Saturday, 12 November 2011

Bangladesh Supreme Court website hacked

The official website of the Supreme Court was hacked yesterday.Information technology experts of the court, however, recovered it around 8:00pm. According to the message posted on the site, the hackers identified themselves as "Bangladeshi UnderGround Hacker 3xp1r3 Cyber Army".They, however, claimed that all the data is safe and not being tampered with or deleted."Some other hackers are trying to hack Bangladeshi sites!! And delete all the data !! (sic)," they warn.

Head of IT department of the apex court Quddus Zaman confirmed the restoration of the site, www.supremecourt.gov.bd. Earlier, Supreme Court registrar A K M Shamsul Islam told , "A person from Singapore called me up in the morning and said the website of the Supreme Court has been hacked. Several others also phoned me later and complained about it."
Posted by at No comments:
Labels:

Friday, 11 November 2011

Burp Suite Pro v1.4.03 released - CSRF generator, SSL strip Added


There is a new CSRF generator, which produces proof-of-concept HTML for generating virtually any HTTP request. You can access this feature by right-clicking any item within Burp, and using the engagement tools context menu to select "generate CSRF PoC".
Some useful features are:

  • Support for all form encoding types: standard URL encoding, multipart encoding, and plain text encoding.
  • Auto-detection of the optimal encoding type, with manual override.
  • Ability to edit both the request and response in-place, to fine tune attacks.
  • In-browser testing, by pasting a URL into your browser that will cause Burp Proxy to serve up the CSRF PoC in its response.
Posted by at No comments:
Labels: ,

How to Network Hacking | Arp Poisoning With Video Demonstration


What is ARP Poisoning?

Address Resolution Protocol (ARP) poisoning is a type of attack where the Media Access Control (MAC) address is changed by the attacker.  Also, called an ARP spoofing attacks, it is effective against both wired and wireless local networks.  Some of the things an attacker could perform from ARP poisoning attacks include stealing data from the compromised computers, eavesdrop using man-in-the middle methods, and prevent legitimate access to services, such as Internet service.

 PDF

                                                            - - - - - Video - - - - -


Posted by at No comments:
Labels:

Possible Credit Card Theft in Steam Website Hacking


Valve CEO Gabe Newell has contacted all users of the Steam game distribution platform to let them know that the company has suffered a security breach. Right before going offline, users saw a new category in the forum that directed them to open a site named "Fkn0wned." Many users also complained that their email ids related to Steam accounts were "spammed with ads for the web site.

Valve recommends all users to keep closely watched the activity of their credit cards because the hackers had access to that information during the attack. Forums Steam are closed for the moment, but the program itself is running.

" We have no evidence that the numbers encrypted credit card or personal identifying information was taken by intruders, or the protection of card numbers or passwords have been cracked . We are still investigating , "Newell wrote. " At the moment we have no evidence of misuse of credit cards but we recommend that you carefully monitor the activity of their credit cards . "

The data base was attacked, " contains information including user names, passwords , shopping, e-mail, billing address and information encrypted credit card , "he added. The Steam forums are not working as Valve conducting the investigation and recovers from the attack. When forums are back will require that all users change their passwords as well as it is advised that users who used the same password for forums on other sites also change.

" We do not know of any account of Steam that has been affected, so we are not forced to change the passwords of the accounts of Steam who are separated from the passwords on the forum, but no change would be a bad idea anyway, especially if they are the same as the forum. I am very sorry that this happened, and I apologize for the inconvenience , "he concluded Newell.
Posted by at No comments:
Labels:
Subscribe to: Comments (Atom)