Anonymous takes down MTNL website

Anonymous India takes down MTNL website The hacker-group Anonymous has struck again in India. This time the victim is the MTNL website. The group posted on their website, saying, "We are against Internet Cencorship. Instead of blocking few URLs the ISP blocked the whole domain of various file...

EZEIP3. 0 multi-page upload validation vulnerability-vulnerability warning-the black bar safety net

Modify the IE browser security settings, the modulation is the highest, however, prohibit the js execution. 2. Open the Modify upload Type page, add aspx type, click Save, and then open the upload page to upload There is a problem of the upload Type page: http://www.XXX.com/...

Financial Industry Needs Government Supoport with Security, Not Regulation

Regulation is not the answer. That’s what the CISO of Regions Bank, Michele B. Cantley repeatedly responded with when asked what the government can do to improve the financial sector’s current security climate in a hearing hosted by the House Financial Services Subcommittee on Capital Markets and...

Flame Malware Raises Need for Open Talk on Use of Cyberweapons

The discovery of the Flame malware has raised a number of questions, some mundane, some interesting and many unanswerable at this point. But the point that’s most interesting also is the one that likely will go unaddressed for the foreseeable future, and that is, the need for a serious, open...

Keylogging Version of Anti-Censorship Software Simurgh Found

Citizen Lab found a compromised version of an anti-censorship tool that’s popular in Iran and Syria circulating with a backdoor installed. The software, Simurgh, is described by Citizen Lab as a stand-alone proxy software for Microsoft Windows users. It was used predominantly by Iranians in the...

House Hearing to Address Capital Market Threats

The House Committee on Financial Services is hosting a hearing tomorrow in which they will explore the various cyber threats targeting capital markets and government sponsored enterprises. Entitled “Cyber Threats to Capital Markets and Corporate Accounts,” the hearing in front of the Committee on...

Man Pleads Guilty To Stealing Source Code From Federal Reserve

A 33 year-old Chinese man pleaded guilty in U.S. Federal Court to stealing proprietary source code used by the U.S. Federal Reserve to help track billions of dollars in government transfers that occur daily, according to a report by Reuters. Bo a.k.a. “Bryan” Zhang was employed as a contract work...

Flame Malware: Boring, Bloated and Yet Still Effective

Let us stipulate that governments of all political affiliations are trying to steal information from one another. This is called espionage and it has been happening for thousands of years and the only things that have changed are the tactics and the technology. The discovery of the Flame...

Serco: 'Sophisticated' Attack On U.S. Govt. Pension Plan Nets Info On 123k

Serco Inc., a well-known contractor working with the U.S. government, announced that it was the target of a sophisticated attack that exposed data on 123,000 civil employees of the Federal government and their families, including names, addresses and social security numbers taken from the company...

What's the Meaning of This: Flame Malware

From all indications, it would appear that attackers are continuing to attack and malware authors are carrying on writing malware. The latest bit of evidence to support these conclusions is the discovery of the Flame malware, which, initial analyses show, is an advanced data-stealing tool that is...

Howard Schmidt Answered the Bell

There’s an old saying that all things end badly or else they wouldn’t end. It sounds nice, but it’s not necessarily true. Plenty of things simply end. The useful career of the Police, Man Vs. Food and highway A1A all ended without any catastrophic effects or gnashing of teeth. Now, with the end o...

Call for Articles : THN Magazine June 2012, Malware Edition

Call for Articles : THN Magazine June 2012, Malware Edition The Hacker News is calling for our June Magazine on the issue related to MALWARE. We'd like to see an analysis of the history of these most worrying viruses and the contemporary usage in cyber espionage and cyber warfare. It would be...

Xia Mao government integrated OA full open source version of the built-in Backdoor-vulnerability warning-the black bar safety net

The source code to download address http://www.mycodes.net/25/2177.htm Back door file: HXINCLUDE/AdminUpfile. asp %Response. Buffer=TrueServer. ScriptTimeOut=9999999OnErrorResumeNext%! DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"...

DHS Warns About Threat Of Mobile Devices In Healthcare

In a bulletin, the Department of Homeland Security DHS is warning healthcare organizations about the threat posed by insecure, network attached medical devices and the proliferation of smart phones, tablet PCs and other mobile devices in medical settings. DHS’s National Cybersecurity and...

Stolen Certificates Found in Malware Possibly Targeting Tibetan Groups

The recent trend of attackers using stolen digital certificates to make their malicious executables look legitimate is continuing unabated, with researchers now having come across a series of variants of the Etchfro Trojan that are using certificates taken from several companies and issued by...

DoD Program Expanded, Designed to Share Threat Information

The Pentagon on Friday invited a slew of government contractors to meet and share classified information on cyber threats going forward, part of an initiative that the department hopes will reduce the risk of intrusions to government systems. The information sharing model that the Department of...

The Revolution from Cyber Terrorist attack to Indian Cyber Security

The Revolution from Cyber Terrorist attack to Indian Cyber Security Cyber attack has put our lives in danger every second. The cyber attacks are becoming the root cause of the mishappenings around us every other day. As the next generation wars are increasing depending on robust and secure...

Dutch Government Asks for €8.7 to Reimburse Diginotar Debacle

The Dutch government has asked DigiNotar, the Dutch certificate authority that was broken into last summer, for €8.7 million $11M USD to recoup money it spent buying new certificates, according to several Dutch news reports. The Dutch interior ministry asked for €1 million in January, yet the...

国内优秀的JAVA(JSP)内容网站管理系统.FCK上传漏洞

简要描述： 国内优秀的JAVAJSP内容网站管理系统.FCK上传漏洞 详细说明： 漏洞地址: www.域名/thirdparty/fckeditor/editor/filemanager/browser/default/browser.html?Type=Image&Connector=connectors/jsp/connector.jsp 漏洞证明： 使用JEECMS系统的网站FCK漏洞地址： 1、中国物流信息中心：http://www.clic.org.cn/...

'The Hackers Conference 2012' to be held in New Delhi

'The Hackers Conference 2012' to be held in New Delhi The Biggest Hacking Mania has arrived. The Hackers Conference 2012 will be held in New Delhi on July 29. THC 2012 is expected to be the first open gathering of Blackhat hackers in India who will debate latest security issues with the top...