POLLSolved 1.5.2 SQL Injection / Authentication Bypass

Exploit Title : POLLSolved Authentication Bypass Exploit Author : Persian Hack Team Vendor Homepage : http://www.usolved.net/ Google Dork : intitle:POLLSolved Date: 2015/11/12 Version : v1.5.2 PoC: To bypass the login page enter '=' 'or' for username and password input. Login And Add Your Poll D:...

PageFair Hack Serves Up Fake Flash Update to 500 Sites

More than 500 users of a free analytics service may have had their websites compromised over the weekend after a hacker was able to execute malicious JavaScript through the service. On Halloween night, an attacker was able to hijack a “key email account” at PageFair, an ad blocking analytics...

Hackers WIN $1 Million Bounty for Remotely Hacking latest iOS 9 iPhone

Well, here's some terrible news for all Apple iOS users… Someone just found an iOS zero-day vulnerability that could allow an attacker to remotely hack your iPhone running the latest version of iOS, i.e. iOS 9. Yes, an unknown group of hackers has sold a zero-day vulnerability to Zerodium, a...

THN Weekly Roundup — Top 10 Hacking News Stories You Shouldn’t Miss

We are back with THN Weekly RoundUp to spread lights on last week's top cyber security threats and challenges, just in case you missed any of them ICYMI. Last week, we came to know about many security threats including how Google records and stores our Voice searches, How hackers can use...

Hackers Can Use Radio-waves to Control Your Smartphone From 16 Feet Away

What if your phone starts making calls, sending text messages and browsing Internet itself without even asking you? No imaginations, because hackers can make this possible using your phone's personal assistant Siri or Google Now. Security researchers have discovered a new hack that could allow...

Samsung LoopPay Hacked, but 'Samsung Pay' is Safe

Samsung has been surrounded by a lot of controversies since the past few years, but that has not influenced its productivity. But this report has raised a few eyebrows... Samsung's mobile payment system company, LoopPay, was hacked back in March this year, just a month after Samsung bought it to...

Researcher warns about Security Loopholes in Denmark's Largest Bank

While accessing your Bank account online, Have you ever thought… ...there could be a Hacker, somewhere in the World, who is after your Money? Maybe NO. Because, you believe that your bank offers Secure banking solution, Right? At The Hacker News, we have reported many incidents of cyber attacks,...

WordPress mTheme-Unus Local File Inclusion

Exploit Title: Wordpress themes mTheme-Unus LFI Vulnerability Date: 2015-09-27 Exploit Author: FullSecurity.org Google Dork: ilnurl:/wp-content/themes/mTheme-Unus/ Vendor Homepage: https://wordpress.org/ Tested on : Kali Linux Description : Wordpress Themes mTheme-Unus not filtering data so we ca...

Apple's Biggest Hack Ever: 4000 Malicious iOS Store Apps Linked to CIA?

The First major cyber attack on Apple's App Store has now been linked to CIA Central Intelligence Agency. Last week, Researchers disclosed some 39 iOS apps on Apple's App Store infected by 'XCodeGhost Malware'. The Bad News is that the infection has now increased exponentially with the discovery ...

5.6 Million Fingerprints Stolen In OPM Hack

It turns out roughly 5.6 million federal employees may have had their fingerprints stolen as part of this year’s mammoth Office of Personnel Management breach – a figure five times what the agency initially announced in June. OPM press secretary Sam Schumach broke the bad news Wednesday morning,...

Federal CISOs Propose New Efforts to Shore Up Govt. Cybersecurity

Nearly six months removed from the OPM hack and with many government departments still reeling when it comes to security, several federal chief information security officers volunteered a handful of new ideas at last week’s Billington Cybersecurity Summit in Washington, D.C to combat future hacks...

OPM Hack Victims Still Haven't Been Notified

Millions of government workers whose information was implicated in this year’s expansive Office of Personnel Management hack still haven’t been notified, the agency revealed this week. The agency announced Tuesday that it would contact 21.5 million federal employees and contractors “later this...

PayPal Vulnerability Allows Hackers to Steal All Your Money

A critical security vulnerability has been discovered in the global e-commerce business PayPal that could allow attackers to steal your login credentials, and even your credit card details in unencrypted format. Egypt-based researcher Ebrahim Hegazy discovered a Stored Cross Site Scripting XSS...

Hack Leads to Extortions and Suicides! Ashley Madison puts $500,000 Bounty on Hackers' Head

It's been a rough week for cheating website Ashley Madison, whose slogan is "Life is short, have an affair." Last week, the Impact Team, who claimed to hack Ashley Madison, posted 10GB of personal data for tens of Millions of its customers, including their names and email addresses. The hackers...

Hack Codegen - Facebook Open-Sources Code That Writes Code

Good news for Open Source Lovers! Facebook has open-sourced Hack Codegen – its library for automatically generating Hack code, allowing outside developers to automate some of their routine work while developing large programs. HACK is the Facebook's own programming language designed to build...

Ashley Madison Hackers (with another 300GB Dump) – Wait, Cheaters! We haven't Yet Done

Over a month ago, a group of hackers breached the popular cheater's dating service Ashley Madison and its parent company Avid Life Media, affecting tens of Millions site customers private life and also dump the website's source code onto the dark web. The hackers behind the Ashley Madison hack, w...

Apple operating system Yosemite and then exposed the new vulnerability hack no password to the root PC-vulnerability warning-the black bar safety net

According to foreign media reports,Apple OS X Yosemite and then exposed new vulnerabilities. The attacker needs to use the OS IOKit null pointer and the Shell of deception verification to carry out attacks, using this method, the hacker without a password to obtain root permissions. Reported that...

Dennis Fisher and Mike Mimoso Discuss the Rifle Hack, Stagefright, OwnStar, and Black Hat 2015

Dennis Fisher and Mike Mimoso discuss the hacked sniper rifle, the huge Android bug in Stagefright, Samy Kamkar’s OwnStar device, and the joy and pain of next week’s Black Hat conference. Download: digitalunderground215.mp3 Music by Chris Gonsalves...

Hacking Air-Gapped Computer With A Simple Cell Phone

Wanna Hack an extremely secure Computer? You do not need sophisticated techniques or equipment to do so. To hack an Air-Gapped computer – All you need is a cell phone; even old-fashioned, dumb phones from the past decade will work. Yes, Hacking Air-Gapped Computers is possible using a basic low-e...

Fiat Chrysler Recalls 1.4 million Cars After Software Bug is Revealed

A few days after issuing a patch and reassuring owners that the attack that shut down the transmission and other systems remotely on a Jeep was not a huge risk, Fiat Chrysler has decided to recall nearly 1.5 million vehicles as a result of the bug exposed in the research. The recall is the result...