said he first began contacting site administrators about the flaw. At the time, I sent messages to several of the administrative eHarmony e-mail addresses whose passwords Russo said he was able to discover, although I received no response. Russo told me shortly thereafter that he'd hit a brick wall in his researc...

JAIPUR: A senior manager of a private bank has registered an FIR against some unidentified persons who allegedly hacked his email ID and sent objectionable emails. The Ashok Nagar police are investigating the matter. SHO, Ashok Nagar and investigating officer of the case Jagmohan said one Brijesh Kumar registered the FIR on Wednesday. "He says that someone hacked his email account and sent mails with pornographic content and other objectionable mails," the officer said. "We have lodged a case under sections of Information Technology Act," the officer added.

Our favourite exploitation framework – The Metasploit Framework has been updated! We now have Metasploit Framework version 3.5.2! "The Metasploit Framework is a penetration testing toolkit, exploit development platform, and research tool. The framework includes hundreds of working remote exploits for a variety of platforms. Payloads, encoders, and nop slide generators can be mixed and matched with exploit modules to solve almost any exploit-related task." This is the detailed release log: Statistics: * Metasploit now ships with 644 exploit modules and 330 auxiliary modules. * 39 new modules and payloads have been added since the last point release. * 58 tickets were resolved and 331 commits were made since the last point release. New Modules: New Exploits and Auxiliaries: * Apache Tomcat Transfer-Encoding Information Disclosure and DoS * Microsoft IIS FTP Server Encoded Response Overflow Trigger * Apache HTTPD mod_negotiation Filename Bruter * Apache HTTPD mod_negotiatio...