Search This Blog
Powered by Blogger.

Blog Archive

Labels

Footer About

Footer About

Labels

Load More
Trendy Right Now

Popular Posts

Pakistan Hackers
Breaking News Defaced Website hacker news Pakistan Hackers

Jaya TV website hacked and defaced by Pakistani Hackers


Hackers from Pakistan Haxors Crew has hacked into Jaya TV network official website. The main domain and subdomain have been defaced.

Jaya TV is one of the major Tamil language satellite television channels based in Chennai, India.

The following domains are affected : jayatv.tv , artist.jayatv.tv and cinema.jayatv.tv.  The group also hacked into aiadmkallindia.org.


The group also defaced the Canara Bank Employees' Union website(cbeu.in). They also leaked database comproImised from the server.

At the time of writing, all of the affected websites still showing the defacement page.  "jayanews.in" shows "under maintenance" error page.

*Update:
When contacted by the press Jaya TV network denied that it is not their official website.

*Update 2:
But some analysis shows that it  is indeed an official site. The archive version of the site shows tv schedules and also the official contact numbers. And the domain has been used for a loong time.

Proof: http://web.archive.org/web/20130920040126/http://www.jayatv.tv

Proof 2: http://who.is/whois/jayatv.tv
Read more »
Malware Report
hacker news IT Security News Malware Report

Searching for 'Google chrome browser' in Yahoo may lead to sirefef infection



Researchers from ThreatTrack Security Labs have found that searching for "Google Chrome Browser" in Yahooo Search Engine displays rogue ads.

Clicking the rogue ad leads users to a website that serves fake google chrome and urges users to install their own download manager "WeDownload Manager".

This is not new that rogue websites serving a free software to download. They are usually modified to install adware. However, in this case, the fake browser served in this website is notorious "Sirefef/ZeroAccess" malware.

Once the fake browser is executed, it delete itself and install Adobe Flash Player while it infect the victim's system in the background.

The malware disables the windows security and prevent the OS from updating automatically.
Read more »
Security Breach
Breaking News hacker news IT Security News Security Breach

Buffer social Media app admits security breach, facebook and twitter access tokens stolen


Buffer, an app that allows users to schedule their social media posts, has recently acknowledged that hackers breached their website.

The hackers managed to steal the facebook, twitter access tokens of users stored in their server that allowed the hackers to post Spam on behalf of Buffer's users.

However, CTO Sunil noted in their blog that hackers were not able to get access to any passwords, billing information or any other sensitive information.

The company immediately took a step and invalidate all twitter access tokens and added encryption for all of them. He also noted they are using an extra security parameter for facebook API calls to make it more secure.

The company managed to identify the source of the security breach and closed the vulnerability.
Read more »
Information Security News
Ground Zero Summit hacker news Information Security Information Security News

India to prepare Army of Reverse Engineers to Counter Cyber Attacks

National Security Database, an initiative of Information Sharing and Analysis Center (ISAC) in association with Ground Zero Summit 2013,  organized a Seminar on Reverse Engineering in New Delhi. The Seminar was organized to identify and create the need for the most credible and valuable Information Security professionals in India, especially in Reverse Engineering, to protect the National Critical Infrastructure and economy of the country.


The Seminar touched upon the growing need of Reverse Engineers in the country to counter cyber attacks and piracy. As the $100 billion information technology industry seeks to chart a new course by fostering software product companies, Reverse Engineering to become a promising field for jobs in the IT and software development sector.

According to NSD, there are less than 5,000 Reverse Engineering experts currently in India. NSD in collaboration with various Academic Institutions across India aims to increase the number of Reverse Engineering professionals in the country to 1 lakh by 2015, through training and awareness.


National Security Database has joined hands with Ground Zero Summit (G0S) 2013 and is promoting Asia’s largest Information Security Summit (G0S) scheduled to take place from 7-10 November, 2013 at The Ashok, New Delhi.


Speaking at the Seminar, Mr. Rajshekar Murthy, Director, National Security Database, said “Hacking has become a growing threat to Indian IT industry. Some recent data theft cases by hackers has made India's $100 billion IT industry a primary target. The acute shortage of Reverse Engineering professionals will further hit the IT industry and the economic loss will grow exponentially due to piracy and insecure coding.”


“Today, reversing techniques are used for 'studying' viruses and malwares to help catch the criminals, create 'patches' to clean the viruses from computers and mobiles and also test closed systems and technologies for quality assurance and security vulnerabilities. Reverse engineering experts are immensely useful in the intelligence and defence sector for offensive research such as exploit development and embedded systems security. Companies can also hire reverse engineering experts to oversee security aspects during product design stage and protect their software from being copied or have security issues”, further added Murthy.

National Security Database has developed Intensive and in-depth Reverse Engineering Boot-camps offered by Information Sharing and Analysis Center (ISAC) approved partners. The program helps engineers to understand different aspects of application security, learn anti-cracking techniques and to create secure code for internal use that cannot be easily hacked. Through these programs the engineers also learn different approaches for Reverse Engineering and Application to get a strong foundation in dealing with new Malwares and gain expertise to analyze it.
Read more »
Security News
Breaking News hacker news IT Security News Security Advisory Security News

WordPress 3.7 released for lazy admins, automatic security update


Wordpress finally come with an idea to put an end to security risks of failing to update the CMS.  Yes, you heard it correctly, they have added a new feature "Automatic update".

The new version 3.7 has no special security bug fixes but they have enabled a good feature that will prevent your CMS being hacked because of outdated versions.

Besides the "Updates while you sleep" feature, they have also added a feature to estimate the strength of your password and "support for automatically installing the right language files and keeping them up to date".

This is quite impressive move from Wordpress.  At least, from now onwards, the lazy admins no need to care about updating the wordpress whenever there is security release, it will be automatically done.

It's just come to mind how many of the lazy admins are going to update to the latest version 3.7!
Read more »
Security News
DDOS Attacks Security News

Agency claims NSA.gov down because of "Internal Error"

National Security Agency (NSA) website is down for several hours. There had been speculation on the internet that website is down because of denial of service attack from Anonymous.

However, the Agency denied it was under DDOS attack and says it is just "Internal Error" during a scheduled update..


"The issue will be resolved [Friday] evening. Claims that the outage was caused by a distributed denial of service attack[DDOS] are not true." An NSA spokesperson told ABC News.



Read more »
Hacking News
Bangladesh Grey Hat hackers Defaced Website hacker news Hacking News

Zambian Anti-Corruption Commission and AB Bank websites hacked by Bangladesh Grey Hat Hackers

The Bangladesh Grey Hat hackers group hacked into Zambian Anti-Corruption commission website(acc.gov.zm) and AB Bank Zambia website(abbank.co.zm).

The hacker has added their defacement page at "hxxp://www.acc.gov.zm/wp-content/themes/index.php", "hxxp://www.abbank.co.zm/wp-content/index.php".  Both websites are appeared to be using outdated wordpress version.


As a result of security breach, the home page of the affected websites show Database connection error message.


The hacker group also hacked into United Nations in Botswana website and left it defaced(http://www.bw.one.un.org/images/), the home page also shows the database connection error message.

At the time of writing, all of the hacked websites are still showing the defacement page.
Read more »
hacker news
Anonymous hacktivists hacker arrested hacker news

12 Year old Anonymous hacker hacks websites for Video Games


A 12 year old school boy from Quebec has admitted hacking several government and police websites as part of Anonymous operations  in spring 2012.

According to Toronto sun report, the boy whose name can't be published is said to have involved with computer since he was 9 year old.

His actions were not politically motivated.  He traded the pirated information for video games.

The hacker is said to have hacked websites including government sites of Chile, Montreal Police sites, , the Quebec Institute of Public Health and some other websites.


Court heard he used different cyber attacks including defacing websites, compromising data from servers and Denial of service attacks.
Read more »
Security News
hacker news Malware Report Security News

SiliconIndia, PHP.net blocked by Google Safe Browsing

Earlier today, i noticed the Google Safe Browsing marked the official website of PHP programming language as malicious.  As a result, users who try to access "PHP.net" left with a warning message saying "The Website Ahead Contains Malware!"

We are not sure whether it is false positive or not.  But, at the time of writing, the warning message has been removed.

Just few minutes ago, i got notified by one of my friend that SiliconIndia.com is also blocked by the Google Safe Browsing which has Global alexa rank around 4k and India alexa rank around 400.


SiliconIndia is the largest community of Indian professionals featuring technology, Business, entrepreneur news, Best Jobs and career opportunities, Online.

*Update*: 
We have been pointed out by one of reader to Hacker News link(news.ycombinator.com/item?id=6604251).  It appears the PHP.net is really infected with a malicious script that injects iframe to a malware website.
Read more »
Data Breach
Data Breach

Stolen Laptops lead to Hospitals Data breach, 700+k patients details compromised

About 729,000 patients data at risk after thieves managed to break into the AHMC Hospital’s administrative offices and steal two laptops on October 12.

The Los Angeles Times reports that the stolen laptops contain names, Medicare/insurance IDs, diagnosis codes,insurance/patient payments and social security numbers.

The suspects managed to break in despite the fact that the office has good security protection with a video-monitoring , gated & patrolled by security.

The theft was discovered on October 14, the security camera video evidence showed that the theft occurred on Oct. 12.  A complaint has immediately been filled at Al hambra Police Department.
Read more »
RedHack hackers
Database Leaked hacker news RedHack hackers

RedHack leaks document about Turkey's Minister for EU Affairs & Chief Negotiator


The Turkish hacktivists RedHack has leaked documents which is said to have details of Egemen Bağış,  the Turkey's Minister for EU Affairs & Chief Negotiator.

The group provided a ".onion" link in their official tumblr page which is said to have contain the documents.  One of the documents contains details about Egemen stay at London Hilton Park Lane.

" When we have checked the bill we have realised that Egemen Bagis was confused between tweeting verses and mixing the wines and whiskeys. These people call themselves devoted believers in religion. Really? " Hackers said in their post.


Another document is claimed to have revealing :the sophisticated details of the lifestyle of  Egemen and Beyhan Bagis, their daily routines and dairy"

The group also is claimed to have leaked a document contains "the list of businessman and their contact details that would join PM Erdogan during his US visit" and more documents has been uploaded in their onion page.
Read more »
Subscribe to: Comments (Atom)