Guccifer 2.0 Leaks Personal Info of Nearly 200 Congressional Democrats

The hacker, who recently claimed responsibility for the high-profile hack of Democratic National Committee DNC, has now taken credit for hacking into the Democratic Congressional Campaign Committee DCCC as well. To prove his claims, the hacker, going by the moniker Guccifer 2.0, dumped on Friday...

FreePBX 13/14 - Remote Command Execution / Privilege Escalation

!/usr/bin/env python -- coding, latin-1 -- DESCRIPTION FreePBX 13 remote root 0day - Found and exploited by pgt @ nullsecurity.net AUTHOR pgt - nullsecurity.net DATE 8-12-2016 VERSION freepbx0day.py 0.1 AFFECTED VERSIONS FreePBX 13 & 14 System Recordings Module versions: 13.0.1beta1 - 13.0.26 STA...

Car Thieves Can Unlock 100 Million Volkswagens With A Simple Wireless Hack

In Brief Some 100 Million cars made by Volkswagen are vulnerable to a key cloning attack that could allow thieves to unlock the doors of most popular cars remotely through a wireless signal, according to new research. Next time when you leave your car in a parking lot, make sure you don't leave...

How Your Computer Monitor Could Be Hacked To Spy On You

Just stop believing everything you see on your screen, as it turns out that even your computer monitor can be hacked. You have seen hackers targeting your computer, smartphone, and tablet, but now, it has been proved that they can even compromise your monitor and turn them against by just changin...

This ATM Hack Allows Crooks to Steal Money From Chip-and-Pin Cards

Forget about security! It turns out that the Chip-and-PIN cards are just as easy to clone as magnetic stripe cards. It took researchers just a simple chip and pin hack to withdraw up to $50,000 in cash from an ATM in America in under 15 minutes. We have been told that EMV Europay, MasterCard and...

Bitcoin Price Drops 20% After $72 Million in Bitcoin Stolen from Bitfinex Exchange

Yet another blow to Bitcoin: One of the world's most popular exchanges of the cryptocurrency has suffered a major hack, leading to a loss of around $72 Million worth of Bitcoins. Hong Kong-based Bitcoin exchange 'Bitfinex' has posted a note on their website announcing the shutdown of its operatio...

Hillary Clinton's Presidential Campaign also Hacked in Attack on Democratic Party

There's a lot more to come from the DNC Hack. The Associated Press confirmed yesterday that the computer systems used by Hillary Clinton's presidential campaign were hacked as part of the recent Democratic National Convention DNC hack. Last week's email dump containing almost 20,000 emails from t...

Is Russia Behind the DNC Hack to Help Donald Trump? FBI Initiate an Investigation

On Friday, just three days prior to the start of the party's national convention, WikiLeaks released almost 20,000 e-mails with more than 8,000 stolen from the US Democratic National Committee DNC following a cyber attack in June. Two days later, on Sunday, DNC Chairwoman Debbie Wasserman Schultz...

Two Million Passwords Breached in Ubuntu Hack

Linux users who frequent the Ubuntu forums may want to change their passwords following news that an attacker was able to breach the service and its two million users. Jane Silber, Chief Executive Officer at Canonical,the company that maintains the service, acknowledged on Friday that a known SQL...

OLX: stored XSS in olx.pl - ogloszenie TITLE element - moderator acc can be hacked

Hello, The OLX.PL is vulnerable to stored XSS attack. When adding new advertisement, it is possible to put a payload in its title here I used Titlealert1 I see ads are being pre-moderated, however it can remain uncaught also the length limit in title field is enough to insert into it e.g. a BeEF...

Another CEO Hacked... It's Twitter CEO Jack Dorsey!

Twitter account of another high profile has been hacked! This time, it's Twitter CEO Jack Dorsey. OurMine claimed responsibility for the hack, which was spotted after the group managed to post some benign video clips. The team also tweeted at 2:50 AM ET today saying "Hey, its OurMine,we are testi...

Hack Ex - Simulator - External URLs, Native code usage, SD-card access vulnerabilities

HackApp vulnerability scanner discovered that application Hack Ex - Simulator published at the 'play' market has multiple vulnerabilities...

WordPress Plugin Lazy Content Slider 3.4 - Cross-Site Request Forgery (Add Catetory)

WordPress Plugin Lazy Content Slider 3.4 - Cross-Site Request Forgery Add Catetory Exploit Title : WordPress Lazy content Slider Plugin - CSRF Vulnerability Exploit Author : Persian Hack Team Vendor Homepage : https://wordpress.org/support/view/plugin-reviews/lazy-content-slider Category: Webapps...

WordPress Lazy Content Slider 3.4 Cross Site Request Forgery

Exploit Title : WordPress Lazy content Slider Plugin - CSRF Vulnerability Exploit Author : Persian Hack Team Vendor Homepage : https://wordpress.org/support/view/plugin-reviews/lazy-content-slider Category: Webapps Tested on: Win Version: 3.4 Date: 2016/07/08 PoC: The vulnerable page is...

WordPress Lazy Content Slider 3.4 Plugin - Cross-Site Request Forgery (Add Catetory)

Exploit for php platform in category web applications Exploit Title : WordPress Lazy content Slider Plugin - CSRF Vulnerability Exploit Author : Persian Hack Team Vendor Homepage : https://wordpress.org/support/view/plugin-reviews/lazy-content-slider Category: Webapps Tested on: Win Version: 3.4...

WordPress Plugin Lazy Content Slider 3.4 - Cross-Site Request Forgery (Add Catetory)

Exploit Title : WordPress Lazy content Slider Plugin - CSRF Vulnerability Exploit Author : Persian Hack Team Vendor Homepage : https://wordpress.org/support/view/plugin-reviews/lazy-content-slider Category: Webapps Tested on: Win Version: 3.4 Date: 2016/07/08 PoC: The vulnerable page is...

Oculus CEO's Twitter gets Hacked; Hacker declares himself new CEO

Twitter account of another high profile has been hacked! This time, it is Facebook-owned virtual reality company Oculus CEO Brendan Iribe who had his Twitter account hacked Wednesday. Iribe is the latest in the list of technology chief executives to have had their social media accounts hacked in...

STOP Rule 41 — FBI should not get Legal Power to Hack Computers Worldwide

We have been hearing a lot about Rule 41 after the US Department of Justice has pushed an update to the rule. The change to the Rule 41 of the Federal Rules of Criminal Procedure grants the FBI much greater powers to hack legally into any computer across the country, and perhaps anywhere in the...

Parishcouncil CMS SAS4.5 Cross Site Scripting

Exploit Title : Parishcouncil CMS SAS4.5 / Cross Site Scripting Exploit Author : Persian Hack Team Vendor Homepage : http://www.parishcouncilwebsites.com/updating.php Category: Webapps Tested on: Win Version: SAS4.5 Date: 2016/06/21 PoC: yr Get Parameter Vulnerable To XSS Payload : ' Demo :...

Meet the 18-Year-Old Who Hacked the Pentagon

Ask David Dworken when he was in tenth grade what a cross-site scripting vulnerability is and you might get a strange look from the Alexandria, Va., teen. Fast forward two years and pose the same question Dworken and you’ll get a well-versed answer from the now white hat hacker and recent high...