The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

Wufeng County Procuratorat ( China Government ) website Hacked ! Hacked site :  https://www.wufeng.jcy.gov.cn/ News Source : Kai Farmer

Cross Site Scripting (XSS) vulnerability in Google Search Engine ! Vulnerabile Link :  https://www.google.com/custom?hl=en&cof=L%3Ahttps%3A%2F%2Flh5.googleusercontent.com%2F_bCYQxIvMQ2U%2FTRMT2a-UiQI%2FAAAAAAAAAYU%2FWXKFKDTesOs%2Fs640%2Fhackernews.jpg%3BBGC%3A%231f1f1f%3B&q=http%3A%2F%2Fwww.thehackernews.com%2F&btnG=Search

In the videos below, Joel Langill deconstructs each part of the worm to show it in action. In the second video you'll see the best practices that InfoSec Institute uses (we have a training course dedicated to SCADA control systems which includes a robust Stuxnet lab) to mitigate this type of infection and security breach. Part 1: Introduction, Installation, and Injection Part 2: Mitigation & Prevention The Stuxnet worm has generated a lot of media attention and coverage for some of it's features as well as targets. The complexity not normal for malware that we've witnessed, and consists of attacks against three different systems: Windows Infection Step7 Infection PLC Infection If you'd like to know more about Stuxnet & SCADA security, attend our SCADA Security Boot Camp. Leave a comment below if you have a specific instruction or ideas of what you'd like to learn in any follow-up or explanations of this video. News Source : Infosecinstitute.com

Python supply chain attacks are surging in 2025. Join our webinar to learn how to secure your code, dependencies, and runtime with modern tools and strategies.

Bsnl India Helpdesk Admin panel Hacked ! Here in above pic a Indian Hackers Group " The Blackroot " Access to the Admin panel of Bsnl India Help-desk. Lol , Nothing is Secure, technical support by Bsnl also have Technical Problems ;-) News Source : Facebook 

Indonesian Soccer Association (PSSI) website hijacked by hackers ! Hackers apparently hijacked the website of the Indonesian Soccer Association (PSSI), placing an anti-corruption message on the PSSI's homepage. The homepage currently displays a mouse holding two smoking pistol and carries the message " Stop Corruption and Bribery in Indonesia. " The hackers claimed to be members of a group named" Fried Worker Activists Caring for Indonesia ".

Zynga hacker, Ashley Mitchell jailed for two years ! British bloke Ashley Mitchell, 29, has been jailed for two years after stealing some 400 billion virtual gaming chips gaming company Zynga. Mitchell hacked his way into Zynga's back-end systems by pinching the identities of two Zynga employees and filleted the swag, some of which he managed to flog on Facebook and some he used to gamble his nights away playing online poker. Mitchell, of Paignton, Devon pleaded guilty to hacking the servers and pinching the chips, which were estimated to be worth around £7.4 million in real money. He flogged around a third of his ill-gotten gains for £53,612. James Taghdissian, prosecuting, told the court that Zynga realised in August 2009 that its chips were disappearing and suspicion fell on two employees. It turned out that Mitchell was using their details to gain access to the stash. Mitchell had been using his neighbours' Wi-Fi connections to carry out his hacks, which lead to t...

1337hax & Windowsforums hacked by Team - Indishell ! Hacked sites : https://1337hax.org/ https://www.zone-h.net/mirror/id/13288096 https://windowsforums.org/ https://www.zone-h.net/mirror/id/13288104

Tumblr security flaw , Clarification by Tumblr official staff ! On our yesterday post about  Tumblr security flaw : server IPS, API keys, passwords, etc were leaked , Finally Tumblr official staff gives a statement to all their users as below : A human error caused some sensitive server configuration information to be exposed this morning. Our technicians took immediate measures to protect from any issues that may come as a result. We're triple checking everything and bringing in outside auditors to confirm, but we have no reason to believe that anything was compromised.  We're certain that none of your personal information (passwords, etc.) was exposed, and your blog is backed up and safe as always.  This was an embarrassing error, but something we were prepared for. The fact that this occurred at all is still unacceptable, and we'll be seriously evaluating and adjusting our processes to ensure an error like this can never happen again. ...