Autamn Technologies - Certified Ethical Hackers at Cochin

22/01/2013

TSA TIRED OF SEEING YOU NAKED!

The Transport Security Administration says its techies have failed to create software that would allow passengers to appears less naked when going through scanners, so it is removing the devices. Read this article by Chris Matyszczyk on CNET News.

21/01/2013

New variant of banking malware Shylock spread via Skype.

The news is very concerning, a new variant of the banking malware known as Shylock has been detected, it includes the capability to spread over Skype. Shylock is an old acquaintance for security co...

16/01/2013

The Basics of Hacking and Pe*******on Testing: Ethical Hacking and Pe*******on Testing Made Easy!

The Basics of Hacking and Pe*******on Testing serves as an introduction to the steps required to complete a pe*******on test or perform an ethical hack. You learn how to properly utilize and interpret the results of modern day hacking tools; which are required to complete a pe*******on test. Tool...

16/01/2013

World's Best Firefox Pentesting AddOns!

This is a massive list of Firefox Pe*******on Testing Addons. We think we have compiled the world's biggest and best list - do you agree?

14/01/2013

Several Yahoo users complained that their accounts have been hacked. It appears that the Yahoo email accounts are being hacked after victim click a malicious link included.

The attack was started after one hacker or Security Researcher "Shahin Ramezany" uploaded a video in Youtube that demonstrates how to hack a Yahoo account by leveraging a DOM based XSS Vulnerability. The attack works in all major browsers.

In the Demo video, the hacker included a link to external html file hosted in his website and send to his victim. He opened the malicious link from the victim account.

When the victim opens the malicious link, the cookie logs of the victim are being stored in hacker website. Hacker managed to use those cookies to log in into the victims account.

A Voice actress and singer Cristina Vee, was affected by this hack and posted in a twitter account

According to The Next Web report, Yahoo has plugged the security hole in question.

At the time of writing, we are not able to confirm whether the attack was launched by the Shahin Ramezany or not.
*Update*:
Thought the Next Web report says the yahoo fixed the vulnerability, offensive-security Team claims that the vulnerability is still there.

"With little modification to the original proof of concept code written by Abysssec, it is still possible to exploit the original Yahoo vulnerability, allowing an attacker to completely take over a victim’s account." Offensive-security post reads. The POC code will be released once Yahoo patched the vulnerability.

For More News.....Please Like This Page https://www.facebook.com/pages/Autamn-Technologies-Certified-Ethical-Hackers-at-Cochin/341885139210146?ref=hl

12/01/2013

NEWS FROM AUTAMN TECHNOLOGIES -

Romanian sentenced for multimillion-dollar payment card hack scheme:-
------------------------------------------------------------------------
A Romanian national was sentenced today to serve 21 months in prison for his role in an international, multimillion-dollar scheme to remotely hack into and steal payment card data from hundreds of U.S. merchants’ computers, announced the U.S. Department of Justice.

Cezar Butu, 27, of Ploiesti, Romania, was sentenced by Judge Steven J. McAuliffe in U.S. District Court in New Hampshire.

On Sept. 17, 2012, Butu pleaded guilty to one count of conspiracy to commit access device fraud.

In his guilty plea, Butu admitted that, from approximately 2009-2011, he participated in a Romanian-based conspiracy to hack into hundreds of U.S.-based computers to steal credit, debit and payment account numbers and associated data (collectively “payment card data”) that belonged to U.S. cardholders.

According to court documents, Butu and his co-conspirators used the stolen payment card data to make unauthorized charges on, and/or transfers of funds from, cardholders’ accounts (or alternatively to transfer the stolen payment card data to other co-conspirators who would do the same).

Butu admitted that he repeatedly asked an alleged co-conspirator to provide him with stolen payment card data and that the alleged co-conspirator provided him with instructions for how to access a website where a portion of the stolen payment card data was stored. Butu later attempted to use the stolen payment card data to make unauthorized charges on, or transfers of funds from, the accounts.

According to Butu’s plea agreement, he also attempted to sell, or otherwise transfer, the stolen payment card data to other co-conspirators for them to use in a similar manner. He admitted to acquiring stolen payment card data belonging to approximately 140 cardholders during the course of the scheme.

In his plea agreement, Butu agreed to be sentenced to 21 months in prison.

Butu’s co-conspirator Iulian Dolan pleaded guilty to one count of conspiracy to commit computer fraud and two counts of conspiracy to commit access device fraud, and has agreed to be sentenced to seven years in prison. Dolan’s sentencing hearing is scheduled for April 4, 2013.

Alleged co-conspirator Adrian-Tiberiu Oprea is scheduled for trial on Feb. 20, 2013, in U.S. District Court in New Hampshire.

The case was investigated by the USSS, with the assistance of the New Hampshire State Police and the Romanian Directorate of Investigation of Organized Crime and Terrorism.

12/01/2013

NEWS FROM AUTAMN TECHNOLOGIES -
FBI Arrests Algerian Bank Hacker in Thailand
________________________________________________
An alleged Algerian computer hacker wanted by the FBI on suspicion of stealing millions of dollars from US banks to fund a life of luxury has been arrested in Bangkok.

The FBI have been tracking 24-year-old Hamza Bendelladj, a computer science graduate, for three years.

He is reported to have begun hacking into banks at the age of 20.

Mr Bendelladj said he used the money to fund a life of luxury, a Thai police chief has been quoted as saying.

He was detained at a Bangkok airport on Sunday after arriving from Malaysia for a connecting flight to Cairo.

US authorities accuse him of hacking into private accounts in more than 217 banks and financial companies worldwide, causing millions of dollars in losses.

"When asked what he did with the money, he said he spent it on travelling and a luxurious life, like flying first class and staying in luxury places," immigration police chief Pharnu Kerdlarpphon told reporters.

He was arrested during a stopover at Thailand's international airport while travelling from Malaysia, where he said that he and his family had been on holiday.

Police said they had confiscated two laptops, a tablet computer, a satellite phone and a number of external hard drives from Mr Bendelladj.

He will be extradited to the US state of Georgia, where a district court has issued an arrest warrant.

For More News.....Please Like This Page https://www.facebook.com/pages/Autamn-Technologies-Certified-Ethical-Hackers-at-Cochin/341885139210146?ref=hl

12/01/2013

Payback, Indonesian president website defaced !!!

Hackers crew Jember Hacker terrorists (JHT) deface the official website of Indonesian president (http://www.presidensby.info) with a message reads, “This is a PayBack From Jember Hacker Team”. Hackers deface website of president Susilo Bambang Yudhoyono (SBY) apparently in protest at growing corruption and wealth inequality in the country and because of increasing anger at the current administration. Deface page mention hacker code name as "MJL007" who performed the hack and government is working with law enforcement teams to examine log files in a bid to trace the origin of the attack.

For More News.....Please Like This Page https://www.facebook.com/pages/Autamn-Technologies-Certified-Ethical-Hackers-at-Cochin/341885139210146?ref=hl

11/01/2013

5 Checks You Must Run To Ensure Your Network Is Secure !!!
Twenty-four hours a day, seven days a week, 365 days each year – it’s happening. Whether you are awake or asleep, in a meeting or on vacation, they are out there probing your network, looking for a way in. A way to exploit you; a way to steal your data, a place to store illegal content, a website they can deface, or any of a hundred other ways to mess with you for the simple joy of it all. And they can do this with relative ease, even in an automated fashion, with simple tools that are readily available to all. We are talking about network scanners. The bad guys use them all day every day to assess networks around the world...

More News....Like This Page>>> https://www.facebook.com/pages/Autamn-Technologies-Certified-Ethical-Hackers-at-Cochin/341885139210146?ref=hl

10/01/2013

MasterCard Hacked By Syrian Electronic Army!!!
On tip of a readers, yesterday we came across a new MasterCard hack, performed by Syrian Electronic Army. Hackers was able to breach MasterCard Blog (https://insights.mastercard.com) and make a new blog post on the website with title "Hacked By Syrian Electronic Army" on January 5, 2013. For now MasterCard deleted that post, but readers can check Google cache. Today we tried to contact the hacker, but may be they are busy in Hacking Next Target , I started my investigation that how they can hack such a big economic website's blog. Starting from very first step, Information gathering about your target.

09/01/2013

Hacking for Dummies!

A new edition of the bestselling guide-now updated to cover the latest hacks and how to prevent them! It's bad enough when a hack occurs-stealing identities, bank accounts,

07/01/2013

Confidential documents from Japanese politics stolen by malware!

Last December Japan Aerospace Exploration Agency was hit again by malware that stolen secret information on newest rockets from an internal computer, it was not first time for the Japanese agency that was already victim of a cyber attack having same purpose, cyber espionage to obtain information on another technological advanced project related to the design of an unmanned vessel that ferries cargo to the International Space Station, the “H-2 Transfer Vehicle”.

Not only the industry is target of the offensives, also internal politic class of the country is subject to continuous attacks, once again Japan ministry computers were infected by malware that suspected to have stolen more than 3,000 confidential documents, many on global trade negotiations including the US-led Trans-Pacific Partnership multilateral trade pact.

The National Information Security Center of the Cabinet Secretariat traced anomalous outwards connections that used HTran tool.

Forensics experts discovered during the investigation that the attackers used “HTran” the Advanced Persistant Threat (APT) exploit kit to infect computers at country’s Ministry of Agriculture, Forestry and Fishery.

The principal use for HTran is the camouflage of Command &Control (C&C) servers to hinder the discovery of the origin of the attack, so far the perpetrators of the attacks have not yet been identified.

Many attacks were originated from China, the most active country in cyber espionage, the Elderwood project is the demonstration that groups of hackers are exploiting zero-day vulnerabilities to steal sensible information and to compromise control systems inside critical infrastructures.