The Hacker News | #1 Trusted Cybersecurity News Site — Index Page

Source Code is the New Hacker Currency ! No doubt you've been paying attention to the data breaches pile up lately... but have you noticed a trend? If you wade through the hype and hyperbole, dig into the details of the most prolific intrusions in recent history you'll notice one thing that shines like a neon sign. "Source code" is the new hotness on the hacker market. It's quite interesting to see this evolution primarily because many of us are used to defending the 'endpoints'... because that's where the data is, right? I think we may be seeing a shift here. Much like the tectonic plates that cause earthquakes, there are some though-forces that are currently colliding deep under the surface and may cause certain mayhem. "There are no borders" For many years now, much like you I've been reading articles and hearing talks about how the enterprise attack surface is fractured and splintered -causing an ever-increasing opportu

Hacker posts screenshot of sex video on SPAD website ! The Land Public Transport Commission (SPAD) website was hacked yesterday and a screenshot of the controversial sex video allegedly involving a top politician was posted on its main page. Appearing on the website were two images, one depicting the alleged politician in the sex video and the other of Opposition Leader Datuk Seri Anwar Ibrahim after court proceedings, with the shots time-stamped Feb 21 and Feb 22 respectively. A check by The Star showed that the website, www.spad.gov.my was also inaccessible to users. Accompanying the images was an address link to controversial blogger PapaGomo (Powered by Papa Gomo www.papagomo.com) which featured clips of the sex video after it surfaced on online portal YouTube. It was believed that SPAD was the only government agency website to be hacked and defaced. The website was restored at about 7pm. SPAD chairman Tan Sri Syed Hamid Albar expressed surprise and regret that the

Over the past two years, a shocking  51% of organizations surveyed in a leading industry report have been compromised by a cyberattack.  Yes, over half.  And this, in a world where enterprises deploy  an average of 53 different security solutions  to safeguard their digital domain.  Alarming? Absolutely. A recent survey of CISOs and CIOs, commissioned by Pentera and conducted by Global Surveyz Research, offers a quantifiable glimpse into this evolving battlefield, revealing a stark contrast between the growing risks and the tightening budget constraints under which cybersecurity professionals operate. With this report, Pentera has once again taken a magnifying glass to the state of pentesting to release its annual report about today's pentesting practices. Engaging with 450 security executives from North America, LATAM, APAC, and EMEA—all in VP or C-level positions at organizations with over 1,000 employees—the report paints a current picture of modern security validation prac

Bahrain says Iranian hackers hit government website Bahrain's authorities said late Saturday that Iranian hackers hit a government website. In retaliation, the Bahrain Chamber for Commerce and Industry is urging a boycott of Iranian goods, The Associated Press reported. According to the government Bahrain News Agency, Iranian computer hackers tried to access the official website of the Housing Ministry in attempts to seek data on aid recipients. But the agency gave no further details, although the hacking could be conceivably linked to Shiite allegations that a disproportionate share of housing aid goes to Sunnis. To retaliate, the Bahrain Chamber for Commerce and Industry called for a countrywide boycott of all Iranian goods and services because of "blatant interference in Bahrain's domestic affairs and threats to the kingdom's national security." The chamber also appealed for other nations in the six-member Gulf Cooperation Council to join the proposed embargo. "It will

#Anonymous attacks Iranian state websites The infamous Anonymous hacking group has crippled a string of Iranian state websites including those of the Office of the Supreme Leader, state police and the Islamic Revolutionary Guards in attacks launched yesterday. The coordinated Distributed Denial of Service attacks were launched at 5am GMT and targeted more than a dozen Iranian Government sites under the so-called Operation Iran. Anonymous had timed the attacks to coincide with International Workers' Day, commemorating the first nation-wide general strike in the US, which took place on May 1 in 1886. "OpIran attacks the governmental websites responsible for oppressing freedom of speech, information or ideas," the group wrote in a statement explaining the reasons for the attacks. The website of the Office of the Supreme Leader, Sayyid Ali Khamenei, was taken offline about an hour after attacks according to the groups' hit list but had been reinstated at the ti

ArpON 2.2 released - ARP handler inspection ! ArpON (ARP handler inspection) is a portable handler daemon that make ARP secure in order to avoid the Man In The Middle (MITM) through ARP Spoofing/Poisoning attacks. It detects and blocks also derived attacks by it for more complex attacks, as: DHCP Spoofing, DNS Spoofing, WEB Spoofing, Session Hijacking and SSL/TLS Hijacking & co attacks. This is possible using three kinds of anti ARP Poisoning tecniques: the first is based on SARPI or "Static ARP Inspection" in statically configured networks without DHCP; the second on DARPI or "Dynamic ARP Inspection" in dinamically configured networks having DHCP; the third on HARPI or "Hybrid ARP Inspection" in "hybrid" networks, that is in statically and dynamically (DHCP) configured networks together. SARPI, DARPI and HARPI protects both unidirectional, bidirectional and distributed attacks: into "Unidirectional protection" is required th

President of Pakistan – Database Hacked By Mohit Pande Aka Toshu Hack Proof - https://pastebin.com/Vta6hVWT Hacked Site :  https://www.presidentofpakistan.gov.pk/