The Hacker News | #1 Trusted Cybersecurity News Site — Index Page

Yenepoya University Hacked by The INFERNAL DANTE Hacked Site Link : https://www.yenepoya.edu.in/notice_board.php More Hack Pictures : https://img691.imageshack.us/i/64275385.png/ https://img121.imageshack.us/i/90340593.png/ ​https://img839.imageshack.us/i/51799700.png/ ​https://img833.imageshack.us/i/44978948.png/ ​https://img696.imageshack.us/i/20967849.png/

Cambridge Networks hacked by Shak [PCA] Hacked Site : https://cambridge-networks.co.uk/ Mirror : https://zone-h.org/mirror/id/13556467 Hacked Site : https://cambridgewebworks.com/ Mirror : https://zone-h.org/mirror/id/1355

Identities now transcend human boundaries. Within each line of code and every API call lies a non-human identity. These entities act as programmatic access keys, enabling authentication and facilitating interactions among systems and services, which are essential for every API call, database query, or storage account access. As we depend on multi-factor authentication and passwords to safeguard human identities, a pressing question arises: How do we guarantee the security and integrity of these non-human counterparts? How do we authenticate, authorize, and regulate access for entities devoid of life but crucial for the functioning of critical systems? Let's break it down. The challenge Imagine a cloud-native application as a bustling metropolis of tiny neighborhoods known as microservices, all neatly packed into containers. These microservices function akin to diligent worker bees, each diligently performing its designated task, be it processing data, verifying credentials, or

WordPress 3.1.2 released – Security fixes ! The WordPress team just released a new version of WordPress (3.1.2) to fix a security issue where contributor-level users were allowed to publish posts. It is a small release, and everyone using WordPress should upgrade to it! From the WordPress site: WordPress 3.1.2 is now available and is a security release for all previous WordPress versions. This release addresses a vulnerability that allowed Contributor-level users to improperly publish posts. The issue was discovered by a member of our security team, WordPress developer Andrew Nacin, with Benjamin Balter. We suggest you update to 3.1.2 promptly, especially if you allow users to register as contributors or if you have untrusted users. This release also fixes a few bugs that missed the boat for version 3.1.1. Download 3.1.2 or update automatically from the Dashboard → Updates menu in your site's admin area. So do what they say and upgrade it asap! Download link: https://

Mageia 1 Beta 2 released [ Testing Edition ] Three weeks after the first beta arrived, the Mageia development team has announced the release of the second beta for version 1.0 of its Mandriva Linux fork. According to the project roadmap, Mageia 1 Beta 2 will be followed by a release candidate on 17 May – the first stable release is expected to arrive on 1 June. Based on the 2.6.38.4 Linux kernel, Mageia 1 Beta 2 features the latest KDE 4.6.2 desktop environment. Other changes over the previous beta include a variety of package updates, including version 12.0.742.0 of the Chromium web browser, Firefox 4.0 and LibreOffice 3.3.2. The developers also note that they froze the software package versions last week, meaning that "no new, big, upstream code changes will be accepted in Mageia until our final release in June". Moving forward, the developers will focus on fixing bugs and "refining and polishing the user experience". As with all development releases, use in

253 website defaced by imm0rt4l ( Indian hacking crew ) Imm0rt4l5 defaced 253 site , they are Indian hacking crew , with member names : Cybers4mur41 , C0br4 , T41p4n , rur0u1_bl4d3 The main defaces are :  https://www.pakistanrealestate.net/index.php and  edp.com.pk/update.php Message By them " We are warning to team ZHC not to deface Indian site , or else next defacement will be only off porkis !!!! " List of other websites are :  https://pastebin.com/r57UmqZ0

100's Beijing Government networks are vulnerable to Cyber-attack ! China is known as an aggressor in cyberspace, but hundreds of Beijing's own government networks are vulnerable to cyber-attack, says one security expert whose hobby is finding back doors into Chinese computer systems. Among the systems that hackers have penetrated is a database containing personal details - including email addresses, cellphone and passport numbers, and even psychological test results - of 11,000 people, including thousands of Americans. The database, maintained by the state agency that recruits foreign specialists to work in China, was breached by hackers last year, according to U.S. security researcher Dillon Beresford. But many of the Americans in the database did not know their details were there and had been accessed by hackers. Source

Hacker Got PlayStation 77 million PSN customers Network Users info ! Sony Corp. said Tuesday a hacker had obtained customer information, possibly including credit-card numbers, of members of its online PlayStation Network, a potential problem for the quickly growing field of online gaming. The Japanese electronics giant said it is informing its 77 million PSN customers that personal information--including names, addresses, billing history and birthdays--was obtained by an "unauthorized person" following a hacking attack that prompted Sony to shut down its Internet gaming service last week.

The Film and Publication Board's (FPB) website Hacked by  Dr.KroOoZ - By.NeShTeR / TTG ! The Film and Publication Board's (FPB) website, hosted at https://www.fpb.gov.za , is the latest government website to be hacked. Visitors to the FPB website on Monday were greeted by the message " Hacked By Dr.KroOoZ - By.NeShTeR / TTG" and the PHP error code "Fatal error: Class 'JConfig' not found in… " The recent security breaches are often related to software which is not updated, and since the FPB's website is built on the popular Joomla Open Source Software (OSS) regular security updates are necessary to avoid hacking vulnerabilities. Details about the FPB hacking are as yet unknown, and at the time of publication the hacking message still displayed on all web pages. It is not clear when the website will be restored. The FPB website hacking follows security breaches of the ANC and ANC Youth League websites over the last month. Many ANC Youth League (ANCYL) visitors were surp

Indian Institute of Management (IIM-B) Bangalore website hacked The website of the Indian Institute of Management-Bangalore has been hijacked by hackers peddling erectile dysfunction products like Viagra. The website, www.iimb.ernet.in , has been out of service for at least ten days. Cached versions of its home page during the period show the IIM masthead is superceded by ads for purchasing Viagra online without prescriptions.

Pakrail.com database and user details hacked by angel 4k4 4d0r4b13  ! Hacked Database :  https://pastebin.com/y6WQ1Qrr

3 university websites database exploited by FR0664/FCA sci.nu.ac.th - Faculty Of Science - Naresuan University Thaïland https://pastebin.com/Yv8iuUPY frsr.utn.edu.ar - Universidad Tecnológica Nacional - Facultad Regional Santa Fe https://pastebin.com/pXLQYmMH eswap.ca - Where You Swap To Gain https://pastebin.com/RvNLzHYq

Yahoo! PH Purple Hunt 2.0 Ad Compromised ! Earlier the other day, I was browsing through the Yahoo! PH site and the Yahoo! Purple Hunt 2.0 ad caught my attention. Curious as I am, I clicked on the ad and surprisingly my browser downloaded a suspicious file named com.com. Apparently this ad redirected me to a randomly generated URL similar to the following which, unfortunately, led to the malicious download: hxxp://want6.{BLOCKED}.com/se/3da19bea8f9c03e96c9b1acad9cce5a88a2244f0a34d69 c09b8d3198b2797726789be0228c0df3c762ed088a2327b07f4a183fa6fa753b0acfd7f0afc2d2b 13b801ba978269fcda413f53e/960b0a2a/com.com hxxp://nose8.{BLOCKED}.com/se/3da19bea8f9c03e96c9b1acad9cce5a88a2244f0a34d69c 09b8d3198b2797726789be0228c0df3c762ed088a2327b07f4a183fa6fa753b0acfd7f0afc2d2b 13b801ba978269fcda413f53e/960b0a2a/com.com hxxp://letter6.{BLOCKED}.com/se/3da19bea8f9c03e96c9b1acad9cce5a88a2244f0a34d69c0 9b8d3198b2797726789be0228c0f3c762ed088a2327b07f4a183fa6fa753b0acfd7f0afc2d2b13 b801ba978269