HackRead - Latest Cyber Crime - Information Security - Hacking News

Official UNICEF and UNDP Croatia Websites Hacked by Turkish Hackers

hackread — Fri, 24 May 2013 05:51:02 +0000

Three Turkish hackers going with the handles of eboz , flowchart and Vezir.04, collectively have hacked and defaced the official websites of United Nations Children's Fund (UNICEF) and United Nations Development Programme (UNDP) designated for Croatia. Hackers left their deface page along with a message on both hacked websites in Turkish language, according to which: Message in Turkish language:

Kankalarım hep yanımda arkadaş içinde, Yanımda olmayan mı var çekimlik her nefeste Vezirist’e gelsin, Trabzon 2013 Dostlara selam ölmedik hala yaşıyoruz!

English translation:

Always there for me in my homeboys friend, Do not have a shot come to me with every breath Vezirist'e, Trabzon 2013, Hello friends who still live in're not dead!

Links of targeted website along with their mirrors are available below.

eboz , flowchart and Vezir.04 are same hackers who previously had hacked and defaced official Pakistan's Goolge and HP official websites. At the time of publishing this article, both websites were hacked and displaying deface page left by the hackers. Follow @HackRead

49 Israeli Websites Hacked by The key40 from Algeria

hackread — Thu, 23 May 2013 14:11:15 +0000

An Algerian hacker going with the handle of 'the key40' has hacked and defaced total 49 Israeli websites. The sites were left with not one but several partially deface pages and messages against Israel, favoring Palestinians, such as:

Hacked by The Key40 from Algeria, Israel = Just an illusion in your eyes who will be erased soon Inshallah. Palestine will be free.

Links of hacked sites along with their mirrors are available on Zone-h. All targeted sites belong to private businesses such as medical clinics, web development, studios, real estate and malls. After analyzing hacker's Zone-h archive, it shows that he has been attacking Israeli sites since the beginning and so far has hacked and defaced hundreds of Israel based sites. At the time of publishing this article, some sites were restored and some one taken offline. Follow @HackRead

Chinese Hackers who breached Google in 2010, gained access to massive Spy Data: US officials

hackread — Thu, 23 May 2013 13:23:37 +0000

Back in the year 2010, the Breach performed by Chinese hackers that was a part of the operation termed as Operation Aurora allowed them to gain access into a special database of Google. The database contains information about thousands of orders relating to American surveillance targets. Google admitted the infiltration some years ago and mentioned that hackers managed to steal some of the intellectual property of Google and also gained partial access to the email accounts of some human right activists. When Google admitted the hack in 2010, it mentioned that they hackers stole a source code of its search engine and the hack was initiated to target the email accounts of some human right activists who had a critical record for human rights in China. But the news which has come up recently says that they also gained access to the surveillance information which includes the emails owned by diplomats, suspected spies and terrorists which were being monitored by various law enforcement agencies. Sources have revealed that the hackers were looking out for the names of intelligence operatives of China who were being targeted for surveillance by the US. However the extent to which the information has been compromised is still unknown but the investigation conducted by FBI did not indicate any misuse of the hacked information against national security. Google after the hack has tightened defense systems against any potential hacking activity. A senior official of Microsoft stated last month that the time when the hackers infiltrated the servers of Google, the system was compromised. He also mentioned that Microsoft has come to the conclusion that the hackers conducted the breach to identify the accounts that are subject to surveillance by the law enforcement authorities and agencies of US. This attack named Operation Aurora targeted about 34 companies which include Juniper, Adobe, Symantec, Yahoo, Morgan Stanley, Northrop Grumman and many others. The Chinese government however has denied their direct or indirect involvement with any of the attacks including the 2010 attacks. Follow @HackRead

Official United Nation Pacific Website Hacked by Pakistani Hacker

hackread — Tue, 21 May 2013 23:18:01 +0000

H4x0r HuSsY from Pakistan who was in news for his high profile hacks against India and Sri Lankan is back with another one, this time the official website of United Nation Pacific (http://pacific.one.un.org/) has been hacked and defaced few hours ago. The hacker left a deface page along with a message on the index page of the UN website, marking his name with long live Pakistan messages all over. However, the reason for attacking the site was not mentioned anywhere.

HackeD By H4x0r HuSsY, Pakistani Leet H4x0r made a Visit...PAKISTAN ZINDABAD, United Nations - Pacific - Server r00t3D!

Link of targeted website along with its link can be found below:

The United Nations Development Assistance Framework (UNDAF) for the Pacific Sub-Region is a five-year strategic programme framework that outlines the collective response of the UN system to development challenges and national priorities in 14 Pacific Island Countries and Territories (PICTs), namely Cook Islands, Fiji, Federated States of Micronesia, Kiribati, Nauru, Niue, Palau, Marshall Islands, Samoa, Solomon Islands, Tokelau, Tonga, Tuvalu and Vanuatu for the period 2013-2017. At the time of publishing this article, the deface page was removed and site was working online. Follow @HackRead

Microsoft Warns of New Trojan Hijacking Facebook Accounts

hackread — Tue, 21 May 2013 21:14:53 +0000

Microsoft has released a warning of a new malware disguised extension for Google Chrome and Firefox add-on, began circulating on Facebook, targeting and hijacking Facebook accounts.

Detail: The virus seems to work focusing on the Facebook pages of Brazilians, including specific commands in Portuguese.

According to a bulletin from Microsoft, the file tries to maintain a legitimate update for browsers. Once downloaded, the Trojan monitors the infected computer is logged into a Facebook account and try to download a file 'config' which includes a list of commands for the browser extension. From there, the malware is able to perform typical actions of Facebook, such as 'like' a page, share, post, join a group and chat via 'chat' with friends who are part of the account "infected". Some variations of malware include commands to post inflammatory messages in Portuguese and with links to other pages on Facebook. According to Microsoft, the number of 'likes' and shares on one of these pages grew during the analysis of the Trojan - suggesting that infections continue. It is unclear how the malware settles or even how many infections may have already happened. In addition, the ability of the virus can be greater, it is capable of modifying messages, URLs, Facebook pages at any time. Finally, although the malware appears to have been designed with a focus on targets Brazilians, Microsoft concludes that the Trojans can easily be modified to attack users in other regions. Follow @HackRead

How Brazilian Government is Spying on its People

hackread — Tue, 21 May 2013 20:40:14 +0000

The federal government of Brazil may indeed have access to private data that citizens may have provided to any private company. More than that, a state agency may get information that was cleared by another entity in the state with different purpose. The findings are from a law professor Bruno Magrani, FGV-RJ. He is the author of the Brazilian chapter in a study that maps the ways in which governments around the world can access the private data that private companies process. The research was coordinated by the Center for Democracy and Technology, based in Washington, and will be published as a book this month. There will be chapters on Germany, Canada, China, USA, Israel and the UK, among others - the Leaf had exclusive access to the section dealing with the Brazilian case. We identified two main ways in which the state has systematic access to data from the private sector. By Anatel, which deals with real-time access to data from mobile operators, is technically able to know who called whom and how long each call lasted. And by means of agreements between public entities such as the federal police and prosecutors, and companies like Facebook and Google. This type of agreement is intended to accelerate processes.

SIMULTANEOUS OPENING:

While both the prosecutor and the police may ask the Justice department to break confidentiality, as ABIN (Brazilian Intelligence Agency) does not have this power. This, however, does not mean that the body be without access to this information. The Sisbin (Brazilian System of Information), Abin and several other federal agencies, determines how and which data can be shared with the government agencies. Thus, the Federal Police, for example, has a claim of breach of confidentiality of e-mail authorized by any instance of Justice, Abin can have access to the same information. "And who knows what other institutions," says Magrani.

The happens, he says, because there is no specific legislation on the subject in Brazil. "It is the Civil Code that discipline," he explains. "But in very general terms."
Although emphasize that the goal of having access to the raw data from mobile operators is not doing surveillance, Anatel establishes that has jurisdiction to define "breadth, depth, timing and convenience in obtaining the data and information needed."

It is even possible for agencies to know which lines communicate with each other - according to the agency, it would be possible to know whether a company is, for example, purposely dropping calls. Expected to start operating in early 2013, the online system proposed by this resolution has not yet been put into practice. [Via: FolhaUOL] Follow @HackRead

CNN International Breached, Accounts Leaked, Claims to Post Fake Article By @Reckz0r

hackread — Tue, 21 May 2013 19:26:05 +0000

A hacker going with the Twitter handle of @Reckz0r has claimed to hack the official website of CNN’s International Edition website (http://edition.cnn.com/) for posting fake news and taking Israeli side on the Israel-Palestine issue. CyberWarNews reports that hacker announced the hack on his Twitter account, claiming to have hacked CNN International, accessing official accounts and posting four fake articles on the site which CWN could not found at the time of writing. The leak was uploaded on a Pastebin link with the site's data base along with a message.

Sup? It’s been a long fuckin’ time, my friends, Today. I shall show you that silence is golden when you’re trying to tap into more systems, and leak more crap.
My target was ‘CNN’. “Why?”, you must say? because they’re a bunch of fucking faggots trying to spread false news, your 9/11 is our 24/7. I strongly respect the Palestinian brotherhood, and it seems like CNN is on Israel’s side. and you do know one thing; “Whenever you see somebody supporting CNN, pwn him at sight.”
Their systems are poorly-misconfigured, just like how NASA’s DIRS is full of crap. CNN is no different from them, anyway. nuff’ talkin’ – Let the good ol’ show begin.
PUZZLE: I wrote 4 fake articles on edition.cnn.com, if you can guess what articles are those, I shall give you a crown, plus full-backup of CNN<3

Leaked data contains database, 9 usernames and their passwords in encrypted form, now available here, yet the claim of 4 fake articles couldn't be verified nor found anywhere. If the hacker or our friend from CWN came up with a verification, I would update readers with it straightaway. Follow @HackRead

Facebook and 8 Twitter Accounts of The Telegraph News Hacked by Syrian Electronic Army

hackread — Mon, 20 May 2013 22:28:38 +0000

Once again the world renowned Syrian Electronic Army has successfully target yet another media group, this time the official Facebook and 8 Twitter accounts of UK based The Telegraph News have been hacked. The hackers started Tweeting from the official Telegraph Twitter account, showing that the account has been hacked by them.

The hack was announced by hackers on their official Twitter and Facebook account with a message against the powers allegedly disturbing peace in Syria.

National O withstand Castle and challenge, a section will not defeat the land of castles ..
A complement to spread the message of truth and deliver the voice of the Syrian people and the reality of what is happening in our country away from fabrication and distortion ..
The leadership of the Syrian army-mail announces its success in penetrating accounts British Telegraph newspaper on Twitter

@TelegraphBooks, which is a verified Twitter account of Telegraph news dealing with Books and literature news and reviews confirms that their Twitter account was hacked. Complete detail of hack with the links can be find below. Link of official Facebook page with 168k Fans that was hacked by Syrian Electronic Army: https://www.facebook.com/TELEGRAPH.CO.UK Links of 8 hacked Twitter accounts: https://twitter.com/TelegraphNews https://twitter.com/TeleTheatre https://twitter.com/TelegraphOpera https://twitter.com/TelegraphArt https://twitter.com/TelegraphFilm https://twitter.com/Tele_Comedy https://twitter.com/TelegraphSport https://twitter.com/TelegraphBooks At the time of publishing this article, all Twitter accounts and Facebook page were restored and returned to their respective owners. Follow @HackRead

India’s Zee Television Network Hacked by Bangladeshi Hackers against Insulting Cricketers

hackread — Mon, 20 May 2013 08:39:08 +0000

A group of Bangladeshi hacktivists going with the handle of "Team Haxorsistz" has hacked and defaced three official websites of Indian based Zee satellite television network of Zee Entertainment Enterprises. The targeted sites belong to Zee Bangla, a Bengali language cable television channel, Zing TV, formerly known as Zee Muzic and Music Asia, Zee Cinema. The network was attacked as a result of an insult that was made during a reality show 'Mirakkel' on Zee Bangla TV channel, allegedly insulting the Bangladeshi cricketers as mentioned on the deface message page left by the hackers on all three websites.

Shame on you Mirakkel Beakkel Looser Don’t ever dare to make comedy of our crickets. Our cricketers are our pride and bloody piece of shit Jamil, don’t return to Bangladesh, Live in India, live for India.
We the people of Bangladesh don’t want to see your face here again.

Links of targeted websites along with their mirrors are available below. http://zeebangla.com/ http://zeecinema.com/ http://www.zingtv.in/ http://zone-h.com/mirror/id/19786509 http://zone-h.com/mirror/id/19786506 http://zone-h.com/mirror/id/19786505 The hack is high profile as Zee network somehow was away from the reach of hackers. At the time of publishing this article, all three websites were taken offline. Follow @HackRead

Saudi Arabian Defense Ministry Mail System Breached, Secret Emails Leaked by Syrian Electronic Army

hackread — Mon, 20 May 2013 00:09:00 +0000

Hackers from Syrian Electronic Army known for their hardcore support for Syrian President Bashar Ul Assad have claimed to have breached the Saudi Arabian Ministry of Defense Email system and as a result number of secret emails correspondence have been leaked online. For now the hackers have released an image taken from the email correspondence between a Saudi and British defense officials, discussing an arm deal.

Here is the screenshot of that email conversation:

The breach was announced by the hackers on their official Twitter account, claiming the responsibility of accessing the Saudi Arabian Ministry of Defense Mail System.

While talking with one of the hacker from Syrian Electronic Army, I was told that they have downloaded number of documents from Saudi Defence Ministry Server including correspondence, telegrams and secret weaponry contracts belonging to the Saudi Ministry of Defense and the General Organization for Military Industries.

Stay tuned, I will be updating readers with more on the breach.

Follow @HackRead