Posts tagged as:

Hack

Film review site hacked

by certifiedbug on December 18, 2009

in Internet Security

The Register reports that hackers exploited a vulnerable PHP script on the movie review site, ‘Ain’t It Cool’, which redirected visitors over a 90-minute period on Thursday morning to a server containing a malicious Adobe Reader file.

The booby-trapped PDF, according an analysis by researchers at Praetorian Prefect, exploited two vulnerabilities in Adobe Reader that the company has already fixed. When the file is opened by unpatched versions of Reader, it launches malicious shell code that hijacks the machine.

http://www.theregister.co.uk/2009/12/18/aintitcool_malware_attack/

{ 0 comments }

Twitter was hacked by the “Iranian Cyber Army”

by certifiedbug on December 18, 2009

in Internet Security

Screenshots and commentary:
http://www.techcrunch.com/2009/12/17/twitter-reportedly-hacked-by-iranian-cyber-army/

Quickly followed by;

We are working to recovery from an unplanned downtime and will update more as we learn the cause of this outage.

Update (11:28p): Twitter’s DNS records were temporarily compromised but have now been fixed. We are looking into the underlying cause and will update with more information soon.

http://status.twitter.com/post/288586541/working-on-site-outage

Edits
CyberCrime & Doing Time:
Who is the “Iranian Cyber Army”? Twitter DNS Redirect
Iranian Cyber Army returns – target: Baidu.com

{ 0 comments }

Worm Author gets job

November 27, 2009

Graham Cluley’s blog.
There are plenty of young coders out there who would not have acted so stupidly, are just as worthy of an opportunity inside a software development company, and are actually quite likely to be better coders than Towns who made a series of blunders with his code.
Ikee worm author gets job at iPhone [...]

Read the full article →

Symantec Website SQL injection

November 23, 2009

Romanian hacker Unu posted on his blog that he had located a critical SQL injection vulnerability in a website belonging to security company Symantec.

If you remember, in February, Kaspersky faced with a sql injection. Then they had the courage to admit vulnerability, why have my admiration. There was fair play, they quickly secured vulnerable parameter, [...]

Read the full article →

Windows Live Hotmail phish

October 6, 2009

Over the weekend Microsoft learned that several thousand Windows Live Hotmail customers’ credentials were exposed on a third-party site due to a likely phishing scheme. Upon learning of the issue, we immediately requested that the credentials be removed and launched an investigation to determine the impact to customers. As part of that investigation, we determined [...]

Read the full article →

Four South Korean journalists ejected from Defcon

August 3, 2009

Conference representatives believe that three were on some sort of intelligence-gathering expedition.
The South Korean “journalists” were not acting like press nor did their story add up.
This kind of incident happens nearly every year, said one of the show’s senior organizers who goes by the name “Priest.”
http://www.networkworld.com/news/2009/080309-korean-journalists-booted-from.html
Certifiedbug August 10, 2008: Three French Journalists at Black Hat [...]

Read the full article →

100k websites deleted Sunday by hackers

June 9, 2009

Unknown hackers targeting a zero-day vulnerability in a virtualization application called HyperVM made by LXLabs were able to gain root access at UK-based Vaserv.com Sunday evening destroying data for as many as 100,000 websites.
Half of Vaserv’s customers signed up for unmanaged service, which doesn’t include data backup.
Log updates from Vaserv technicians as they worked [...]

Read the full article →

Hacker claims Kaspersky’s US servers breached

February 8, 2009

A blogger posted screen shots and other details Saturday to substantiate his claim that Kaspersky, the Moscow-based anti-virus company, did not secure its US servers from SQL Injection attacks and by altering one of the parameters the hacker gained access to “EVERYTHING: users, activation codes, lists of bugs, admins, shop, etc.”
The Register: Kaspersky breach exposes [...]

Read the full article →

Hacker sentenced to two years in prison

October 12, 2008

United States Attorney McGregor W. Scott announced Tuesday that Gregory King, 21, a California resident once known as “‘Silenz” “sZ” “Gregk707″ and “GregK” was sentenced to two years in federal prison and ordered to pay $69,000 in restitution following a guilty plea to two counts of transmitting code to cause damage to a protected computer.
The [...]

Read the full article →

Three French Journalists at Black Hat banned

August 10, 2008

Three French reporters attending the Black Hat Security Conference in Las Vegas for Global Security Magazine, were booted and banned for life after they allegedly sniffed the private network set up for the press.
At Black Hat and Defcon, you are almost guaranteed to be sniffed, hacked
and owned by attendees, but the private press network is [...]

Read the full article →

← Previous Entries