Learn Hacking Skills Through Engaging Twitter Initiatives
Twitter followers can now learn a new skill, hacking or at the very least, how to think like a hacker to be protect themselves.
Linux Hacks & Cracks - Page 71
We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
SocksEscort Linux Router Malware Botnet Takedown Operation Lightning
Authorities have dismantled SocksEscort, a service that sold access to a large proxy network built from compromised residential routers. Investigators say much of the infrastructure sat on infected SOHO networking devices, many running embedded Linux...
Linux Users Targeted as Crypto-stealing Malware Hits Snap Packages
We’ve been telling ourselves that Snap apps are sandbox...
UNC2891: Banking Heists with Linux Malware Exploiting Physical Access
UNC2891 has been working its way through gaps in ATM se...
Discover Hacks/Cracks News
DDoS Tactics: Compromised Servers Fueling Enhanced DoS Attacks
Hackers have begun using compromised servers instead of client PCs to launch more powerful denial of service attacks. Hundreds of web servers are infected with a DoS application that transforms them into zombie drones, according to database security firm Imperva.
Drupal Context 6.x-2.0-rc4 Moderate: XSS Access Threat Mitigated
The development team behind the Drupal module Context have released version 6.x-2.0-rc4, which fixes a cross-site scripting (XSS) vulnerability when displaying block descriptions. If a user with 'administer blocks' permission clicks on a crafted link, JavaScript contained in the link is executed with the privileges of the Drupal page. Attackers can exploit this to gain access to a system.
New Attack Method Bypasses Anti-Virus Software Using SSDT Exploit
A (nearly) new attack method is reportedly able to bypass anti-virus software for Windows in order to, for example, load infected drivers, despite protection mechanisms. The attack, developed by Matousec.com, makes use of the fact that many anti-virus programs hook into the kernel's System Service Descriptor Table (SSDT) in order to monitor program behaviour.
Secunia Advisory: Critical Safari Exploit Threatens Windows Users
Security company Secunia is warning of a critical vulnerability in Apple's Safari browser. The current version (4.0.5) and possibly older versions are affected. If a user visits a website containing the exploit using the Windows version of Safari, the site can compromise the system and either crash the browser or execute malicious code. The problem is caused by an error in the way the browser deals with pop-ups.
Widespread Cyber Attack Hitting WordPress Sites Affects Internet Providers
According to various reports, in the past few days a number of websites created using WordPress have been hacked. While the attack initially appeared to be limited to web sites hosted by American ISP DreamHost, it has since become apparent that blogs hosted at GoDaddy, Bluehost and Media Temple have also been affected.
Understanding Botnet Risks on Linux Mail Servers and Security Awareness
A lack of knowledge and awareness about how to use Linux mail servers could be contributing to the disproportionately large number of Linux machines being exploited to send spam, according to new Symantec Hosted Services research.
Albert Gonzalez: Sentenced for Major Identity Theft Crimes
Over a month has elapsed since the years-long investigation and prosecution of TJX hacker Albert Gonzalez came to a dramatic end, with Gonzalez sentenced to 20 years in prison for the largest identity theft case in U.S. history.
Barnaby Jack: ATM Rootkit and Network Threats at Black Hat
One year after his Black Hat talk on Automated Teller Machine security vulnerabilities was yanked by his employer, security researcher Barnaby Jack plans to deliver the talk and disclose a new ATM rootkit at the computer security conference.
Wi-Fi Key-Cracking Kits Exploit Encryption Flaws for Free Internet
Dodgy salesmen in China are making money from long-known weaknesses in a Wi-Fi encryption standard, by selling network key-cracking kits for the average user.
US Charges Teen: Reprogramming Tranax Cash Machines Threat
The US public prosecutor has charged a 19-year old man with attempting to reprogram cash machines. The man planned to exploit configuration options on cash machines manufactured by Tranax, which allow note denomination settings to be altered after entering a specific key sequence from the keypad (Tranax 1700: Enter, Clear, Cancel, 1,2,3) and a (default) password.
Exploit Kits Facilitate Cybercrime and Threaten Security
Once upon a time, only computer geeks were smart enough to be cyber-criminals. Now, anyone with enough cash can become one. WebAttacker, CrimePack, IcePack and dozens of other do-it-yourself crime kits are available online for less than $1,000.
Concealing Malware In Hacked Websites: Evasion Tactics From Search Engines
Criminals are increasingly attempting to conceal malware embedded in hacked websites from search engines such as Yahoo! and Google. Their aim is to prevent browsers which use technology such as Google's Safe Browsing API from sounding the alarm when a user visits a hacked website. Google's Safe Browsing API allows client applications to query Google's phishing and malware blacklist. Firefox and Google Chrome both make use of the API, which is based on Google searches of websites for suspicious code.
Examine Hacktivism and DDoS Attacks Using Voluntary Botnets
Social media is making hacktivism easier, especially as politically motivated online crowds come together to create distributed denial of service attacks, finds a new paper by security researcher Gunter Ollmann of Damballa.
Booting Android on iPhone: David Wang's Innovative Dual-Boot Setup
There are matches made in heaven, and on the other side of the spectrum, there is David Wang's accomplishment: booting Google's Android operating system on Apple's iPhone Wang, the "planetbeing" member of the a group called the iPhone Dev Team devoted to hacking iPhones, on Wednesday posted a video demonstrating Android on an iPhone.
Zeus Banking Trojan Attack on Firefox: A Growing Concern for Users
Reports have surfaced that Internet Explorer users are not the only targets of the Zeus banking Trojan - Firefox users are now also under threat.
Exploring The Hacker's Manifesto's Influence on Cyber Culture
This is a seminal piece of writing from the underground, forgotten by many but adored by many more. It still resonates with me and has as much meaning as it did back in the day when I first read it in Phrack Issue 7.
Kenzero Trojan Malware Threatens Personal Information Exposure
Security experts at Trend Micro have identified a new Trojan spreading from Japan which threatens to post the internet history of infected users.
Website Attacks By Turkish Hackers Ahead Of Armenian Genocide Remembrance
Turkish hackers have attacked several Armenian websites ahead of annual commemorative remembrances of the Armenian Genocide. On April 12th, more than 250 sites were impacted when cyber terrorists attacked a server hosting sites including https://armeniasearch.com/ according to the owner of the sites (who wishes to remain anonymous), ANCA Communications Director Elizabeth Chouljian told PanARMENIAN.Net.
Romanian Hackers Target Telegraph Subdomains in Cultural Protest
A group of Romanian activists has hacked two Telegraph subdomains in response to a Top Gear episode mocking the country and casting Romanians as gypsies. Two subdomains of The Daily Telegraph's website have been defaced by a group of Romanian hackers.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!