Affichage des articles dont le libellé est Anonymous. Afficher tous les articles
Affichage des articles dont le libellé est Anonymous. Afficher tous les articles

How To Hack ISIS? Anonymous Publishes Full Hacking Guide


How To Hack ISIS? Anonymous Publishes Full Hacking Guide

Anonymous Publishes Guides To Identify and attack websites and social media accounts of ISIS online.

Hactivist group Anonymous claim to have taken down more than 5,500 Islamic State-affiliated Twitter accounts in response to the terror attacks on Paris.

The Hacktivist group Anonymous can guide you that how to get involved in the cyber war against ISIS. After announced cyber war ISIS calls Anonymous 'IDIOTS', but after the day Anonymous post the new Video.

HackersOnlineClub reported earlier that Anonymous declared war Against terrorist group ISIS. and start the campaign #OpParis which aim to identify ISIS accounts.

Here are three guides:
1. 'Noobguide' How to hack and join CYber War
2. 'Reporter': How to set up twitter Bot to investigate ISIS-affiliated social media accounts.
3. 'Searcher': To Find ISIS Websites.




Meanwhile ISIS produced its own guide warning its supporters how to prevent being hacked by Anonymous. An ISIS-affiliated account of messaging app Telegram is alleged to have released a message instructing followers what to do to stop being hacked.

Webserver of Anonops was down today.
Read more

by Malik korrich ~ mercredi 18 novembre 2015 0 commentaires

Hactivist Group Anonymous Declared War on ISIS For #ParisAttacks


Hactivist Group Anonymous Declared War on ISIS For #ParisAttacks.

Anonymous released video in French message and said,

“These attacks cannot remain unpunished. Anonymous from all over the world will hunt you down. You should know that we will find you and we will not let you go. We will launch the biggest operation ever against you. Expect massive cyber attacks. War is declared. Get prepared.  The French people are stronger than you and will come out of this atrocity even stronger.”

Video:



Anonymoous was announced #OpParis as revenge for the recent ISIS terror attacks in Paris on Friday, 13 November 2015.

Anonymous also released More than 1000 of Twitter Accounts of ISIS supporter, leaked in Pastebin

Read more

by Malik korrich ~ lundi 16 novembre 2015 0 commentaires

Anonymous keeps its word and its members protest



The day of the Million March Protest finally came and the hacktivist group Anonymous kept its word. Yes, there was a march and there were marches in several places and these marches were attended by thousands of protesters. True to its word, the march was phenomenally successful but there were instances of violence where protesters clashed with the police resulting in injuries to the police officers and the arrests of the protesters.

But before we check what happen where, let us take a look at the background of the protest marches. A year ago, an unarmed black teenager Mike Brown was shot dead by a white police officer Darren Wilson in the United States of America. The grand jury did not convict the police officer resulting in his release. In the protest march that followed, Anonymous protested against the police officer. 



Anonymous members were threatened by the notorious racist group Ku Klux Klan (KKK).
It has been a year since the incident and Anonymous in its bid to oppose censorship, war and corruption as well as the racist incidents as mentioned above where the government or the government officials are involved, planned a march on 5th November 2015. Anonymous requested its members to join the protest and march again the injustice. The hacktivist group also stated that they will reveal the identity of Ku Klux Klan group members on this day.

Last month Anonymous tweeted that its members will release the list of 1000 KKK members and sympathisers on 5th November, the day of the march to build a resistance against the racial violence, one of the agenda it is supporting in the march. A few lists have already been released containing the names of KKK members but Anonymous has not yet confirmed whether the lists are released by its members.



The reason for selecting November 5th as a day of protest because it was the date back in 1605 when Guy Fawkes tried to blow the parliament of England. The mask of Guy Fawkes was made popular by the character V in the movie V for Vendetta. The mask is commonly used as the identity of Anonymous members. The mask as well as the date of 5th November is considered by Anonymous as symbolic in their protest against the tyranny of the governments.

But the march this year has turned out ugly. There were clashes between the Anonymous members and the police and few cars were burnt as well while protesting. Three police officers were injured in the protest and are hospitalised. Also one police horse was injured in the protest clash as well. 50 protesters are arrested. The incident happened in London where 18,000 Anonymous hacktivists, wearing their trademark masks were protesting.

In the United States of America, the protesters were held in several cities. A large number of protesters attended the march in Seattle. In Washington DC, there were several protesters who participated in the march with slogan “Nobody 4 President”. One of the placards held by a protester read, “If you stand for Nothing, you fall for Everything”. In California, Anonymous hacktivists protested outside the Los Angeles Times. In New York, there were protests outside Wall Street.


In other parts of the world, there were marches in Gautemala and Montreal. Also, there were marches in Amsterdam and Colorado. The march is an annual protest event of Anonymous that started in 2012. The current march was violent and led to clashes with police and damages to cars. Anonymous received a positive response from supporters from across the world. 

Anonymous is considered as a movement with no apparent head or leaders. These are general people and there are no guidelines for who can become its members.  


Read more

by Malik korrich ~ vendredi 6 novembre 2015 0 commentaires

TOR Released Beta Messenger A Cross-Platform Chat Program Based On Instantbird


TOR Released Beta Messenger A Cross-platform Chat Program Based On Instantbird.

Tor Messenger is a cross-platform chat program that aims to be secure by default and sends all of its traffic over Tor. 

It supports a wide variety of transport networks, including Jabber (XMPP), IRC, Google Talk, Facebook Chat, Twitter, Yahoo, and others; enables Off-the-Record (OTR) Messaging automatically; and has an easy-to-use graphical user interface localized into multiple languages.

InstantBird:
A number of messaging clients: Pidgin, Adam Langley's xmpp-client, and Instantbird. Instantbird was the pragmatic choice -- its transport protocols are written in a memory-safe language (JavaScript); it has a graphical user interface and already supports many natural languages; and it's a XUL application, which means we can leverage both the code (Tor Launcher) and in-house expertise that the Tor Project has developed working on Tor Browser with Firefox. It also has an active and vibrant software developer community that has been very responsive and understanding of our needs. The main feature it lacked was OTR support, which we have implemented and hope to upstream to the main Instantbird repository for the benefit of all Instantbird (and Thunderbird) users.

Instructions

  • On Linux, extract the bundle(s) and then run: ./start-tor-messenger.desktop
  • On OS X, copy the Tor Messenger application from the disk image to your local disk before running it.
  • On all platforms, Tor Messenger sets the profile folder for Firefox/Instantbird to the installation directory.
  • Note that as a policy, unencrypted one-to-one conversations are not allowed and your messages will not be transmitted if the person you are talking with does not have an OTR-enabled client. You can disable this option in the preferences to allow unencrypted communication but doing so is not recommended.
Read more

by Malik korrich ~ jeudi 29 octobre 2015 0 commentaires

13 Million Users Data Breached Of Free Web Hosting Company 000Webhost


13 Million Users Data Leaked With Plain Text Password Of Free Web Hosting Company 000Webhost.

000webhost is providing a free web hosting service for PHP and MySQL. The leaked data includes users names and e-mail addresses.

Troy Hunt explained in detail about this breach.
According to Forbes Report
Hunt discovered user accounts had their passwords reset, but without any direct notice to customers. When Hunt tried to login with his own email address, an auto-generated response told him his password had been reset by 000Webhost “for security reasons”, advising him to change his credentials before continuing. There was no public notification.

users started to complain on the site forum they could not access FTP servers used to host their website files.

Free WebHost said in Facebook Page

Hello,

We have witnessed a database breach on our main server.

What happened?
A hacker used an exploit in old PHP version to upload some files, gaining access to our systems. Although the whole database has been compromised, we are mostly concerned about the leaked client information.

What did we do about it?
First of all, we removed all illegally uploaded pages as soon as we became aware of the breach. Next, we changed all the passwords and increased their encryption to avoid such mishaps in the future. A thorough investigation to make sure the breach does not exist anymore is in progress.

What do you need to do?
As all the passwords have been changed to random values, you now need to reset them. DO NOT USE YOUR PREVIOUS PASSWORD. PLEASE ALSO CHANGE YOUR PASSWORDS IF YOU USED THE SAME PASSWORD ANYWHERE ELSE.

Client Area Password
Please visit Password Reminder tool at http://members.000webhost.com/forgot_password.php and enter your email address, the new password will be sent to your email. Afterwards, login to your account with the new password and manually set a new, secure password at http://members.000webhost.com/edit_your_details.php

Hosting Account Password
To reset the password for your hosting account (and FTP), visit "Change Account Password" section on control panel and enter a new password there.

Email Account Password
Email account passwords should be changed by visiting "Manage Email Accounts" section and clicking "Change password" for each email account.

MySQL User (Database) Password
MySQL user passwords are managed in "MySQL" section on control panel. In the "Action" field click the "Change Password" and set a new password there.

We apologize for this hassle but it has to be done to ensure your data is safe. We are going to upgrade our systems step by step and will be aiming to be super-careful in future.

Regards
000webhost Team "

Read more

by Malik korrich ~ mercredi 28 octobre 2015 0 commentaires

Sniffly To Sniffing Browser History Using HSTS And CSP


Sniffly Trick For Browser Fingerprinting. Sniffing browser history using HSTS + CSP.

Sniffly is an attack that abuses HTTP Strict Transport Security and Content Security Policy to allow arbitrary websites to sniff a user's browsing history. It has been tested in Firefox and Chrome.

How it works

I recommend reading the inline comments in src/index.js to understand how Sniffly does a timing attack in both FF and Chrome without polluting the local HSTS store. tl;dr version:


  1. User visits Sniffly page
  2. Browser attempts to load images from various HSTS domains over HTTP
  3. Sniffly sets a CSP policy that restricts images to HTTP, so image sources are blocked before they are redirected to HTTPS. This is crucial! If the browser completes a request to the HTTPS site, then it will receive the HSTS pin, and the attack will no longer work when the user visits Sniffly.
  4. When an image gets blocked by CSP, its onerror handler is called. In this case, the onerror handler does some fancy tricks to time how long it took for the image to be redirected from HTTP to HTTPS. If this time is on the order of a millisecond, it was an HSTS redirect (no network request was made), which means the user has visited the image's domain before. If it's on the order of 100 milliseconds, then a network request probably occurred, meaning that the user hasn't visited the image's domain.
Finding HSTS hosts

To scrape an included list of sites (util/strict-transport-security.txt, courtesy Scott Helme) to determine which hosts send HSTS headers, do:

$ cd util
$ ./run.sh > results.log

where 1 batch is 100 sites. You can override util/strict-transport-security.txt with a different list, such as the full Alexa Top 1M, if you want.

To process and sort the results by max-age, excluding ones with max-age less than 1 day and ones that are preloaded:

$ cd util
$ ./process.py > processed.log

Once that's done, you can copy the hosts from processed.log into src/index.js.

Running sploitz

Visiting file:///path/to/sniffly/src/index.html in Chrome should just work. In Firefox, CSP headers using the tag are apparently not supported yet, so you need to set up a local webserver to serve the CSP HTTP response header. My Nginx server block looks something like this:

server {
    listen 8081;
    server_name localhost;
    location / {
        root /path/to/sniffly/src;
        add_header Content-Security-Policy "img-src http://*";
        index index.html;
    }
}

Caveats

Not supported yet in Safari, IE, or Chrome on iOS.
Extensions such as HTTPS Everywhere will mess up results.
Doesn't work reliably in Tor Browser since timings are rounded to the nearest 100-millisecond.
Users with a different HSTS preload list (ex: due to having an older browser) may not see accurate results.

More info available in my ToorCon 2015 slides: https://zyan.scripts.mit.edu/presentations/toorcon2015.pdf.

Demo

Visit http://zyan.scripts.mit.edu/sniffly/ in Firefox/Chrome/Opera with HTTPS Everywhere disabled. If you use an ad blocker, a bunch of advertising domains will probably show up in the "Probably Visited" column (ignore them).

Download
Read more

by Malik korrich ~ lundi 26 octobre 2015 0 commentaires

UnEncrypted 4 Million TalkTalk Customers Data Got Hacked


UnEncrypted 4 Million TalkTalk Customers Data Got Hacked

UK Based Company TalkTalk Got Hacked .. 4 Million Customers Data have been breached. Company said that data was not encrypted. Its easy to open all data including Email and Bank details.

TalkTalk Telecom Group plc is a company which provides pay television, telecommunications, internet access, and mobile network services to businesses and consumers in the United Kingdom.

These data been affected?

Company said, the investigation is still ongoing. The Metropolitan Police is investigating this case. But unfortunately there is a chance that some of the following data may have been compromised:

  1. Names
  2. Addresses
  3. Dates of birth
  4. Email addresses
  5. Telephone numbers
  6. TalkTalk account information
  7. Credit card details and/or bank details

Last night TalkTalk website was unavailable with message: 

"Sorry we are currently facing technical issues, [and] our engineers are working hard to fix it. We apologise for any inconvenience this may cause."

According to report, TalkTalk website was attack by DDOS.

Company also warn to the customers be alert of the Phishing emails attack, it might be the next step of Cyber criminals.
Read more

by Malik korrich ~ vendredi 23 octobre 2015 0 commentaires

Wikileaks Released CIA Head Email Accounts Details


Wikileaks Released CIA Head Email Accounts Details

Yesterday Wikileaks Tweeted about to publish the Email account details.


According to Wikileaks,

"Today, 21 October 2015 and over the coming days WikiLeaks is releasing documents from one of CIA chief John Brennan's non-government email accounts. Brennan used the account occasionally for several intelligence related projects.

John Brennan became the Director of the Central Intelligence Agency in March 2013, replacing General David Petraeus who was forced to step down after becoming embroiled in a classified information mishandling scandal. Brennan was made Assistant to the President for Homeland Security and Counterterrorism on the commencement of the Obama presidency in 2009--a position he held until taking up his role as CIA chief.

According to the CIA Brennan previously worked for the agency for a 25 year stretch, from 1980 to 2005.

Brennan went private in 2005-2008, founding an intelligence and analysis firm The Analysis Corp (TAC). In 2008 Brennan became a donor to Obama. The same year TAC, led by Brennan, became a security advisor to the Obama campaign and later that year to the Obama-Biden Transition Project. It is during this period many of the Obama administration's key strategic policies to China, Iran and "Af-Pak" were formulated. When Obama and Biden entered into power, Brennan was lifted up on high, resulting in his subsequent high-level national security appointments."


Wikileaks didn't released Full  documents yet, they said more to come in coming days

Here is the CNN Interview of Hacker who Hacked CIA Director Email Account,

Read more

by Malik korrich ~ jeudi 22 octobre 2015 0 commentaires

CIA Director Email Account Gets Hacked By 19 Year Old Student


CIA Director Email Account Gets Hacked By 19 Years Old Student.

Teen, who claimed that he hacked CIA Director "John Brennan" AOL Email account. 

“We are aware of the reports that have surfaced on social media and have referred the matter to the appropriate authorities,” a CIA spokesman said.

But this report is really shocking that how he easily hacked CIA director personal Email account.

How Teenager Breached into The Email?
According to Wired, he wasn’t working alone but that he and two other people worked on the breach. He says they first did a reverse lookup of Brennan’s mobile phone number to discover that he was a Verizon customer. Then one of them posed as a Verizon technician and called the company asking for details about Brennan’s account. This process called Social Engineering.

What he found into the Mail?

  • 47 page application for top Secret Security clearance.
  • Social Security Numbers and personal information of more than a dozen top US intelligence officials.
  • Hackers also claimes to have accessed a Comcas account associater with Johnson.

Teenage hackers was handling the Twitter account @_CWA_, where he leaked

  • Phone numbers
  • Social Security Numbers
  • E-mail addresses
  • A level of security clearance and employment status in some cases

After the report Twitter Suspended his account.

According to nypost,
He explained “CWA” stood for “Crackas With Attitude,” which he said referred to him and a classmate.

The hacker contacted The Post last week to brag about his exploits, which include posting some of the stolen documents and a portion of Brennan’s contact list on Twitter. The hacker’s Twitter page includes the Muslim Shahada creed, which translates as, “There is no god but Allah, Muhammad is the messenger of Allah.”
Read more

by Malik korrich ~ mardi 20 octobre 2015 0 commentaires

Hackers Can Steal Your Information Through EarPhones


Hackers Can Steal Your Information Through EarPhones..

As we are aware about that Google Voice or Siri are tracking us via our mobile devices so that represents a security risks too.

French Information Security ANSSI research have figured out that how to utilize radio waves to silently trigger voice summons on iPhones or Android devices on the off chance that they utilize headphones and have Google Now or Siri empowered.

Security researchers unveiled that hackers can steal your information to make calls, send texts or browse a Malware website without notifying you. its over 16 feet they can use the attack on your smartphone.

According to Wired,
The researcher utilized the earphones' cord as a radio wire and exploited is wire to change over electromagnetic waves into electrical signals that told the smartphone that orders to be sound are originating from the user microphone.

Earlier, IEEE report was published on the same topic,

Research exploit the principle of front-door coupling on smartphones headphone cables with specific electromagnetic waveforms. We present a smart use of intentional electromagnetic interference, resulting in finer impacts on an information system than a classical denial of service effect. As an outcome, we introduce a new silent remote voice command injection technique on modern smartphones.

How Radio Attack dangerous Silently?

  • It can make calls
  • To Send text messages
  • Browsing Phishing or Malware websites
  • Spam Messaging through Social Media Accounts


How this attack works ?
Watch Video:

Read more

by Malik korrich ~ vendredi 16 octobre 2015 0 commentaires

Anonymous Says It’s World War 3 Are They Sure ? | Anonymous | World War 3 |




In a video posted on YouTube by the hacktivist group Anonymous, it’s been said that the current global geo-political turmoil is nothing else but World War 3. Anonymous might have nailed it and their arguments sound logical.

Anonymous has made several claims in its video and has backed it with evidences such as interviews of former top officials and other scientific facts that cannot be simply ignored. The hactivist group has said that there are major political powers behind the origin of instabilities in many parts of the world and especially in the Middle-East.

The video shows an interview of Hilary Clinton stating how the US governments have in the past funded rebels in countries like Afghanistan. These rebels then turned into jihadists and attacked USA and American forces. Taliban is an example of this where the US governments supported the rebels against the former USSR. United States wanted to control the Middle-East and South-East Asia and at the peak of Cold War in the 80s, it was the focal point of the government to reduce the influence of the USSR in this region and exert its own control.

But, soon after these rebels supported by the US turned their weapons (given to them by the US government) on to their former masters. The attack on the twin towers on 9/11 is an example. But the video also claims the validity of the attack. According to one conspiracy theory stated in the video, it has doubted the claim that the burning jet fuel of the planes hitting the twin towers melted the steel body of the buildings. The video claims that the heating point of jet fuel is much lower than the melting point of the steel.


There are various conspiracy theories doing the round. But one fact cannot be denied is that the disturbance caused by groups like Taliban and ISIS and the problems between countries such as Russia-Ukraine, Iran-Iraq, Israel-Palestine and other countries could be flashpoints of a larger global war – World War 3.

Read more

by Malik korrich ~ mercredi 14 octobre 2015 0 commentaires

Another Zero Day Vulnerability Found In Adobe Flash


Another "Zero Day" Vulnerability Found In Adobe Flash

The researchers of TrendMicro found Zero day exploit in Adobe Flash Plugin. The Flash zero-day affects at latest version of Adobe Flash Player versions 19.0.0.185 and 19.0.0.207.

According to research Pawn Storm campaign are behind this attack said Trend Micro and they are targeting by sending Phishing Emails with attached exploit links. Suicide car bomb targets NATO troop convoy Kabul” said TrendMicro

“Syrian troops make gains as Putin defends air strikes”

“Israel launches airstrikes on targets in Gaza”

“Russia warns of response to reported US nuke buildup in Turkey, Europe”

“US military reports 75 US-trained rebels return Syria”

Adobe Affected Version by TrendMicro

How Can we Protect?

TrendMicro said that they sent report to Adobe. But still Adobe does not patched this vulnerability.
Read more

by Malik korrich ~ 0 commentaires

Former Reuters Journalist Convicted of Helping Anonymous To Hack Los Angeles Times Website


Former Reuters Journalist Convicted of Helping Anonymous To Hack Los Angeles Times Website.

Matthew Keys, age 28 from California was found guilty of giving login credentials to the Tribune Co.'s computer system. 

Matthew will face up to 25 years in prison, and sentenced on 20 January 2016. He charged for computer hacking under the Computer Fraud & Abuse Act.

According to FoxNews,

He was fired by Tribune-owned FOX affiliate KTXL-TV in Sacramento two months before the Times' website was hacked, and federal prosecutors in Sacramento say he wanted payback. He was fired by the Reuters news agency after charges were filed in 2013.

A spokesman for Tribune Media Co, Gary Weitman, said: "We are pleased that the justice system worked. We will let today's verdict speak for itself."

Edward Snowden Tweeted


 Matthew also gives his reaction with tweeted,
About the Tribune Company 
Tribune Company, is an American multimedia corporation that is headquartered in Chicago, Illinois, United States. Tribune Media is one of the largest television broadcasting companies, owning 39 television stations across the United States and operating three additional stations through local marketing agreements. Tribune Technology LLC, another subsidiary, manages the interactive operations of major daily newspapers such as the Chicago Tribune and Los Angeles Times and their associated websites
Read more

by Malik korrich ~ jeudi 8 octobre 2015 0 commentaires

This Female Hacker SexyCyborg Can Break The Security With Her Shoe Heels


This Female Hacker SexyCyborg Can Break The Security With Her Shoe Heels

Her shoes hide the equipment's for hacking into Wi-Fi networks. She can secretly sniff your computers with hidden WiFi testing tools and steal the data remotely.

How She get the idea ? 

she said,

"My typical clothing does not leave room to hide anything- which is all the more reason they would not be suspicious of me."

With my shadowless shoes I distract the target with my…upper body and they don’t see the real danger on my feet, "

I’ve been watching the TV show "Mr. Robot" and while I know not all of it is accurate some of it is and it got me curious. I’m already pretty comfortable with command line and remote server administration from my web development work, and it turns out a lot of ‘hacking’ tools are just testing tools any sensible IT professional would use- just without a GUI.


So I spent the month hitting the books (well web pages) watching lots of videos and learning a bit about information security and penetration testing (I wonder how many idiot jokes that phrase is going to cause…). I still don’t know much, but I know a tiny bit more than I did. Enough to ask people who know more than me the right questions- and enough for a fun project.

So I devised the Wu Ying Shoes (无影鞋)! - Penetration Testing Platform Heels!  "Wu Ying" means “shadowless",



What she can bring inside the Sandal Heels

  • USB keylogger
  • Retractable Ethernet cable for OpenWRT router
  • Lock-picking set.


Watch the Video, How she break the Security? 

Read more

by Malik korrich ~ mercredi 7 octobre 2015 0 commentaires

GitHub Announces To Support Universal 2nd Factor Authentication



GitHub Announces To Support Universal 2nd Factor Authentication (U2F) 
A rapidly growing open authentication standard!

When you insert them, these physical USB keys automatically generates a second-factor code. And you don't even enter a Six-digit code from Google Authentication and similar Apps. GitHub announced that its partnership with Yubico.

Two-factor authentication is a security process in which the user provides two means of identification from separate categories of credentials; one is typically a physical token, such as a card, and the other is typically something memorized, such as a security code.

The FIDO U2F Security Key by Yubico is a specially designed YubiKey, relying on high-security, public-key cryptography. U2F is built to protect against phishing and man-in-the-middle attacks, allowing one U2F authenticator to access any number of services without any shared secrets.

What is U2F — FIDO UNIVERSAL 2ND FACTOR

U2F is an open authentication standard that enables internet users  to securely access any number of online services, with one single device, instantly and with no drivers or client software needed.

U2F was created by Google and Yubico, with contribution from NXP, and is today hosted by the open-authentication industry consortium FIDO Alliance.



U2F is used with USB devices, including YubiKeys, as one of many authentication methods

In order to take advantage of the security improvements provided by U2F, you'll need to purchase a hardware key. You can purchase the U2F key of your choice from a range of vendors. GitHub are partnering with Yubico, inventor of the YubiKey, co-creator of the U2F protocol, and a leading provider of U2F authenticators.

Together with Yubico we are offering discounts to GitHub users for a limited time through a special offer page where you will verify your GitHub account and place your order:

  • While supplies last, GitHub users can purchase special edition U2F Security Keys for $5 plus shipping and handling (regular price $18; 5,000 special edition keys available).
  • After the special keys are gone, all GitHub users are eligible for a 20% discount on U2F-certified YubiKeys, for a limited time.
  • In addition, all students who are eligible for the Student Developer Pack will receive a 20% discount on any U2F-certified YubiKey.
Read more

by Malik korrich ~ vendredi 2 octobre 2015 0 commentaires

Your Android Phone is Vulnerable To Remote Hacking With StageFright Bugs


Your Android Phone is Vulnerable To Remote Hacking With StageFright Bugs!

Stagefright 2.0, a set of two vulnerabilities that manifest when processing specially crafted MP3 audio or MP4 video files. 

Security Researcher of Zimperium Joshua Drake (Vice President of platform research and exploitation at Zimperium) discovered two more vulnerabilities in the Android. His aimed to researching media processing in Android and focused on remote attacks agains current devices.

What is the vulnerability ? 
Processing specially crafted MP3 or MP4 files can lead to arbitrary code execution. -

The vulnerability lies in the processing of metadata within the files, so merely previewing the song or video would trigger the issue. Since the primary attack vector of MMS has been removed in newer versions of Google’s Hangouts and Messenger apps, the likely attack vector would be via the Web browser.

  • An attacker would try to convince an unsuspecting user to visit a URL pointing at an attacker controlled Web site (e.g., mobile spear-phishing or malicious ad campaign)
  • An attacker on the same network could inject the exploit using common traffic interception techniques (MITM) to unencrypted network traffic destined for the browser.
  • 3rd party apps (Media Players, Instant Messengers, etc.) that are using the vulnerable library.

After the execution this Vulnerbaility allow attackers to access to personal data and photos stored on the phone, be able to take photos, record conversations, email and SMS and can download malicious apps remotely.

Google said that new Stagefright bugs will be fixed in next schedule update.

Source: Zimperium
Read more

by Malik korrich ~ jeudi 1 octobre 2015 0 commentaires

Whonix - Privacy And Anonymity Operating System



Whonix - Privacy And Anonymity Operating System

Whonix is an operating system focused on anonymity, privacy and security. It’s based on the Tor anonymity network, Debian GNU/Linux and security by isolation. DNS leaks are impossible, and not even malware with root privileges can find out the user’s real IP.

Whonix consists of two parts: One solely runs Tor and acts as a gateway, which we call Whonix-Gateway. The other, which we call Whonix-Workstation, is on a completely isolated network. Only connections through Tor are possible.

Interested? Look Below! ;-)

Whonix for Qubes
https://www.whonix.org/wiki/Qubes


Whonix for KVM
https://www.whonix.org/wiki/KVM


Whonix for VirtualBox
https://www.whonix.org/wiki/VirtualBox


If you want to upgrade existing Whonix version using Whonix’s APT repository Special instructions required:

https://www.whonix.org/wiki/Upgrading_Whonix_10_to_Whonix_11




Download


About the Author:
Christian Galeone is an IT Security Specialist from Italy. He has been Acknowledged by the TOP 5 Companies including Yahoo!, Microsoft, AT&T, Sony etc. He is currently working with HOC as Author of Cyber Security & VA Research Articles.
Read more

by Malik korrich ~ 0 commentaires

Anonymous Hacked Government of Philippines National Telecom Commission (NTC) Website


Anonymous Hacked Government of Philippines National Telecom Commission (NTC) Website. 

The reason behind to hack NTC website are charging and delivering of Internet Services.

Internet access in the Philippines costs $18/Mbps, as compared to the global average of $5/Mbps.

In the message posted on website, Anonymous Philippines said,



"Greetings Citizens of the world, We are Anonymous.

We, Anonymous Philippines, are sympathizing with our fellow Filipino netizens whose battle cries are the 
"OVER PROMISED, UNDER DELIVERED" system of our internet service providers; it is the neigh direct proportionality of our
internet speeds and bandwidths in relation to price. We, as a country, suffer on the bottom of the internet pyramid having
one of the lowest internet speeds while paying the same amount, or even higher, compared to other countries; adding
DATA CAPPING to our "UNLIMITED" data plans sums up to our great burden as an avid follower of the internet - for studies and such.

We are calling forth the attention of the NATIONAL TELECOMMUNICATIONS COMMISSION for this matter in hand; with this we
talk as a whole...as ONE, we are asking for fairness in charging and serving our data services; Unlimited should be patterned to
its name - "UNLIMITED"; not "UNLIMITED with 800MB cap". A 2MBPS speed should never be a 56kbps. A 98% service reliability should be
always on the 98% part, not the 2% one.

We are Anonymous
We are Legion
We do not Forgive
We do not Forget

EXPECT US!"

The website is Still down..
Read more

by Malik korrich ~ lundi 21 septembre 2015 0 commentaires

Your Chrome Gets Crash By Using These String Code URL


Your Chrome Gets Crash By Using These String Code URL  

We have tested these 16 characters strings and it still works on Windows and Mac.

This security issue was found by Andris Atteka. By mouse over on link its enough for your chrome Crash.

Security Flaw Strings are:

http://a/%%30%30
file:///%%300
http://biome3d.com/%%30%30

He said in the blog,

"Recently I reported a crash bug in Google Chrome (issue #533361). This issue reminded me of the recent Skype vulnerability - both occur with simple URL strings. So how can you crash Google Chrome? By adding a NULL char in the URL string:

http://biome3d.com/%%30%30

Unfortunately no reward was awarded as this was deemed to be only a DOS vulnerability. Anyway, making secure software is much harder than finding issues in it. Thanks Google."

Hope Google will be fixed this issue soon.
Read more

by Malik korrich ~ 0 commentaires

WeChat For iOS Gets Hacked, 600 Million Users Are On Security Risk


WeChat For iOS Gets Hacked! 
600 Million Users Are On Security Risk. 

Wechat is the China's most popular messaging app. The app was hacked through security flaw and it to be affecting iOS users with WeChat version 6.2.5. But no data has been compromised yet.

The Security Flaw Have Been Fixed now.

According to Wechat Blog,

A security flaw, caused by an external malware, was recently discovered affecting iOS users only on WeChat version 6.2.5. This flaw has been repaired and will not affect users who install or upgrade WeChat version 6.2.6 or greater, currently available on the iOS App Store. Here are some important points about the situation.

  1. The flaw, described in recent media reports, only affects WeChat v6.2.5 for iOS. Newer versions of WeChat (versions 6.2.6 or greater) are not affected.
  2. A preliminary investigation into the flaw has revealed that there has been no theft and leakage of users’ information or money, but the WeChat team will continue to closely monitor the situation.
  3. The WeChat tech team has extensive experience combating attempts to hack our systems. Once the security flaw was discovered, the team immediately took steps to secure against any theft of user information.
  4. Users who encounter any issues can contact the team by leaving feedback in the “WeChat Team” WeChat account.

At last month CNBC report said,
Various mobile messaging apps including WeChat were being used for malicious purposes, and could be allowing hackers to “steal sensitive information and send it back to a remote server.”

What Can I Do?

The Security flaw has been fixed. WeChat Updated new Version 6.2.6

  • · Easily migrate chat log from original phone to new device
  • · Translate Moments into your language with a long press
  • · Improved WeChat experience on Apple Watch 
Read more

by Malik korrich ~ samedi 19 septembre 2015 0 commentaires

« Articles plus anciens