The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

SQLi vulnerability in Indian Premier League Found by MaDnI - PCA MaDnI - PCA found Sql Injection vulnerability in (IPL) Indian Premier League website https://www.iplt20.com .  vulnerability  allow to get whole sql database including Logins details and all.  Proof of Vunl : https://pastebin.com/qBMmmdW0

A firm employed by the French government to track down net pirates has been hacked. Trident Media Guard is believed to have exposed a range of data, including advice on how to avoid detection. TMG monitors peer-to-peer networks as part of France's efforts to find those guilty of copyright infringements. Eric Walter, head of the French anti-piracy unit, confirmed on Twitter that it had "temporarily suspended" links with TMG. France's so-called HADOPI law has caused controversy since it was introduced in 2009. Suspected illegal file-sharers receive three official warnings, after which they are reported to a judge who can hand out a range of punishments, including disconnecting them from the internet. The UK is due to introduce similar legislation, although at this stage it has no plans to punish offenders with disconnection. But it will need to employ a firm similar to TMG. When anti-piracy firms monitor peer-to-peer networks for copyright infringements, they...

Govt militry Engineering services database hacked by MaDnI (PCA) Madni ,member of Pakistan Cyber Army today hack the admin login /password of Govt militry Engineering services at https://www.mes.gov.in/ . Admin login is leaked by him at  https://pastebin.com/AKbci4yH

TinKode  Hack FTP of  NASA Goddard Space Flight Center  ! TinKode  Give another big Hack. This time he hack FTP of  NASA Goddard Space Flight Center  at  servir.gsfc.nasa.gov  , Some Months before  European Space Agency (ESA.INT) was also Hacked by TinKode . In Above image you can see the proof of hack.

Metasploit Framework 3.7.1 Released ! Statistics Metasploit now ships with 687 exploit modules, 357 auxiliary modules, and 39 post modules. 2 new exploits and 2 new auxiliary modules have been added since the last release. Highlights & New Features This release address a performance issue with HTTP Services and adds a few modules. In addition, a bug in the Windows auto-update task has been corrected, along with minor changes to the Windows installer. New Modules VideoLAN VLC ModPlug ReadS3M Stack Buffer Overflow ICONICS WebHMI ActiveX Buffer Overflow SPlayer 3.7 Content-Type Buffer Overflow OpenSSL < 0.9.8i DTLS ChangeCipherSpec Remote DoS Exploit ARP Spoof Download Metasploit Framework 3.7.1

Microsoft's Bing And Facebook 's Like Button Team Up Against Google ! Microsoft has deepened its ties with Facebook by integrating the platform's social network data with the Bing search engine. Under the new partnership, users will be able to view 'likes' and recommendations made by their friends on the Bing search engine. Microsoft said that Bing will be capable of prioritising the search results based on Facebook 'likes', providing a more personalised search experience to Facebook and Bing users. The famous Facebook 'like' button will appear on the search results. The companies had started integrating Facebook's 'Like' button in February, but the new partnership will allow users to see the recommendations made by complete strangers. "New features make it easier to see what your Facebook friends "like" across the Web, incorporate the collective know-how of the Web into your search results, and begin adding a more conversational aspect to your searches," the c...

Vulnerability in Google ClientLogin Protocol ! A group of security and privacy researchers from the Institute of Media Informatics at Ulm University in Germany, is claiming to have discovered a serious security vulnerability in Google's ClientLogin protocol. In a recent analysis of the Android platform, the group discovered that when Android users are connected to an unencrypted open Wifi network, an attacker could both read transmitted synchronization data of Google Contacts, Calendar and Picasa Web Albums, and capture the authToken that's user for authentication. Bastian Könings, one of the researchers from the group, told SecurityWeek, "The adversary could use this authToken to gain full access to the data API of the specific service and view, modify or delete any contacts, calendar events, and web albums of that user." "The vulnerability isn't limited to Android Google apps, but to any apps and desktop applications that use Google's ClientLogin protocol over HTTP r...

Pakistan Cyber Army (PCA) owner SHAK Exposed By Indishell (Indian Hackers) Few Days Before , Pakistan Cyber Army got hacked by Indian Cyber Army (Indishell) , and Indishell Got whole Database of PCA site. They Explore the stuff and Got the Real Identity of PCA member, who was continuously hacking the thousands of Indian websites and Servers Daily. In Nov, 2010 CBI  was also hacked by some Pakistan hackers. Lets See What Indishell Got from Their Database Dump : 1.) On Private Message PCA admin Shak is asking for 8000 PKR to Teach Hacking Course (ECH). His Name and Bank details are below -- Name : Bilal Yaqoob Place:- Karachi, Sindhi Country :- Pakistan His Bank or what ever the payment details here are they ID card Number : 35202-1555072-9 PayMent GateWay :- easy paise Mobile number :-03324681620 (U PHONE) Studying in punjab university 2.) Adil, Member of PCA team was arrested (according to Pakistan Govt) ,in case of Cyber attack on Pakistan P...