Tuesday, January 26, 2010

TechCrunch Hacked

In a blog post, TechCrunch said it was hacked around 10:30 pm on Monday (2:30PM Tuesday AEDT), came back online around an hour later, but went down once again.
It said the site was back up and stable within a few hours. TechCrunch said the site was "redirected" by the hackers.
According to Web security firm Sophos, the technology blog was linked during the attack to a site "containing links to adult and pirated material."
[news.com.au]

Friday, January 22, 2010

21 Passwords You Shouldn't Use!


If you see your password on this list, change your password to something more secure.

---
123456
qwerty
abc123
letmein
1234
monkey
myspace1
password1
link182
12345
asdf
aaa
password
123456789
iloveyou
princess
rockyou
1234567
12345678
abc123
(your first name)

Thursday, January 21, 2010

Hacker Profile: Koin / Edward Woltin

Hacker: Koin
Real name: Edward Woltin
Email: ed@koin.org, setauket@gmail.com
State: Hewlett, New York or East Setauket, New York
Address: Available to authorities only
Phone #: Available to authorities only
Main source: Digitalgangster.com
Main Profile: http://digitalgangster.com/4um/member.php?u=1770
Related sites: http://la.gg/ (Owned and operated Koin), http://www.myspace.com/koin
Previous arrest: http://www.nytimes.com/2006/08/16/nyregion/16mbrfs-005.html?_r=1
http://www.wired.com/threatlevel/2008/01/convicted-hacke/
Last Active: 1/22/2010 (currently involved in similar crimes)
Image:

---

Digitalgangster Members Publicize Personal Information

Hacker: Rox
Main source: http://digitalgangster.com/4um/showthread.php?s=b23e0eba7bffa76180c659df0e815cb3&t=113985&page=5
Main Profile: http://digitalgangster.com/4um/member.php?u=133961
Contact: roxrmsnigs (AOL instant Messenger)
---

Rox is a senior member at Digitalgangster and is known for publicizing personal information.
The picture below is of an instant message Rox posted himself in the DG forum.
He's giving out the home address and phone numbers of a user's mother and family members.

The original has yet to be removed from the forum.
To have this post removed, contact Abuse@hostdime.com and provide them with the link where the information is displayed.
Link Location: http://digitalgangster.com/4um/showthread.php?s=b23e0eba7bffa76180c659df0e815cb3&t=113985&page=5

CWkomando Cyber-warrior Profile

Hackers: CWkomando
Known Emails:
s0m3b0dy1@gmail.com, CWkomando@gmail.com
Associates: Septemb0x
Defaced Pages: http://racshop.org http://www.pasap.org/ http://longhorntruck.com/
Related sites: http://www.cyber-warrior.org/cwkomando http://www.turk-h.org/Attacker/8398/cwkomando

Main source: http://www.cyber-warrior.org/
Last active: January 21th 2010
---

Komando was active as of today. How hard is it for the authorities to demand IP's from the ISP?
Click image for larger view

Wednesday, January 20, 2010

CWKomando strikes again / longhorntruck.com Hacked

Hackers: CWkomando
Associates:
Septemb0x
Defaced Pages: http://racshop.org http://www.pasap.org/ http://longhorntruck.com/
Related sites: http://www.cyber-warrior.org/cwkomando http://www.turk-h.org/Attacker/8398/cwkomando

Main source: http://www.cyber-warrior.org/
Last active: January 18th 2010
---

Longhorntruck.com usually shows images of bed covers, hitches and truck rims -- not images of masked men in fatigues holding weapons.Orlando Garcia owns the business and learned from a customer that his site was hacked.Garcia outsources his Web site's maintenance to a company called Network Solutions.Other small businesses in New York and Chicago who used the company also found their homepages hacked by "cwkomando."James Stansberry owns a company called Affordable Computer Expert.Stansberry's advice, he said, is to protect yourself by always protecting your passwords.
[ksat]

As of 1/20/2010 longhorntruck.com still remains defaced.

Vh1's T-Weed Addreses Fraud Allegations

Reporters said Tweed had stolen money from a women claiming he is an executive at the famed Fashion designer ED Hardy.


Road Runner Easily Leaks Customer Info


--- Self Investigated ---

Road Runner High Speed Online has a flaw in their 'Help' page.
To gain access to personal user information, you are required to enter your 'primary' phone number (for the account) and your Mac address.
These are things that can be easily obtained through information gathering.
The mac address of a user can be found by breaking down the properties of the ip address or by simply using the 'arp -a' (in dos/cmd prompt) command to match an IP with the 'Physical Address'.
Once the account is accessed the hacker can make changes to the account, change passwords and upgrade or cancel service.

E-mail ID of ex-Delhi MLA Vijay Jolly hacked


The hackers sent e-mails from his account claiming that Jolly had misplaced his wallet in UK and needed financial help. The hacker circulated the mail to Jolly's acquaintances mentioning he needed $1,450 to pay hotel bills so that he could return home. "I will appreciate whatever you can afford to assist me with. I'll pay back the money as soon as I return. Let me know if you can be of any help. I don't have a phone where I can be reached,'' the mail had claimed.
[indiatimes]

MiFi router hacked to reveal user's location


A user of Novatel Wireless's MiFi ‘portable Wi-Fi' hotspot appears to have stumbled on a security flaw that could allow an outsider to work out a user's location without their knowledge.

According to Adam Baldwin of EvilPacket, the unit's built-in GPS interface can be hacked if an attacker can persuade a MiFi owner to visit a malicious site with the GPS turned on, thereby revealing the user's coordinates to the attacker.

[Techworld]

Iranian president's Web Site Hacked


President Ahmadinejad site has reportedly been hacked. According to various tech blogs, anyone navigating to Ahmadinejad's site was redirected to a text file reading, in part, "Dear God, In 2009 you took my favorite singer—Michael Jackson... Please, please don't forget my favorite politician—Ahmadinejad." The text file is now inaccessible, possibly because it was pulled by the site's Web master or because the site has been overloaded with visits.

[Thedailybeast]

How to Fix a Hacked Facebook Account


  1. If your account has been hacked and there is access to your login email address, reset your password by selecting the "Forgot" link that appears above the Password field on the Login page. When you have done this, an email is sent to you with steps for this process.

  2. Step 2

    If your login email has been compromised or changed, and your account has been hacked, then you need to send Facebook a status update. This will allow them to look into it further. http://www.facebook.com/help/?faq=15838

  3. Step 3

    If your email account has been compromised, please take the following steps:
    • Think of a unique and complex password and keep it unavailable to everyone. You can accomplish this from the Account Settings page of your account or by using the "Forgot" link on the login page.
    • Do step one for every email address associated with this account. Make sure to avoid using the same password for any other account.
    • Verify all email addresses associated with your account on the Contact Email section at https://www.facebook.com/editaccount.php
    • From your Facebook Account Settings page, complete a unique security question to your account, if you have not already done so.
    • Report to Facebook any and all suspicious material at http://www.facebook.com/security

  4. Step 4

    If money transfers were sent from your account, and you did not send them, cybercriminals could be using your social network in an attempt to trick your friends into sending them money. These criminals gain control using Chat or Status features and claim that you are stuck far away and in need of financial assistance or even worse dead. Malicious software could have been downloaded to your computer or your password could have been stolen by a Facebook phishing website look alike.

  5. Step 5

    If you suspect malicious software could have been downloaded to your computer do the following steps:
    • Never click on suspicious links: It is possible a Frenemy could have sent you spam, viruses, or malware. Do not run ".exe" files on your computer without knowing their origin.
    • Be sure you are using the most current version of your browser, which contains important security warnings and protection features.
    • Run a current version of anti-virus software. If your computer has been infected, you will need to remove the harmful programs to keep your info secure.

    • From your Facebook Account Settings page, reset your password. Always choose a different one than you use for other sites. Make up a password with a complex number string, unusual letters, or a combo of punctuation marks. It should be at least six characters long. It is not advisable to use common words from the dictionary.

Popular Facebook App is Hacked

Mass referrals were coming from a Facebook application called "City Fire Department," a game where multiple players respond to emergency calls. The application had been modified to deliver an iFrame, which is a way to bring content from one website into another.
The iFrame serves up code that tries to exploit vulnerabilities in a PC's software. If it finds one -- a process that happens nearly instantly -- it then downloads a fake antivirus program called Antivirus Pro 2010.
[Techworld]

Tuesday, January 19, 2010

Adobe Fearing Hackers Who Leave No Trace


Acrobat is installed on about 95 percent of the machines in the world, and there have been a lot of vulnerabilities found in Flash,” said Jeff Moss, a security expert who sits on the Homeland Security Advisory Council. “If you can find a vulnerability in one of these products, you’re golden.”
[NYtimes]

Google Pulls Android From Chinese Market

Google on Tuesday postponed the launch of two mobile phones in China, adding to the potential commercial fallout of its dispute with Beijing over Internet censorship and e-mail hacking.

[AP]

Monday, January 18, 2010

Hacker Hosting Company Made2Own.com


Made2Own.com
says they are "committed to providing you reliable web hosting along with the friendliest support staff you will find", but what they don't tell you is that they're affiliated with DigitalGangster.com (A forum where hackers go to exchange information). Users have reported complaints to Abuse@made2own.com about Digitalgangster attacks but have never received a response due to the relationship between the two.
Personally I would not recommend purchasing web hosting with Made2own.com, fore I do not believe it is a secure or loyal host

Chinese Hackers Target Gmail Users

Mass Gmail Accounts Hacked (Solution)


The majority of Gmail accounts are hacked due to lack of security on the users part. A major security flaw is in their Forgot my password page. Users make the questions too easy; example: "Whats my favorite color?". Once the hacker answers the question correctly they are allowed to set a new password therefore locking you out of your account.
Solution: Make the questions more personal, only things you'd know; example: 'whats my voice mail password'.

Audioarts.nl Hacked

Hacker: wh0sLauqhteR
Related sites: http://www.zone-h.org/archive/special=1/notifier=wh0sLauqhteR
Defaced pages: http://www.audioarts.nl/forum/profile.php?mode=register&sid=afa136d18b77c149d32845ea59705b62
---


Lakeview Restaurant's Web Site Hacked

Hackers: CWkomando, Septemb0x
Defaced Pages: http://racshop.org http://www.pasap.org/
Related sites: http://www.cyber-warrior.org/cwkomando http://www.turk-h.org/Attacker/8398/cwkomando

Main source: http://www.cyber-warrior.org/
Last active: January 18th 2010
---
Instead of photographs of French and Italian cuisine, would be diners were greeted by photos of masked men wearing fatigues and brandishing RPGs.


[NBCchicago]

Moscow Highway Billboard Hacked to Show Porn

The owner of the 9-by-6-meter advertising screen said hackers had broken into the screen’s computer system and turned on the porn. “They were either acting out of hooliganism or were from a rival company,” Viktor Laptev, commercial director of advertising firm Panno.ru, told RIA-Novosti.

The following video contains nudity not suitable for minors.

[Jalopnik.com] [Hackinthebox.org]

Palestinian Mujaheeds Target Jewish Chronicle

Groups: Palestinian Mujaheeds
Related Site: http://alislaah4.tripod.com/moreadvices2/id36.htm

---
The Turkish-speaking group displayed anti-Semitic messages on The Jewish Chronicle's home page for several hours, said editor Stephen Pollard.


A Google cache of the hacking showed a Palestinian flag displayed above statements in Turkish and English. [Skynews.com]