Latest Post

Bell Canada Hacker Arrested and Charged

Last Friday the police arrested a teen hacker, who they believed is a member of the hacktivist group called NullCrew. This arrest was carried out in relation to the hacking incident which took place in February 2014 where a third party IT supplier of Bell telecommunications company was targeted.
During an interview, a representative of the group stated that they did inform Bell about this vulnerability but nothing was done. They exploited it and were able to get access to customer's information. In a press release from Bell Canada, it was announced that a total of 22421 usernames and passwords of Bell small-business customers had been posted on the Internet the previous weekend. There were also 5 valid credit cards which were leaked.

The teenager has been changed with one count of unauthorized use of computer and two counts of mischief in relation to data.

Source:[Click Here!]
The NullCrew Interview: [Click Here!]
 

Mozilla Firefox 30 Released, 7 Security Fixes Addressed

Internet browser Firefox 30 has been released officially. A total number of 7 security flaws have been addressed among which, 5 have been marked as critical. The remaining two are labeled as having high security impact.

Fixes in Firefox 30:
  • MFSA 2014-54 Buffer overflow in Gamepad API
  • MFSA 2014-53 Buffer overflow in Web Audio Speex resampler
  • MFSA 2014-52 Use-after-free with SMIL Animation Controller
  • MFSA 2014-51 Use-after-free in Event Listener Manager
  • MFSA 2014-50 Clickjacking through cursor invisability after Flash interaction
  • MFSA 2014-49 Use-after-free and out of bounds issues found using Address Sanitizer
  • MFSA 2014-48 Miscellaneous memory safety hazards (rv:30.0 / rv:24.6)

Adding to this, there have been some extra features which were added, such as:
  • Sidebars button in browser chrome enables faster access to social, bookmark, & history sidebars
  • Mac OS X command-E sets find term to selected text
  • Support for GStreamer 1.0

We advise our readers to update their Firefox to get the latest security fixes and also to enjoy the new features added.

Source:[Mozilla]
 

Beware of Fake British Airways ‘Your Flight Ticket Not Activated’ Scam Email Distributing Malware

An email pretending to be from British Airways, title as Your flight ticket is not activated yet, is at the moment in circulation. The email contains a zip file which contains malware installer.
This email is not from British Airways and we advise recipients not to open it. This email claims that your air flight ticket has not yet been activated and to activate it, you are advice to download the zip attachment. Once you open the zip file, you will find a file with .exe extension and if you open the .exe file, you can install the malware on your device. Malwares usually collect personal and sensitive information such as password and usernames. They can also install other unwanted programs.

We request all those who received the email to ignore and delete it. Those who already opened the .exe file,  update your antivirus and do a complete scan of your device and change all your login credentials.

Source:[Hoax Slayer]

 

North Bengal International University Website Hacked By Myanmar Hackers

Members of the hacking group Myanmar Hackers United defaced the official website of the North Bengal International University Rajshahi , Bangladesh. The hackers uploaded an animated defacement page where they added the map of their country and the following message,
"We are HACKTIVISTS for POLITICAL OUTCOMES & JUSTICE for what we've lost.
At the time of publishing, the website was still defaced. The defacement was announced on their official Facebook fan page which is followed by over 7000 fans.

Website:
http://www.nbiu.edu.bd/
Mirror:


 

Pirate Bay Co-Founder Arrested

Photo Courtesy: AFP
Peter Sunde, the pirate bay co founder has been arrested in Sweden on Saturday. In 2009 he was convicted of aiding copyright infringement and was sentenced to a year in jail which was later reduced to 8 months. Carolina Ekeus, spokeswoman at the Swedish National Police Board said, "We have been looking for him since 2012,".. "He was given eight months in jail so he has to serve his sentence."
Peter Althin, who defended Sunde during the trial, said that the Peter is extremely talented and still think that the judgment was wrong.
Pirate bay website was launched in 2003 and provided links which connected users to music and movie files that were stored on each others' computer. Such sharing strategy was not appreciated by copyright holders and took the company to Court. After these entire problems, the website is still running under new ownership and registered in the Seychelles.

Source:[Reuters]
 

700+ Indian Websites Defaced By Members of Iraq Cyber Army

Members of Iraq Cyber Army defaced a total of 702 Indian websites on 30 May 2014. The hackers uploaded the same defacement page on each website where a logo of their group, their name and a link to their official Facebook page was published. At the time of publishing, all the websites were still holding the defacement page.
List to all defaced website:

 

AVAST Forum Goes Offline After Data Breach

Vince Steckler, the CEO of AVAST Software announced in a blog post that the AVAST forum was currently offline because it was hacked during the weekend. The attacker gained access to user nicknames, user names, email addresses and hashed (one-way encrypted) passwords. Mr Steckler also added that sophisticated attacker can decrypt these passwords and added that once the forum will be back online; all the users will have to change their passwords.

He highlighted the fact that the breach affects only the community-support forum. "No payment, license, or financial systems or other data was compromised."

The organization is rebuilding the forum and stated that once it is online again, it will be faster and more secure. It is not clear how the attacker breached the forum as it is hosted on a third-party software platform but they believe it is a recent attack and managed to detect it immediately.

"We realize that it is serious to have these usernames stolen and regret the concern and inconvenience it causes you. However, this is an isolated third-party system and your sensitive data remains secure."

Source:[Avast Blog]
 

Two Anonymous Members Arrested By Australian Federal Police

 
Australian Federal Police have arrested two men who they believe have been defacing and launching DDOS attack on Indonesian and Australian government websites. This was done last  November and was carried out using the name of Anonymous.

A 40-year-old Scarborough (Western Australia) man was charged with:
  • Aid the unauthorized modification of Melbourne IT Limited computer network located in Brisbane, Queensland to cause impairment, contrary to Section 477.2 of the Criminal Code Act 1995 pursuant to Section 11.2 of the Criminal Code Act 1995; and
  • Unauthorised modification of Indonesian Government web servers, to cause impairment, contrary to Section 477.2 of the Criminal Code Act 1995.

The other man who is 18 and from Penrith (New South Wales) was charged with:
  • Unauthorised modification of data to Netspeed ISP located in Canberra, ACT, to cause impairment, contrary to Section 477.2 of the Criminal Code Act 1995
  • Unauthorised access to and modification of restricted data belonging to the ACT Long Service Leave Board, Canberra, ACT, contrary to 478.1 of the Criminal Code Act 1995.

National Manager High Tech Crime Operations Tim Morris said that these attacks have big impact on government and business services. Several computers and hard disk were seized during a raid  in both houses.The police believe that this will take several months to go into all the items due to the amount of information stored in them.

More can be read from source: [Click Here!]
 

eBay Hacked, Requesting All Members To Change Passwords

Online sales giant eBay posted a message on its official blog stating that it has been hacked. EBay is requesting all its members to change their passwords.
In the statement, the company said that a database containing encrypted passwords and other non-financial data was compromised. Along with this, a small number of employee log-in credentials were compromised allowing unauthorized access to eBay’s corporate network.
EBay also added that they are working with law enforcement and leading security experts to investigate into this matter and are applying the best forensic tools and practices to protect their customers.

They added that they will be sending an email to all customers to request them to change their password as they do not have evidence whether PayPal accounts were accessed by the cyber criminals.

PayPal also publish a statement which goes as follows:
"Later today, eBay Inc. will be asking all eBay users to change their passwords due to a cyber attack that compromised an eBay database containing encrypted eBay passwords and other non-financial information. eBay will notify its user base directly within the next 24 hours with more details.

Extensive forensic research has shown no evidence of unauthorized access or compromise to personal or financial information for PayPal customers.  PayPal customer and financial data is encrypted and stored separately, and PayPal never shares financial information with merchants, including eBay.

In addition to asking users to reset passwords, eBay Inc. said it will also encourage any eBay user who used the same password on other sites to change those, too."

More can be read from official eBay blog post [Click Here!]

 

Several Chinese Websites Hacked By Anonymous Philippines

Nearly 200 Chinese websites were hacked by Philippine hackers on Monday. Among these, 145 were government websites and 45 were commercial websites. By the time of publishing, some of the websites were restored. This was announced on the official Anonymous Philippines Facebook page on May 18. Yesterday, they posted a message on the same page stating that the operation was successful.
 
 
Support : MauriHackerS | Personal Template | Smoker
Copyright © 2012. MauriHackers - All Rights Reserved
Template Created by Creating Website Powered by Hackers
Proudly powered by Hackers