Showing posts with label Hacking News. Show all posts
Showing posts with label Hacking News. Show all posts

Sunday 23 November 2014



Michael jordan Jones(@CEHSecurity), any Protection examiner, claims to own found a crucial security weeknesses within the auction web sites web site intended for staff members which authorized them to be able to publish any backdoor shell.
Michael jordan explained in his twitter that he recommended about the weeknesses to be able to auction web sites. A new screenshot published in his tweets bank account implies that they can publish any 'shell. php' data file within the subsequent area:

"https: //dsl. auction web sites. com/wp-includes/Text/Diff/Engine/shell. php"

At the time of publishing, the data file remains. The final changed day in the data file is actually 12 , 2012. It truly is pretty doable to change the TimeStamp. And so, i am unclear through if your data file possibly there is.

Seeking to accessibility the covering results in blank site. It means often the examiner possess changed the covering to own only if a unique enter is actually handed down or even it's not at all any covering.

Michael jordan in addition have found any corner website scripting weeknesses within the auction web sites Investigation Labs page(labs. auction web sites. com).




Investigator finds vulnerability in ebay web sites as well as claims he uploaded a shell on ebay

Saturday 22 November 2014


Safety measures scientists have found an entire fresh  type  associated with  "Man-in-the-Middle" (MitM) attack  in the  wild targeting smartphone  AND ALSO  tablets users  at   machines   operating  either iOS  or maybe  Android  About the  world.

The MitM attack, dubbed DoubleDirect,  allows   a  attacker  to help  redirect  a great  victim’s traffic  involving   greatest  websites  just like  Google, Facebook  ALONG WITH  Twitter  to   a great  device controlled  with the  attacker.  soon after  done, cyber crooks  may  steal victims’  helpful   Particular  data,  like   e-mail  IDs,  Sign in  credentials  AND  banking  particulars   ALONG WITH   will  deliver malware  towards the  targeted mobile device.

San Francisco-based mobile  protection   business  Zimperium  comprehensive   the  threat  inside   a  Thursday blog post, revealing  that this  DoubleDirect  technique   is usually  being  used   by  attackers  at the  wild  in  attacks against  ones  users  regarding   world-wide-web  giants  similar to  Google, Facebook, Hotmail, Live.com  AND ALSO  Twitter, across 31 countries,  such as   your current  U.S.,  your current  U.K.  ALONG WITH  Canada.

DoubleDirect makes  USE   involving  ICMP (Internet Control Message Protocol) redirect packets  in order to  change  your own   nav  tables  of the  host —  taken   from  routers  to  announce  a great  machine  of the   far better  route  regarding   the  certain destination.

In addition  to  iOS  AND ALSO  Android mobile phone units, DoubleDirect likely focuses on Macintosh OSX users  Equally  well. However, users  regarding  Windows  AND ALSO  Linux  are usually  immune  for the  attack  considering that the   their   operating  systems don't accept ICMP re-direction packets  It   carry   your own  malicious traffic.

"An attacker  will   likewise   MAKE USE OF  ICMP Redirect packets  in order to  alter  your current   nav  tables  on the  victim host, causing  your current  traffic  to  flow  from   a good  arbitrary network path  with regard to   a   Personal  IP," Zimperium warned. "As  a good  result,  your current  attacker  will probably   intro   a  MitM attack, redirecting  your  victim’s traffic  to help  his device."

"Once redirected,  ones  attacker  will  compromise  the  mobile device  coming from  chaining  your  attack  in   a good   excess   consumer  Side vulnerability (e.g.: browser vulnerability),  AS WELL AS   with  turn,  provide   a  attack  within   gain access to   for the  corporate network."

The  protection   company   validated   the  attack  AND   The item   functions   towards  latest  ones   of  iOS,  just like  version 8.1.1;  almost all  Android devices,  including  Nexus  5   AND ALSO  Lollipop;  AND ALSO   from  OS X Yosemite.  your   corporation   also  showed users  How you can  manually disable ICMP Redirect  on   it is  Macs  to help  remediate  the  issue.

"Zimperium is usually liberating this facts in your   date   in order to  increase awareness  Equally   a few   functioning   method   vendors  have yet  to help  implement  protection   right now   from  ICMP Redirect attacks  In the same way   There are  attacks in-the-wild,"  your current  post reads."

The  institution   offers   provided   an overall total  Proof-of-Concept (PoC)  to its  DoubleDirect Attack, users  can  downloaded  The item   from the  web.  This  demonstrates  your current  possibility  of any  full-duplex ICMP redirect attack  coming from  predicting  your own  IP addresses  your own  victim tries  in order to   Relate  to,  by  sniffing  your own  DNS traffic  of your  target;  ones   after that  step  includes  sending  the  ICMP redirect packet  to help   all  IP addresses.




DoubleDirect MitM Attack Targets Android, iOS ALONG WITH OS X Users


Antivirus company Avast claimed the item got the online community not online following a hacking assault affected the databases.

Consumer brands, electronic mail details, chip brands as well as account details were being affected in this particular assault. Your break the rules of failed to involve almost any financial information, licence or every other information.

As you move the account details are usually hashed(SMF community application utilizes SHA-1 which has a salt for you to keep ur passwords), it will not acquire miss the hacker for you to crack the particular hashes. Your longer the particular password, the particular tougher it's for you to crack.

In accordance with Avast blog post, the particular security precautions split the actual rules of impacts lower than 0. 2% (about 500, 000) of Avast's 2 hundred mil consumers.

People who utilizes a similar password on some other internet websites ought to adjust individuals account details quickly.



Until now, their own community employed a great start supplier community application referred to as "Simple Products Forum(SMF)". It appears the particular Avast will be having an dated type of SMF.
Avast claimed it's right now "We are now rebuilding the particular community as well as shifting the item to another application platform" which will be protected a single.





Avast online community hacked, user name as well as password stolen

Friday 21 November 2014



ToDay I will show you how to hack Credit Card.Now a days hacker hack Credit Card and make alot of shopping with it.

This Article is about how hacker hack Credit Card. 

This is For Educational Purpose ... Try it At Your Own Risk
Hahahahahahahaha 

 Go Go Gone :p

How To Hack Credit Card



This Is For Education Purpose Try It At Your Own Risk

Dork list of Israel website : http://pastebin.com/Fqu0ZkRY

or Click Here.... 


Google Dork For Israel Website



Hackers United Nations agency claimed to own compromised the info server of Domino's dish have demanded a ransom of €30,000 to forestall the general public revelation of customer's information. 

The hacker cluster going by the name of Rex Mundi aforesaid they hacked into the servers of Domino's dish France and Belgique. 

The hackers have managed to transfer quite 592,000 client records from Dominos France and fifty eight,000 records from Belgian web site. They claim the compromised info contained sensitive data like customer's full names, addresses, phone numbers, delivery directions, email IDs and passwords. The cluster gave a point in time of 8PM CET for Dominos to pay regarding all of them. "If there actually are undertaking not perform hence., we're going to post all of the info in our possession on the net." The cluster aforesaid. Domino's France announce a series of tweets within which it acknowledged the hack and suggested users to alter their passwords.





Dominos Pizza hacked, details of 650k customers leak

Thursday 20 November 2014



UPS Store, a subsidiary of UPS, same that fifty one North American nation Stores in twenty four States were hit with a malware that wasn\'t detected by current Antivirus code.

The breach puts customers WHO used a credit or charge account credit at one amongst the affected locations between Gregorian calendar month twenty,2014 and August eleven in danger. 

Customer info which will are exposed during this breach includes names, communicating addresses, email addresses and payment info. the corporate employed associate degree IT Security firm to conduct rhetorical investigation when receiving a notification a few "broad-based malware "intrusion" from U.S.. The UPS Store same it eradicated the" malware as of August eleven. the corporate is giving identity protection and mastercard watching services to wedged customers.




UPS store from 51 destinations struck having Adware and spyware, Clients' Card files vulnerable.

Wednesday 19 November 2014



Around 5 million Gmail user names and related passwords have been leaked in Russian Bitcoin security forum.

Is Google got hacked?
No, the leak was not the result of a security breach of Google systems.  The dump is said to have been obtained from other websites.

So, if you have used the same password used anywhere else, your gmail account could be compromised.

Google's response
"We found that less than 2% of the username and password combinations might have worked, and our automated anti-hijacking systems would have blocked many of those login attempts. We’ve protected the affected accounts and have required those users to reset their passwords." Google wrote.



What You should do?

  • There are few websites available online to check whether your gmail ID have been compromised or not. 

  • My suggestion is don't use them.  I suggest everyone to change the password.(I believe most of the people keep the same password for years, so it's better to change now).

  • If you have not enabled 2-step-factor feature, it is good to enable it.

  • Never use the gmail password in any other websites.




About five million Gmail IDs and passwords leaked


JQuery.com, the official web site of the favored javascript library JQuery(used by nearly seventieth of high ten,000 websites), had reportedly been compromised and had served papers stealing malware.

RiskIQ declared that they'd detected a malicious script in jquery.com that redirects guests to a web site hosting the RIG Exploit kit.

The redirector domain(jquery-cdn[dot]com) utilized in this attack has been registered on Sep eighteen, an equivalent day on that the attack was detected by RiskIQ.  RiskIQ believes that this domain was meant specifically to mix into the web site.

The good news is that RiskIQ found no indication suggesting that the JQuery library itself has been affected.  Otherwise, several further websites exploitation the JQuery CDN to load the JQuery library would even have been affected. 

The folks at JQuery.com says they found no logs or proof that their server was compromised.

"So so much the investigation has been unable to breed or ensure that our servers were compromised. we've got not been notified by the other security firm or users regarding jquery. com confirming any kind of skimp on. " JQuery. com world-wide-web indication write-up expresses.





jQuery.com reportedly hacked to serve malware


As days are passing, encryption is turning into a requirement for each client sitting on the web. Numerous tech monsters including Google, Apple and Yahoo! are embracing encryption to serve its clients security and protection taking care of business, yet as indicated by Electronic Frontier Foundation (EFF), the innovative Web security ought not be restricted to the wealthiest engineering firms.

The non-benefit establishment EFF has joined forces with huge and rumored organizations such as Mozilla, Cisco, and Akamai to provide free HTTPS/SSL declarations for those running servers on the web toward the start of 2015, to sway individuals to scramble clients' associations with their sites.

As of not long ago, exchanging web server over to HTTPS from HTTP is something of a bother and cost for site administrators and famously hard to introduce and keep up it. Anyhow, after the dispatch of this new free testament power (CA), called Let's Encrypt, it will be considerably all the more simple for individuals to run scrambled, secure HTTPS sites.

We should Encrypt expects to give free, as well as a simpler approach to get and utilize an advanced cryptographic endorsements (TLS) to secure site, and its essential for each webpage administrator as authentications give a computerized instrument to let a program believe a Web server's encryption.

"We should Encrypt is another free endorsement power, based on an establishment of participation and openness, that lets everybody be up and running with essential server endorsements for their areas through a straightforward a single click process," its official site clarifies. "For some server administrators, getting even a fundamental server declaration is simply excessively of a bother. The application methodology can be befuddling. It normally costs cash. It's precarious to introduce effectively. It's an agony to redesign." 

We should Encrypt is a consolidated exertion of Firefox program producer Mozilla, system supplies creator Cisco Systems, Internet content merchant Akamai Technologies, computerized time rights advocate Electronic Frontier Foundation, authentication supplier Identrust and scientists from the University of Michigan. 



Web Developers who need to test the administration can go to Github, where its code is accessible freely. One thing to note is that its is not yet implied for creation servers, and in the event that you overlook this cautioning, there are risks that your clients will see bunches of warnings about your endorsement which will dependably continue concealing your site from your client. 


"This task ought to support regular information security for just about everybody who makes use of online, " EFF Engineering Tasks Overseer David. Eckersley said in an announcement. 

"At this moment when you utilize the Web, huge numbers of your correspondences your client names, passwords, and searching histories—are powerless against programmers and others. By making it simple, quick, and free for sites to introduce encryption for their clients, we will all be more secure online.






How about we Encrypt — A Certificate Authority to Provide Free SSL Certificates for Entire Web

Tuesday 18 November 2014



Security analysts from SektionEins have found a vital SQL Injection vulnerability in Drupal CMS that leaves an outsized range of internet sites that uses Drupal in danger.

Drupal introduced a information abstraction API in version seven. The aim of this API is to forestall SQL Injection attacks by sanitizing SQL Queries. 

But, this API itself introduced a replacement and demanding SQL Injection vulnerability.  The vulnerability allows attackers to run malicious SQL queries, PHP code on vulnerable websites.  A prosperous exploitation permits hackers to require complete management of the positioning. 

This vulnerability are often exploited by a non-authenticated user and has been classified as "Highly Critical" one.

SektionEins did not unharness the POC however discharged AN informative  with technical details.

The vulnerability exists within the expandArguments perform that is employed for increasing arrays to handle SQL queries with "IN" Operator.  

The vulnerability affects Drupal core seven.x versions previous.  Users of 7.x versions area unit suggested to update their CMS in real time. 

You can additionally directly modify the "includes database.inc" file to patch this vulnerability; amendment the "foreach ($data as $i => $value) {"  in 739 line.

An evidence of Concept has been discharged online that permits anybody to change the secret word of administrator record. In this way, better Hurry UP! Overhaul your Drupal CMS. 

One of the reddit client "fyukyuk" posted a HTTP post ask for that endeavors this helplessness. - 

The accompanying python Code changes the administrator secret key of powerless Drupal to "administrator" (Tested with Drupal forms 7.21,7.31).




Hacking News

SQL Injection attacks





Critical SQL Injection vulnerability in Drupal seven.x



The ness – Lewes Ferry has confirmed its payment information systems were infiltrated by hackers UN agency took payment card information on sure systems at the Cape May-Lewes Ferry’s terminals and vessels. 

Delaware River and Bay Authority(DRBA) that operates the ness – Lewes Ferry learned of a attainable information breach on Gregorian calendar month thirty - a similar day Jimmy John's learned of the information breach.

The organization with the assistance of third-party cyber rhetorical specialists has determined that its card process systems about food, beverage , and retail sales solely were compromised. 

Credit and revolving credit information of people UN agency have created purchases from Gregorian calendar month twenty, 2013 through August seven, 2014 at the ness – Lewes Ferry ’s terminals and vessels in danger. The malware planted by the cyber criminals has been eliminated. the cardboard information accessed by the malware includes card numbers, cardholder's names or card expiration dates. 

DRBA is giving free identity protection services, together with credit watching to affected customers.





Cape May-Lewes Ferry Confirms mastercard information Breach



Researcher eating apple Hall says he found proof that Romanian hackers used the recent "ShellShock" vulnerability to hack variety of position websites as well as Yahoo, WinZip. 
Hall aforesaid he well-read Yahoo, WinZip and Federal Bureau of Investigation concerning the problem.

Yahoo earlier these days aforesaid their servers were compromised by the ShellShock vulnerability.  But, Yahoo's Chief data Security Officer Alex Stamos printed a press release in Ysecurity that the breach isn't a results of 'Shell Shock'.

"Three of our Sports API servers had malicious code dead on them this weekend by attackers searching for vulnerable Shellshock hosts. inches Stamos wrote.

"These attackers had mutated their exploit, [and] this mutation happened to precisely work a command injection bug in a very observance script our Sports team was victimization at that moment to dissect and right their internet logs."

The company claimed hackers failed to gain access to any user knowledge and also the affected servers square measure accustomed give live streaming for its sports service that do not store user knowledge.

Throughout reaction, Hallway aforesaid inside his diary "The. Yahoo! infiltration WAS from the 'Shellshock' vulnerability, and it failed to originate on the sports servers / API’s.

Hacking News






Yahoo says ShellShock vulnerability isn't the reason for the servers hack

Monday 17 November 2014



The PHP advancement group has discharged new forms keeping in mind the end goal to alter three security vulnerabilities -one of them is said to be a basic one and prompts remote code execution. 

The weakness distinguished as "CVE-2014-3669" can result in a whole number flood when parsing uncommonly created serialized information with the unserialize ().The defenselessness is just a 32-bit framework, yet the peril is brought about by the rupture and that the serialized information regularly originate from client controlled channels. 

Likewise, the overhauls have been adjusted mistakes connected with the presentation of an invalid byte in the library twist, calling the harm dynamic memory amid transforming of the changed information as an issue of exif_thumbnail () in picture handling (CVE-2014-3670), and also cradle flood in the capacity mkgmtime () from the module XMLRPC (CVE-2014-3668). 

These vulnerabilities were found by the Research lab of IT security organization High-Tech Bridge. 

The new forms 5.6.2,5.5.18 and 5.4.34 location these three vulnerabilities.

PHP has altered a few vulnerabilities permitting remote code execution

Sunday 16 November 2014

 

A vital vulnerability inside the favorite web-based Bugs following application "Bugzilla" allows cyber-terrorist to examine the main points of any kind of undisclosed vulnerabilities.

Bugzilla is usually an open origin bug following method put together by Mozilla as well as being used simply by numerous large businesses as well as RedHat, Linux Kernel, Gnome, Apache.

Being exposed research workers in Look at Place Software Systems described the actual bug in order to Mozilla which allows anyone to register along with email with the specific area (for example, admin@mozilla. com) as well as avoid email validation.

Specialist exploited the actual vulnerability as well as managed to develop manager is the reason the actual Mozilla. org, Mozilla. com as well as Bugzilla. org.

Gervase Markham through Mozilla composed reveal technical write-up. The particular assault technique definitely seems to be "HTTP Parameter Pollution(HPP)" approach.


"Supplying many HTTP boundaries while using the same title could cause an application in order to think of ideals throughout unexpected approaches. Through taking advantage of most of these side effects, a attacker may be able to avoid insight validation, result in application errors or modify internal variables values."

Patch:
Mozilla has released some sort of protection revise which not only sections this kind of benefit escalation vulnerability and also several additional pests as well as Mix Internet site scripting as well as Information Leak. 

 Bug Tracker "Bugzilla"

 Mozilla vulnerability 

 Hacking News 

A Bug in Bug Tracker "Bugzilla" exposes Non-public Bugs



Russian Cyber-terrorist, dubbed the "sandworm team", are already identified taking advantage of some sort of earlier unknown vulnerability inside Microsoft's windows Os's, reviews iSight.

The particular class offers used this specific zero-day use to crack desktops employed by NATO, Ukraine Govt, Western european Telecommunications organizations, Strength areas as well as US school business.

The particular attack commences having a spear-phishing electronic mail that contain some sort of malicious power point report that will uses the susceptability as well as infects subjects appliance having a spyware and adware.

"The susceptability is present due to the fact windows allows the OLE packager (packager. dll) to down load as well as implement INF data. "

".. Whenever dealing with Ms PowerPoint data, the packagers allows some sort of Package OLE target to referrals human judgements outer data, including INF data, through untrusted sources... This may lead to the referenced data to be downloadable in the case of INF data, to be accomplished with certain commands"

The particular susceptability can be supposedly influencing most versions on the  windows operating systems through Landscape SP1 to  windows 8. 1. Furthermore, it influences windows servers '08 as well as 2012.



Russian Cyber-Hacker use windows 0-Day use to crack NATO, Ukraine

Saturday 15 November 2014


Home Depot opposition. aforementioned hackers got into its systems last Apr by stealing a parole from a marketer, gap a small hole that grew into the most important retail-credit-card breach on record.

Home Depot 53 Million Email Addresses Hackers Shows
Hackers Home Depot 53 Million Email Addresses Hacks

The Home Depot 53 Million Email Addresses Hackers Shows

© All Type of Security And Hacking Reviews Distributed By Blogspot Templates | Designed By Template Trackers