The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

The hacker group that exposed holes in McAfee's website knows it's breaking U.S. law, but vows to continue exposing vulnerabilities, especially on security vendor websites. The hacker group that exposed holes in McAfee's website knows it's breaking U.S. law, but vows to continue exposing vulnerabilities, especially on security vendor websites. "We do understand performing security testings without authorization is illegal under U.S. law," stated YGN Ethical Hacker Group, when contacted by Network World via e-mail. The outfit's own website describes YGN as a "small group of young but mature people" based in the country of Myanmar (Burma) who started working together about three years ago. Based on its website advertising, the group, which seeks to emphasize its goals are "ethical," appears to offer vulnerability-testing services while also working on security testing tools. In response to a question about why it's so secretive,...

After the release of FireSheep, Facebook took an important step to help protect Facebook user accounts by allowing users to choose to keep an encrypted connection as long as they used just Facebook and intelligently designed apps. Savvy users immediately discovered that if they tried to use grossly insecure apps such as Farmville, 21 Questions, or a variety of apps by Rockyou then you were switched back to an unencrypted connection. Having an unencrypted connection means that if you are on an unsecured network, such as those frequently found in coffee shops, airports, and many other public places, then another person can mess around with your account and do things like post messages as if they were you. In fact, they are actually logged into your account for the session, but they don’t have your password, so there are some security features they can’t change. Still it is enough access that they can cause a lot of damage. Facebook has addressed the problem by making it so that if y...

Bcwars.com & Pokerrpg.com hacked 200k Email and Plain text passwords ! Bcwars.com & Pokerrpg.com hacked 200k Email, also admin used plain text passwords. Used Sql Injection :  http://bcwars.com/forum/category/-3' union select concat(id,'::::',username,':::::::',password,':::::::',email) from tblUsers-- - Bcwars Database :  http://bit.ly/hD6bEE http://rapidshare.com/files/455184098/tblUsers-bc.sql.zip http://www.megaupload.com/?d=P4B30IVR http://depositfiles.com/de/files/u7unbc4vk http://hotfile.com/dl/112676282/bcd44f5/tblUsers-bc.sql.zip.html http://www.zshare.net/download/884416713e3e2044/ http://uploading.com/files/3e13f3be/tblUsers-bc.sql.zip/ Pokerrpg Database :  http://bit.ly/hgCGJx http://rapidshare.com/files/455184096/tblUsers.sql-poker.zip http://www.megaupload.com/?d=T41NF4SV http://depositfiles.com/de/files/8qgnt9gll http://hotfile.com/dl/112676281/bea47ec/tblUsers.sql-poker.zip.html http://www.zshare....

Keyloggers in Samsung Laptops , Officials says - Samsung laptops are in fact secure ! We'll start by saying that we've reached out to  Samsung  for a response here, but as of now, no reply has been given -- neither a confirmation nor a refusal of truth. Why bother mentioning that? If this here story proves true, Sammy could have a serious problem on its hands -- a problem that'll definitely start with a rash of negative PR, and a quandary that could  very well end the outfit up in the courtroom . According to a report by Mohamed Hassan over at  Network World , Samsung allegedly took the initiative to install a keylogger into his recently purchased R525 and R540 laptops. The app was noticed right away after a security scan on both systems, with StarLogger popping up with the c:\windows\SL directory. Where things really get strange is on the support line; reportedly, a supervisor informed Mr. Hassan (after an earlier denial) that the company did indeed install the ...

18 Websites Hacked Hacked Sites : http://tonycleevelandscapes.co.uk/ http://www.qq55765.com/minhal.html http://www.6008765.com/minhal.html http://www.larbresolutions.com/assetmanager/images/minhal.html http://www.m-dev.org/portals/0/minhal.html http://www.vossfotoklubb.com/minebilder/minhal.html http://www.hiku.dk/portals/0/ http://clientvela.pl/portals/1/minhal.html http://www.dnntw.com/portals/0/minhal.html http://www.zjjiashan.lss.gov.cn/portals/0/Cache/minhal.html http://www.wfaic.gov.cn//portals/0/minhal.html http://bc.inter.edu/Portals/0/admisiones_files/indian.html http://www.fril.co.il/Portals/0/skins/indian.txt http://www.dzonny.cz/Portals/0/minhal.html http://www.dnntw.com/portals/0/minhal.html http://med-mali.com/ http://www.allansrealty.com/portals/0/minhal.html http://academy.mytopdog.co.za/assets/upload/image/

40 websites Defaced by SBZ-GHoST [ Team Tunisian Hacker ] Hacked Sites List : www.samsunggalaxy5forum.com http://www.institut-platon.com/ http://www.sexylingeriesites.com/ http://www.themeslingo.com/ http://www.twinpinesantiques.com/ http://garagesaleradio.com/ http://www.crossroads-rpg.com/ http://coopavance.com/ http://www.institut-platon.com/ www.newyorkgraphics.it/ www.veteransforacademicfreedom.org/wp-content/ www.edoardocroci.it/ www.sharmaguesthouse.net/ www.tomasino.it/ www.rockon.it/ www.sfcrestaurant.com/ www.shawls-stoles.com/ www.windtowerjobs.com www.nevernudeblog.com www.loveandblog.com www.greengreenbusiness.com http://politicallycensored.com/home-2/ http://www.stephenholmesonline.com/?page_id=10 http://www.thesolarguy.com/about/ http://www.pcshock.co.il/catalog/images/

EMAIL SERVICE PROVIDER Microsoft will allow companies to run Javascript code within Hotmail users' mailboxes. Microsoft has said that its Hotmail service will analyse email and present certain forms of content in a way that it believes is the "most common things people do when they receive the email". This means that groups of images will automatically be put into a slideshow or videos will be embedded directly in emails from simple Youtube links. In a bid to keep users on Hotmail's website, Microsoft has launched a sandboxed environment that it says will allow partners to "insert dynamic content that is up to date and interactive with common tasks through the use of Javascript". And here we thought HTML emails were bad enough. Microsoft is labeling this as Active Views, a billion of which, it claims, have already been served. The firm is claiming that Active Views increase user interaction with the contents of an email. According to Microsoft, less th...

University of Regina 's website up and running after apparent hacking ! The University of Regina's website was down for much of Monday. Dale Johnson, spokesperson for the University, says it appears the website was hacked. Some of the essential web services including Web Mail and UR Courses were made available through a temporary website for faculty, staff and students to use. According to a release from the University, it is believed the database that includes student and financial records was not affected.

ANC Youth League 's website hacked ! The ANC Youth League's website has been hacked, with the attackers leaving a message in the name of league president Julius Malema. The fake post said Malema was stepping down as ANCYL leader, iafrica news reported In response to questions about the alleged hacking of the website, youth league spokeswoman Magdelene Moonsamy said: "There is nothing that we are aware of at this point and there is nothing on our website. "We do not have time for things like this." The hoax message gave a number of reasons for Malema's resignation. "I promote Nationalisation even though I have no concept (sic) of how it works or its blacklash (sic) to the economy," one reason read. "I have disrespected my elders and have made a fool out of myself," read another. The message ended with: "It is with great hope that I step down and welcome a new era in the ANCYL, one where thought and vision inspire our coun...