The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

Linux kernel 2.6.39 released - Update Now ! After just 65 days of development, Linus Torvalds has  released  version 2.6.39 of the Linux kernel. The new release includes support for  ipset  which simplified firewall configuration and deployment by allowing updatable and quickly searchable external tables to be used by the network filtering. Interrupt handling can now be handled almost entirely by kernel threads, the ext4 file system and block layers are now able to scale better and show better performance and the kernel now includes a network backend for Xen virtualisation. As always, the new kernel brings hundreds of new or enhanced drivers. For example, support for AMD's current "Cayman" family of high end graphics cards and GPUs arrived with a simple DRM/KMS driver. Also new in this release are drivers for the function keys of Samsung notebooks and the Realtek RTL8192CU and RTL8188CU Wi-Fi chips. Whats News in  Linux kernel 2.6.39 The latest Linux kernel...

Government Directorate Pakistan hacked by lionaneesh Some of Hacked Users by lionaneesh :  https://pastebin.com/e3htceHt Hacked site : https://www.e-government.gov.pk/

The Social-Engineer Toolkit v1.4 latest Version ! The Social Engineering Toolkit (SET) is a python-driven suite of custom tools which solely focuses on attacking the human element of penetration testing. It's main purpose is to augment and simulate social-engineering attacks and allow the tester to effectively test how a targeted attack may succeed. Official change log: Java changed how self signed certificates work. It shows a big UNKNOWN now, modified self sign a bit. Added the ability to purchase a code signing certificate and sign it automatically. You can either import or create a request. Fixed a bug in the wifi attack vector where it would not recognize /usr/local/sbin/dnsspoof as a valid path Fixed a bug in the new backtrack5 to recognize airmon-ng Added the ability to import your own code signed certificate without having to generate it through SET Fixed an issue where the web templates would load two java applets on mistake, it now is correct and only loads one F...

Sony PlayStation Network hacked again, user passwords compromised ! With Sony's PlayStation Network freshly back online, attackers have once again breached the system, this time going for a vulnerability with the system's password reset. This is getting (more) ridiculous. Not even two days after Sony restored its embattled PlayStation Network for most users worldwide, cyber criminals have once again launched an attack, this time going after the PSN's password reset system. In order for users to reconnect to the PSN, they were required to reset their passwords. You know, for security reasons… News of this third, most recent attack were originally reported on Nyleveia.com, which warned PSN users that "accounts are still not safe." "I want to make this clear to ALL PSN users. Despite the methods currently employed to force a password change when you first reconnect to the PlayStation network, your accounts still remain unsafe," writes Nyleveia. "A new hack is currently doin...

It seems that information which Dropbox, the popular web-based file-sharing site/service, issued in response to a US Federal Trade Commission complaint, has revealed a potential security flaw that, according to Ray Bryant, CEO of Idappcom, could be exploited by hackers. According to Bryant, after becoming upset with Dropbox's claims over encryption, a security researcher filed an FTC complaint against the network and, as part of its response, the firm revealed that users' files are hash-tagged each time they are uploaded. This means that, if user A uploads, for example, pictures with a given hash-tag and then user B uploads the same name/sized file - with the same hash-tag - their version is not actually uploaded. Put simply, he claims, users A and B share access to user A's first file, without user A's permission. Bryant says it may also be possible to upload an infected version of a popular file on other services and, when other users `upload' the legitima...

Hackmeout.Net Hacked By Shadow008 (PakCyberArmy) Hacked Site : https://hackmeout.net/ Mirror : https://legend-h.org/mirror/163779/hackmeout.net/

Wi-Fi Security Challenge 3 By Security Tube, Prize: $50 ! Wi-Fi Security Challenge 3: https://www.securitytube.net/video/1884 This challenge has 2 parts: 3a. Never Judge a Packet by its Type: In this challenge the trace file contains a Shared Key Challenge Text and Encrypted Response. You will need to crack the WEP key with just this. 3b. Never Send a N00b to a do a Hacker's Job: In this challenge, you send your N00b apprentice to collect a Wireshark trace. He mistakenly limits the size of the packets and all your get is a truncated encrypted data packet! :( Can you crack the WEP key with just this? Take a shot! All tools / programming platforms required are present on BT4. We don't expect you to scour the web for this :) Prizes: The first person to finish the challenges and send us an email will win $50 worth of goodies from Amazon. Your choice! choose what you want! You can download the trace files and updates from the Challenge Page: https://www.securitytube.ne...

Android phones vulnerable to hackers ! Handsets using Google's operating system can allow hackers to access calendars, contacts and private pictures, they claim. Only the latest phones have had the data leak plugged, meaning 99.7 per cent of Android handsets are vulnerable. 'We wanted to know if it is really possible to launch an impersonation attack against Google services,' the German researchers wrote. 'The short answer is yes, it is possible and it is quite easy to do so. 'The adversary can gain full access to the calendar, contacts information or private web albums of the respective Google user. 'This means that the adversary can view, modify or delete any contacts, calendar events or private pictures.' The research was carried out by a University of Ulm team, who studied how Android dealt with log-ins for web-based services. When a user needs to access Google calendar, contacts and photo apps, an authentication 'token' is retrieved. But the tokens are sent unencrypted in p...