HackRead - Latest Cyber Crime - Information Security - Hacking News

Petitions Website Change.org Hacked and Edited by Terminal hacker

hackread — Sat, 25 May 2013 09:39:17 +0000

A hacker going with the handle of Terminal Hacker has hacked famous petition site Change.org, as a result the hacker successfully changed and at some point edited the petitions with custom backgrounds and also modified the petition for Kaitlyn Hunt to express concerns over security. HackersNewsBulletin reports that hacker also left a message on the hacked website according to which:

Did you know how Easy this all was?
Anyone could manipulate ANY of your petitions and with no trouble at all.
For such a great site, you have let down your guard and let petitions be editable by anyone who knew the trick. The simple changing of the petition URL and adding of only 11 characters made it possible to change any petition and one would ever want.
Improve your security to prevent issues such as this.
In fact this petition is a testament for your Failure. It was previously about a poor girl being prosecuted for loving another girl of a like age. But now I use this petition, I have changed it to be a message.
Improve your security
-Terminal

Screenshot of edited petition:

As shows in the below given screenshot, at the time of publishing this article, the website was down and displaying message of server misbehaving.

Follow @HackRead

ITV News London Twitter account Hacked by Syrian Electronic Army

hackread — Fri, 24 May 2013 22:36:04 +0000

The Pro Syrian President Bashar al-Assad hackers from Syrian Electronic Army has hacked the official Twitter account of British broadcaster ITV News, just days after Twitter claimed to have boasted up the security to avoid such attacks. ITV's London news Twitter account @itvlondon was taken over by Syrian hackers on Friday and took advantage of the account by tweeting links against Syrian rebels and tweets like:

"Cameron cuts education funding, triples aid to Syrian rebels: "Israel's long security is the UK's first priority". itv.co/36k2PO" one of the fake tweet posted by the SEA reads.
"Just kidding. The Syrian Electronic Army was here. #SEA".

ITV News also confirmed that their accounts were hacked but restored later and all fake tweets were deleted. It is clear that for now nothing can stop the Syrian Electronic Army from hacking Twitter accounts. Follow @HackRead

United Nations Information Center Jakarta Websites Hacked by Dr.SHA6H

hackread — Fri, 24 May 2013 21:26:31 +0000

Famous hackavist Dr.SHA6H who is known for his high profile is back with another one, this time by hacking and defacing 3 official websites of United Nations Information Center for Jakarta (http://www.unic-jakarta.org), Indonesia. Dr.SHA6H left a deface page along with a Youtube video and text message on all three websites, asking where is United nation and urging them to play their role in bringing peace to Syria.

Ops, This is Syria Today, Where are the claim to defend human rights? where are they fighting terrorism?

The targeted sites belong to United Nations Information Center for Jakarta, United Nations Information Center for Jakarta news and media, United Nations Information Center for Jakarta for university. Links of targeted websites along with their mirrors are given below.

www.unic-jakarta.org
http://www.zone-h.org/mirror/id/19816128
www.new.unic-jakarta.org
http://www.zone-h.org/mirror/id/19816133
www.un4u.unic-jakarta.org
http://www.zone-h.org/mirror/id/19816130

United Nations is under massive cyber attack these days, earlier United Nation Pacific, UNICEF and UNDP Croatia websites were hacked by Pakistanis and Turkish hackers. At the time of publishing this article, all three websites were hacked and displaying deface page left by the hacker. Follow @HackRead

50 Israeli Websites Hacked by CapoO_TunisiAnoO

hackread — Fri, 24 May 2013 10:08:58 +0000

Israeli cyber space is always under attack by hackers from all aver the world, one of those hackers is known as World known as CapoO_TunisiAnoO from Tunisian; who is back with another hack against Israel, this time by hacking and defacing 50 Israeli websites. CapoO_TunisiAnoO left different deface pages along with a messages on all hacked websites, some against Israel and in favor of Palestine.

SingLe Attacker By CapoO_TunisiAnoO, Don't panic, your file & database is safe. W00t! you g0t pwned! CapoO_TunisiAnoO Falagua Team - GAza_Hacker - CIH .

The hacked sites belong to private businesses such as computer business, web development solutions, real estate, movie studio, fashion designing boutique, dating sites and food chains. Links of targeted websites along with the mirrors can be found on Zone-h. CapoO_TunisiAnoO has hacked and defaced more then 7000 Israeli websites since he begin to start Israeli cyber space back in 2012. At the time of publishing this article, all websites were restored and working online. Follow @HackRead

Official UNICEF and UNDP Croatia Websites Hacked by Turkish Hackers

hackread — Fri, 24 May 2013 05:51:02 +0000

Three Turkish hackers going with the handles of eboz , flowchart and Vezir.04, collectively have hacked and defaced the official websites of United Nations Children's Fund (UNICEF) and United Nations Development Programme (UNDP) designated for Croatia. Hackers left their deface page along with a message on both hacked websites in Turkish language, according to which: Message in Turkish language:

Kankalarım hep yanımda arkadaş içinde, Yanımda olmayan mı var çekimlik her nefeste Vezirist’e gelsin, Trabzon 2013 Dostlara selam ölmedik hala yaşıyoruz!

English translation:

Always there for me in my homeboys friend, Do not have a shot come to me with every breath Vezirist'e, Trabzon 2013, Hello friends who still live in're not dead!

Links of targeted website along with their mirrors are available below.

eboz , flowchart and Vezir.04 are same hackers who previously had hacked and defaced official Pakistan's Goolge and HP official websites. At the time of publishing this article, both websites were hacked and displaying deface page left by the hackers. Follow @HackRead

49 Israeli Websites Hacked by The key40 from Algeria

hackread — Thu, 23 May 2013 14:11:15 +0000

An Algerian hacker going with the handle of 'the key40' has hacked and defaced total 49 Israeli websites. The sites were left with not one but several partially deface pages and messages against Israel, favoring Palestinians, such as:

Hacked by The Key40 from Algeria, Israel = Just an illusion in your eyes who will be erased soon Inshallah. Palestine will be free.

Links of hacked sites along with their mirrors are available on Zone-h. All targeted sites belong to private businesses such as medical clinics, web development, studios, real estate and malls. After analyzing hacker's Zone-h archive, it shows that he has been attacking Israeli sites since the beginning and so far has hacked and defaced hundreds of Israel based sites. At the time of publishing this article, some sites were restored and some one taken offline. Follow @HackRead

Chinese Hackers who breached Google in 2010, gained access to massive Spy Data: US officials

hackread — Thu, 23 May 2013 13:23:37 +0000

Back in the year 2010, the Breach performed by Chinese hackers that was a part of the operation termed as Operation Aurora allowed them to gain access into a special database of Google. The database contains information about thousands of orders relating to American surveillance targets. Google admitted the infiltration some years ago and mentioned that hackers managed to steal some of the intellectual property of Google and also gained partial access to the email accounts of some human right activists. When Google admitted the hack in 2010, it mentioned that they hackers stole a source code of its search engine and the hack was initiated to target the email accounts of some human right activists who had a critical record for human rights in China. But the news which has come up recently says that they also gained access to the surveillance information which includes the emails owned by diplomats, suspected spies and terrorists which were being monitored by various law enforcement agencies. Sources have revealed that the hackers were looking out for the names of intelligence operatives of China who were being targeted for surveillance by the US. However the extent to which the information has been compromised is still unknown but the investigation conducted by FBI did not indicate any misuse of the hacked information against national security. Google after the hack has tightened defense systems against any potential hacking activity. A senior official of Microsoft stated last month that the time when the hackers infiltrated the servers of Google, the system was compromised. He also mentioned that Microsoft has come to the conclusion that the hackers conducted the breach to identify the accounts that are subject to surveillance by the law enforcement authorities and agencies of US. This attack named Operation Aurora targeted about 34 companies which include Juniper, Adobe, Symantec, Yahoo, Morgan Stanley, Northrop Grumman and many others. The Chinese government however has denied their direct or indirect involvement with any of the attacks including the 2010 attacks. Follow @HackRead

Official United Nation Pacific Website Hacked by Pakistani Hacker

hackread — Tue, 21 May 2013 23:18:01 +0000

H4x0r HuSsY from Pakistan who was in news for his high profile hacks against India and Sri Lankan is back with another one, this time the official website of United Nation Pacific (http://pacific.one.un.org/) has been hacked and defaced few hours ago. The hacker left a deface page along with a message on the index page of the UN website, marking his name with long live Pakistan messages all over. However, the reason for attacking the site was not mentioned anywhere.

HackeD By H4x0r HuSsY, Pakistani Leet H4x0r made a Visit...PAKISTAN ZINDABAD, United Nations - Pacific - Server r00t3D!

Link of targeted website along with its link can be found below:

The United Nations Development Assistance Framework (UNDAF) for the Pacific Sub-Region is a five-year strategic programme framework that outlines the collective response of the UN system to development challenges and national priorities in 14 Pacific Island Countries and Territories (PICTs), namely Cook Islands, Fiji, Federated States of Micronesia, Kiribati, Nauru, Niue, Palau, Marshall Islands, Samoa, Solomon Islands, Tokelau, Tonga, Tuvalu and Vanuatu for the period 2013-2017. At the time of publishing this article, the deface page was removed and site was working online. Follow @HackRead

Microsoft Warns of New Trojan Hijacking Facebook Accounts

hackread — Tue, 21 May 2013 21:14:53 +0000

Microsoft has released a warning of a new malware disguised extension for Google Chrome and Firefox add-on, began circulating on Facebook, targeting and hijacking Facebook accounts.

Detail: The virus seems to work focusing on the Facebook pages of Brazilians, including specific commands in Portuguese.

According to a bulletin from Microsoft, the file tries to maintain a legitimate update for browsers. Once downloaded, the Trojan monitors the infected computer is logged into a Facebook account and try to download a file 'config' which includes a list of commands for the browser extension. From there, the malware is able to perform typical actions of Facebook, such as 'like' a page, share, post, join a group and chat via 'chat' with friends who are part of the account "infected". Some variations of malware include commands to post inflammatory messages in Portuguese and with links to other pages on Facebook. According to Microsoft, the number of 'likes' and shares on one of these pages grew during the analysis of the Trojan - suggesting that infections continue. It is unclear how the malware settles or even how many infections may have already happened. In addition, the ability of the virus can be greater, it is capable of modifying messages, URLs, Facebook pages at any time. Finally, although the malware appears to have been designed with a focus on targets Brazilians, Microsoft concludes that the Trojans can easily be modified to attack users in other regions. Follow @HackRead

How Brazilian Government is Spying on its People

hackread — Tue, 21 May 2013 20:40:14 +0000

The federal government of Brazil may indeed have access to private data that citizens may have provided to any private company. More than that, a state agency may get information that was cleared by another entity in the state with different purpose. The findings are from a law professor Bruno Magrani, FGV-RJ. He is the author of the Brazilian chapter in a study that maps the ways in which governments around the world can access the private data that private companies process. The research was coordinated by the Center for Democracy and Technology, based in Washington, and will be published as a book this month. There will be chapters on Germany, Canada, China, USA, Israel and the UK, among others - the Leaf had exclusive access to the section dealing with the Brazilian case. We identified two main ways in which the state has systematic access to data from the private sector. By Anatel, which deals with real-time access to data from mobile operators, is technically able to know who called whom and how long each call lasted. And by means of agreements between public entities such as the federal police and prosecutors, and companies like Facebook and Google. This type of agreement is intended to accelerate processes.

SIMULTANEOUS OPENING:

While both the prosecutor and the police may ask the Justice department to break confidentiality, as ABIN (Brazilian Intelligence Agency) does not have this power. This, however, does not mean that the body be without access to this information. The Sisbin (Brazilian System of Information), Abin and several other federal agencies, determines how and which data can be shared with the government agencies. Thus, the Federal Police, for example, has a claim of breach of confidentiality of e-mail authorized by any instance of Justice, Abin can have access to the same information. "And who knows what other institutions," says Magrani.

The happens, he says, because there is no specific legislation on the subject in Brazil. "It is the Civil Code that discipline," he explains. "But in very general terms."
Although emphasize that the goal of having access to the raw data from mobile operators is not doing surveillance, Anatel establishes that has jurisdiction to define "breadth, depth, timing and convenience in obtaining the data and information needed."

It is even possible for agencies to know which lines communicate with each other - according to the agency, it would be possible to know whether a company is, for example, purposely dropping calls. Expected to start operating in early 2013, the online system proposed by this resolution has not yet been put into practice. [Via: FolhaUOL] Follow @HackRead

HackRead - Latest Cyber Crime - Information Security - Hacking News

Petitions Website Change.org Hacked and Edited by Terminal hacker

Did you know how Easy this all was?

Anyone could manipulate ANY of your petitions and with no trouble at all.

For such a great site, you have let down your guard and let petitions be editable by anyone who knew the trick. The simple changing of the petition URL and adding of only 11 characters made it possible to change any petition and one would ever want.

Improve your security to prevent issues such as this.

In fact this petition is a testament for your Failure. It was previously about a poor girl being prosecuted for loving another girl of a like age. But now I use this petition, I have changed it to be a message.

Improve your security

-Terminal