Thursday, 18 August 2011

Murdoch Hacking Scandal: Everything You Need To Know


 
NEW YORK (TheStreet) -- News Corp.'s (Stock Quote: NWSA) phone-hacking scandal in the U.K. has snowballed, with 10 people having been arrested in the case and dozens of others being linked to the corruption.<br>

Since the beginning of July, there has been a whirlwind of accusations surrounding Rupert Murdoch's media empire that has plagued British government and law officials. Victims have included a slain schoolgirl, celebrities, politicians and potentially even Sept. 11 terrorist victims.

The scandal has called into question the integrity and future of News Corp. Shares of the company have fallen more than 13% since the investigation, which has been ongoing for years, resurfaced on July 4. With new reports emerging daily, the list of those involved continues to grow.
Here is a look at the major players entwined in News Corp.'s phone-hacking scandal.

Hugh Grant

Actor Hugh Grant won a court ruling in the hacking scandal, with a High Court judge ordering police to hand over documentation that could reveal his phone messages were intercepted by a private detective working for News of the World.

Grant has been a harsh critic of News of the World amid the hacking scandal and is a member of the Hacked Off lobby group, which has campaigned for a inquiry into illegal eavesdropping by newspapers.

Grant isn't the only celebrity that has allegedly been a target for the now shuttered British tabloid. Sienna Miller settled a phone-hacking suit against the company last month.

Sean Hoare

The former News of the World reporter at the center of the phone-hacking scandal has been found dead.

Sean Hoare originally alleged that Andy Coulson was aware of phone-hacking by his staff.

According to The Guardian, Hoare was found dead in his home, but police have not confirmed his identity. Authorities have said that the death is currently being treated as unexplained, but it is not believed to be suspicious. Police are currently investigating the incident.



Saturday, 30 July 2011

#RefRef - Denial of Service ( DDoS ) Tool Developed by Anonymous

#RefRef - Denial of Service ( DDoS ) Tool Developed by Anonymous

Anonymous is developing a new DDoS tool which is said to exploit SQL vulnerabilities to support the group's future campaigns. So far, what they have is something that is platform neutral, leveraging JavaScript and vulnerabilities within SQL to create a devastating impact on the targeted website. Previously, Low Orbit Ion Canon (LOIC) was the go to weapon for Anonymous supporters during various Operations .However, LOIC is also the reason scores of people have been arrested in the last year, so many feel its time is at an end.


The new tool, called #RefRef, is set to be released in September, according to an Anon promoting it on IRC this afternoon. Developed with JavaScript, the tool is said to use the target site’s own processing power against itself. In the end, the server succumbs to resource exhaustion due to #RefRef’s usage. An attack vector that has existed for some time, resource exhaustion is often skipped over by attackers who favor the brute force of a DDoS attack sourced from bots or tools such as LOIC.


The tool is very effective, a 17-minute attack from a single machine resulting in a 42-minute outage on Pastebin yesterday. As expected, the Pastebin admins weren't very happy with their platform being used for such tests andtweeted "Please do not test your software on us again."
The effectiveness of RefRef is due to the fact that it exploits a vulnerability in a widespread SQL service. The flaw is apparently known but not widely patched yet. The tool's creators don't expect their attacks to work on a high-profile target more than a couple of times before being blocked, but they don't believe organizations will rush to patch this flaw en masse before being hit.
This means there are a lot of possible targets out there that will be hit at least once. "This tool only makes you vulnerable if you don't keep your systems patched, perform the basic security, which is how Sony got caught with it's pants down," the RefRef developers said.
The tool works by turning the servers against themselves. It sends malformed SQL queries carrying the payload which in turn forces the servers to exhaust their own resources. However, the tool's GUI does have a field for inputting the refresh interval so it might combine traditional forms of HTTP hammering with the new technique.


Some security experts have been skeptical that the success of Anonymous's DDoS attacks can be explained through LOIC alone. They proposed that some of the group's supporters also have access to botnets, a theory that has partially proven to be correct.

Sunday, 10 July 2011

Sony BMG Greece Hack, Complete Details Out!

Sony BMG Greece Hack, Complete Details Out !



Yesterday , we have reported that On 5th May, 2011 - Sony BMG's Greek website was also got hacked.  One of Them Provided the Full extract database from the site.  b4d_vipera was the hacker who Deface the site using SQL injection method. There are 8385 users on this website. Sample of hacked Database was leaked at http://pastebin.com/WqLysjiN . This was 7th Attack on Sony.


As from Source :
DB Detection: MsSQL no error (Auto Detected)
Method: GETType: 
Data Base: SONYBMG
Table: USERS
Total Rows: 8385
Fields are : u_id, u_usr , u_name, u_pwd , u_company , u_email , u_tel , FOREIGN_DOMAIN , u_regdate ,  u_lname



Saturday, 9 July 2011

Airtel Fastest Proxy Free 3G Gprs Internet Tricks




UC Web Browser 8.0 Airtel Fastest Proxy Free 3G Gprs Internet Tricks

Airtel Free 3G Gprs Internet Working in UCweb 8.0 ( UC Browser 8.0) Unofficial AlphaEnglish Version, Download UC Browser 8.0 and Free Airtel Unlimited Surf Browsing andDownload using Mobile Office Settings , Access Point APN : airtelgprs.com
Airtel Free Internet In PC Computers Using Opera 11, use following settings and get Airtel fastest proxy with unlimited Downloads
Proxy IP : 75.68.49.100
Port : 80
Home Page : http://122.170.122.214/proxy/index.php
APN : airtelgprs.com
Regards
Adnan Anjum

Saturday, 2 July 2011

Download Ubuntu 11.04



Download Ubuntu 11.04 Desktop CD

The desktop CD allows you to try Ubuntu without changing your computer at all, and at your option to install it permanently later. This type of CD is what most people will want to use. You will need at least 256MiB of RAM to install from this CD.
There are four images available, each for a different type of computer:

Download PC (Intel x86) desktop CD

For almost all PCs. This includes most machines with Intel/AMD/etc type processors and almost all computers that run Microsoft Windows, as well as newer Apple Macintosh systems based on Intel processors. Choose this if you are at all unsure.


Download 64-bit PC (AMD64) desktop CD

Choose this to take full advantage of computers based on the AMD64 or EM64T architecture (e.g., Athlon64, Opteron, EM64T Xeon, Core 2). If you have a non-64-bit processor made by AMD, or if you need full support for 32-bit code, use the Intel x86 images instead.


Download 64-bit Mac (AMD64) desktop CD

Choose this to take full advantage of computers based on the AMD64 or EM64T architecture (e.g., Athlon64, Opteron, EM64T Xeon). If you have a non-64-bit processor made by AMD, or if you need full support for 32-bit code, use the Intel x86 images instead. This image is adjusted to work properly on Mac systems.


Download Mac (PowerPC) and IBM-PPC (POWER5) desktop CD


For Apple Macintosh G3, G4, and G5 computers, including iBooks and PowerBooks as well as IBM OpenPower machines. Warning: This image is oversized (which is a bug) and will not fit onto a standard 700MiB CD. However, you may still test it using a DVD, a USB drive, or a virtual machine.
A full list of available files can be found below.
If you need help burning these images to disk, see the CD Burning Guide.

Friday, 1 July 2011

Make Your Computer Login Screen Like FBI Login Tunnel !

[Image: img20110327121913.jpg]

Step 1 : Download Logon Studio ,


Image


LogonStudio 1.7 | 7Mb

Information:



Longing for some change in your life? Why not start with that boring old Windows XP logon screen? With the freeware LogonStudio, choosing another screen is a matter of two clicks. Alternately, you can design your own with a built-in editor.
The first option is a lot easier. About 30 cool screens are available on the WinCustomize site, and the program can randomly select one on every boot. Editing is less straightforward. You build or modify logon screens by tweaking parameters on a lengthy list of elements. So you might, for instance, change the FirstColor parameter of the Centre Panel element to a new shade of blue. This allows you to customize everything from background to letterings to buttons, but beginners will find the process quite confusing. The sketchy online help isn't much assistance, either.



Download For Windows Vista(Works With WIndows 7 too)


http://www.filesonic.com/file/1116137624


Download For WindowsXp:


http://www.filesonic.com/file/1116137664


2, Download FBI Files From Here:


http://www.filesonic.com/file/1116137644


3, iF YOU WANT TO REMOVE SWITCH USER BUTTON THEN YOU CAN DO WITH THIS REGISTERY TWEAK.

Thursday, 30 June 2011

How to get IP address of another computer remotely

Hello friends, today i will explain you how to get IP address of any computer remotely. Using some very basic tricks we can find the IP address of any remote computer and then you can start your further hacking into the remote system like port scanning and finding vulnerabilities to enter in to the system and hack it. There are several methods to get an IP address of the victim but i will share few and specially the best one's that can tell you IP address in just few clicks and also all are free methods and special thing is about it is all are manual methods that means you did not require any tool.
how to find ip address of another computer remotely

How to find or get Ip address of somebody else remotely


4 ways to get the IP address of the Victim or another Computer:
1. Using PHP notification Script
2. Using Blogs and Websites
3. Using Read Notify service
4. Sniffing during Gmail and yahoo chat  sessions

As we are here to learn concepts so i will first explain what is an IP address and what's its importance. So friends very basic question What is an IP address? Why its important for hackers and security professionals?

What is an IP address? 
Basically IP address (Internet Protocol address) is a unique numerical value that is assigned to any computer or printer on a computer network that uses an internet protocol for communication purpose. Protocol is basically rules( for Network its rules for communication). 
IP address serves for two basic purposes:
1. Host or network interface identification
2. Location Addressing

For exploring more about IP addressing read on wikipedia.


How to Find IP address of another computer?

1. Using PHP notification Script
Using this Notification script you can get the IP address in just seconds. Steps of using this PHP script:
a. Download the PHP notify script and extract files.
b. Now you will get two files IP.html and index.php . You need to upload these two files to any free web hosting server.
Example: i used www.my3gb.com to upload these two files. Create an account there and upload these two files there as shown below.
c. Now you will need to send the link of index.php to the victim whose password you want to get. to get the link click on index.php shown in above snapshot. Now a new window will open copy the link in the address bar and send to the victim whose IP address you want.
d. Now when the victim opens the above link nothing will open but his Ip address is written into the ip.html file. So open the ip.html file to get his IP address.
e. That's all this method... I hope you liked it.


2. Using Blogs and Websites
This method is for those who have their blogs or websites. Normal users can also do this as blog is free to make. Make a new blog and use any stats service like histats or any other stats widget. Just add a new widget and put histats code there and save template. And send the link of your blog to your friend and get his IP.
That's only.


3. Using Read Notify service
This is an email based service. Steps to use Read Notify service:
a. First open the Read Notify website : RCPT
b. Now register on this website and then it will send you confirmation mail. Verify your account.
c. Once your account is activated. 
Do the following steps use this service:

  1. Compose your email just like you usually would in your own email or web email program
  2. Type:   .readnotify.com   on the end of your recipients email address (don't worry, that gets removed before your recipients receive the email). Like this: shiviskingg@gmail.com.readnotify.com  
  3. Send your email
Some things to remember: 
  • don't send to and from the same computer
  • if your email program 'auto-completes' email addresses from your address book, you'll need to keep typing over the top of the auto-completed one to add the .readnotify.com
  • if you are cc-ing your email to other readers, you must add tracking to all of them 


4.  Sniffing Yahoo and Gmail Chat sessions
With the help of Sniffers like ethereal, wireshark etc we can sniff the Gmail, and yahoo chat sessions while we are chatiing to any our friend and extract the IP address from there. I will explain this trick in detail in my next article as its a long article in itself.

5. Bonus Method for Online Gamers
We can also get the IP address from online games like counter strike, age of empires in Game ranger etc.. Many counter strike servers use amx mode. Just view which people are connecting and whats their IP addess as plugins show the IP address of people connecting to the game server.  If you have more access to counter strike server you can use status command in console. Just go to console and type "status"(without quotes) and press enter there you can see all players details his steam ID and much more depending upon server.

Now you have IP address but what you can do with an IP address. Ahhaah everything, that i will explain in my next article.

Monday, 27 June 2011

Hackers target Brazilian statistics agency


(Reuters) - Hackers broke into the website of Brazil's statistics agency on Friday, the latest in a series of attacks on the South American nation's government sites.


The incident comes in the midst of a wave of high-profile Internet attacks on targets ranging from U.S.-based banking group Citigroup Inc to the U.S. Senate that have spurred global concerns about cyber security.
Brazil's statistics agency, known as IBGE, took its website offline for close to five hours following the attack, in which hackers replaced the opening page of the site with a notice with a human eye in the colors of the Brazilian flag.
IBGE said the hackers did not gain access to its research databases.
"This month, the government will see the biggest number of virtual attacks in its history by Fail Shell. These attacks are as a protest by a nationalist group that wants to make Brazil better," the notice read. The note was signed "FIREH4CK3R."
Several Brazilian government sites have been attacked this week, including the presidency, the sports ministry and the tax collection agency.
Brazil's culture ministry said on Friday it blocked what appeared to a hacker attempt to take down its site.
Advisors for the president of Brazil's Chamber of Deputies, Marco Maia, said his Twitter account was briefly hacked.
Separately, the hacking group known as LulzSecBrazil, linked to the Lulz Security group of hackers, on Thursday released via Twitter what it called personal data on President Dilma Rousseff and Sao Paulo Mayor Gilberto Kassab.
LulzSecBrazil also released personal information including identification numbers and bank details of employees of state-controlled oil company Petrobras, the Folha de S. Paulo newspaper reported on its website on Friday.
The group had taken that information from Petrobras computers, Folha said.
Petrobras in a statement denied that the information referenced by Folha had been obtained by hackers, adding that it was investigating the source of the information.
"There was no breach of the internal network or of the company's site," Petrobras said.
The IBGE hackers took a shot at LulzSec, saying on the site's replaced opening page: "There's no room for groups without an ideology such as LulzSec or Anonymous in Brazil."
LulzSec has made widely publicized assaults on Sony Corp, the U.S. Central Intelligence Agency, News Corp's Fox TV and other targets. The attacks have mostly resulted in temporary disruptions to websites and the release of user credentials.
LulzSec said on Monday in a Twitter message that it was seeking to hack government websites to leak "classified government information.



Wednesday, 22 June 2011

Free Paypal "buy now "

 This is a Simple bit of JavaScript that can bypass payments, the site's need to be sites like these:


http://livewebbanners.com/learn.shtml 
or
http://www.tallentagency.com/YouTubeClone/index.htm


Code:
javascript:top.location=document.getElementsByName('return')[0].value; javascript:void(0);

Hope this really help's you and you save a bit off $ $


Another tip:

To find these site's Google - "this order button requires a javascript enabled browser"

Type that in the "quotes" into google.

Sunday, 19 June 2011

Libyan Satellite TV Website Hacked by Ktkoti and Most of Libyan media sites down !

Libyan Satellite TV Website Hacked by Ktkoti and Most of Libyan media sites down !




The web site of the Libyan Revolutionary Committees Movement's newspaper Al-Zahaf Al-Akhdar (The Green March) is also offline, as is New Libya TV.

A radio station set up and apparently owned by Sayf-al-Islam al-Qaddafi, http://www.allibiya.fm is offline, and the Libyan satellite channel's web site www.allibiya.com has been defaced, and its Facebook page taken over. Allibya.tv another domain for Sayf's media empire is also offline.

Sayf-al-Islam's Charity Foundation, which has changed its domain name also at least 3 times and failed to build any audience, the latest listed as being http://www.gicdf.org is also offline, and the Twitter and Facebook accounts of Sayf-al-Islam al-Qaddafi have also been taken over.

Many other Libyan web sites are "off air" having been removed either by threats against providers, defections, or various incompetence.

All the sites lack technical abilities in terms of security, with the take-overs conducted with ease, using simple methods such as plain-text interception and false pages where passwords are entered, as well as straight forward hacking of personal computers, which mostly use windows.

Mathaba, online since 1999, has not been hacked once in 11 years, as it runs on secure web servers and with advanced technical know-how.

Like all sites, a large-scale "denial of service" attack will render a site inaccessible, and although subjected to some "DoS attacks" in the past, we have more reliable defences in place.

Thursday, 16 June 2011

LulzSec Leaks 62,000 Email/passworks of writerspace.com


LulzSec Leaks 62,000 Email/passworks of writerspace.com

LulzSec Leaks 62,000 Email/Password Combo Internet Goodie Bag. Lulz hasn't said where they got the data,
Even they are not sure that, these logins are from which site. They tweet the download link as shown:


According to Mikko H. Hypponen ,CRO of F-secure-"The list of 62,000 email/passwords just released by @LulzSec is probably the user database of writerspace.com? Well, the most common passwords include these: mystery, bookworm, reader, romance, library, booklover and..writerspace. So basically that's why I believe the latest Lulzsec password leak originates from writerspace.com. I'm guessing it's guessing it's their user database"