The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

BackTrack 5 Release in 5 days, on 10th May ! For all those who haven't heard, BackTrack 5 will be released in 5 days. So far, BT are on schedule and the whole team is excited by the release. The 10th will be a hectic day for us, so BT thought BT'd start putting out some information about BackTrack 5 ahead of time – to reduce thier load on the release day. BT know that there are probably many questions about BackTrack, to answer some of your questions here are some exciting points: BT5 release will start on May 10th (don't bug us about the timezone), and will primarily be available for download via torrents. This is to reduce the massive load on our mirrors for the first few hours. As time progresses into the release , BT will then allow direct downloads from our mirrors. BT will have KDE (4.6) and Gnome (2.6) Desktop environment flavours 32 and 64 bit support A basic ARM BackTrack image which can be chrooted into from android enabled devices. (hopefully released May 10th) Th...

CCAvenue.com is a Commerce Service Provider, authorized as a Master Merchant, by Indian financial institutions, to appoint Sub Merchants, to accept and validate Internet payments via Credit Card, and Net banking facilities from the end-customers in real-time. Its one of the leading payment gateway of South East Asia. Today, CCAvenue.com got hacked by a hacker with code name d3hydr8 by exploiting SQL injection vulnerability in the website. The database was identified as MSSQL. Storing passwords in plain text in the database was a bad strategy followed by CCAvenue. Vishwas Patel, CEO of CCAvenue, replied on the incident calling it a mischievous slander against their name in an interview to Medianama. The hacker had disclosed the Apache version of the server of the site to be Apache/2.2.14 in his disclosure on seclist. Where as Patel adds that that server version was updated from 2.2.14 to 2.2.17 5 months back. A netcraft screen shot below indicates that the upgrade to Apache 2.2.17 ...

' The Hacker News ' Magazine - Social Engineering Edition - Issue 02 - May,2011 Released ! We are happy to Announce that 'The Hacker News' [THN] Magazine Issue 02 (May 2011) is Out . This time we cover "Social Engineering Edition" . The Index of Content is as Given Below : Social Engineering  Opsony By Anonymous Anna Hazare - The Revolution in India Message By Pattie Galle Hacking News of Month Hackers Toolkit updates & Downloads Defacement News Security and Hacking Events of Month Cyber Crime News Linux News Security Updates Vulnerability Exposure Download THN Magazine - Social Engineering Edition : Click Here Note : You can Download all Other ISSUES of THN MAGAZINE from Here

Updated : 3rd Plan to Hit Sony , Another Sony Information Leak ! Update :  [THN] The Hacker News Exclusive Report on Sony 3rd Attack Issue  ! An Anonymous Email provide 'THE HACKER NEWS' some Links from sony FTP, that may lead to another big HIT to sony's Network. That mail shows that some more hackers are planning to give 3RD big HIT to sony soon.... How knows how much it worth, But keep eyes open ;-) Update -- Have a Look to these links : https://products.sel.sony.com/ cgi-bin/semi/get_datasheet.cgi https://products.sel.sony.com/ cgi-bin/wishlist https://products.sel.sony.com/ shared/santa/dbs/sweepstake. xls Alternate links :  https://pastebin.com/pdBgSBBD https://pastebin.com/H9XRfQbD https://pastebin.com/6BG4k1vk Note : Sony Have Remove all above links/Files after our post, so check Alternate links. UPDATE : Downlaod 'The Hacker News' Magazine (May 2011)

A press release from Anonymous regarding PSN !

Hackers steal 250,000 X Factor Details ! The FBI is reportedly investigating after hackers broke into Simon Cowell's computer network. Details of more than 250,000 X Factor entrants are said to have been stolen and Simon and bosses at American TV network Fox, are said to be scared that the thieves will use the details to make money. An official investigation has been launched and an email, which was seen by the Daily Star, was sent to all contestants to warn them about the security breach. It read: 'This week, we learned that computer hackers illegally accessed information you and others submitted to us to receive information about The X Factor auditions. 'It is possible that the information you did provide to us, which included your name, email address, zip code, phone number (which was optional), date of birth, and gender, may have been accessed. 'We are taking this matter very seriously and are working with federal law enforcement authorities to investigate t...

Anonymous Response to Sony : We didn't do it as we will never hurt the innocents ! Press Release as shown :  Last month, an unknown party managed to break into Sony's servers and acquired millions of customer records including credit card numbers. Insomuch as that this incident occurred in the midst of Anonymous' OpSony, by which participants engaged in several of our standard information war procedures against the corporation and its executives, Sony and other parties have come to blame Anonymous for the heist. Today, in a letter directed to members of Congress involved in an inquiry into the situation, Sony claimed to have discovered a file on its servers, presumably left by the thieves in question, entitled "Anonymous" and containing a fragment of our slogan, "We are Legion." In response, we would like to raise the following points: 1. Anonymous has never been known to have engaged in credit card theft. 2. Many of our corporate and governmental ad...

LastPass, one of the most popular cloud-based password management services, is forcing users to change their master passwords as a precaution after it discovered an unauthorized data transfer out of its network. In a post on its blog the company explains, in sufficient detail, what prompted this measure, why it was the best course of action and what it means for users. On May 3, the company detected larger than normal outbound traffic and immediately launched an internal audit to determine the source. Such transfers have been detected before, but each time the origin was determined to be an employee or an automated script. "In this case, we couldn't find that root cause. After delving into the anomaly we found a similar but smaller matching traffic anomaly from one of our databases in the opposite direction. "Because we can't account for this anomaly either, we're going to be paranoid and assume the worst: that the data we stored in the database was some...