Cern's LHC hit with the same CERN technology by Greek hackers
15/09/2008 Written by SyS64738 (Roberto Preatoni)
The phantomatic Higgs boson still has no face, as the Cern’s LHC (Large Hadron Collider) didn’t produce yet the planned protons collisions. Meanwhile Cern’s website lost his own face, due to a Greek group of defacers called GST (Greek Security Team).
The defacers left a homepage message in Greek language. While when we learned about the CERN defacement everybody here was thinking about a politically, ethically or scientifically motivated attack, once translated, the message left by the defacers embraces the usual topics so much loved by true script kiddies: we are the best, you are the worst, we are leet, you are lame, we are 2600 (I wonder if these guys actually know what 2600 means in the hacker world…), irc wars.… blah blah blah.
… continue
Yet another Microsoft defacement
30/07/2008 Written by SyS64738
Once again Microsoft got defaced by means of SQL Injection. Few days ago a defacer known as Agd_Scorp defaced 6 Microsoft websites.
Few years ago, Microsoft was the target of the attacks mostly because defacers liked Linux more. Now it is just “for fame”. Also in this case defacer didn’t leave any message.
The defacer also attacked many high profile companies and other interesting targets (for example, https://dol.hqda.pentagon.mil) by means of SQL Injection as to demonstrate that sometimes people are not checking the source code well enough…
HITB Security Conference 2008 in Malaysia
25/07/2008 Written by minor
If you still didn’t have vacations, maybe it is worth to wait until the end of the October and visit the Hack In The Box conference in Malaysia. Let’s take a look on some of the speakers and their topics.
Probably one of the most interesting topics will be introduced by Kris Kaspersky, he will talk about the Intel CPU bugs that lead to remote code execution regardless to the operating system used and show attacks based on JavaScript or just TCP/IP packets against Intel based machine.
Malaysian Kaspersky website and shop hacked. Users at risk?
20/07/2008 Written by Roberto Preatoni
The official Malaysian Kaspersky Antivirus’s website has been hacked yesterday by a Turkish cracker going by the handle of “m0sted”.
Along with it, the same cracker hacked also the official Kaspersky S.E.S. online shop and its several other subdomains.
The attacker reported “patriotism” as the reason behind the attack and “SQL Injection” as the technical way the intrusion was performed.
Both websites has been home page defaced as well as several other secondary pages. The incident, though appearing a simple website defacement, might carry along big risks for end-users because from both the websites, evaluation copies of the Kaspersky Antivirus are distributed to the public. In theory, the attacker could have uploaded trojanized versions of the antivirus, infecting in this way the unaware users attempting a download from a trusted Kaspersky’s file repository (remember the trojan in the Debian file repository?).
Blogless blogs, Olympic blogs the Chinese way
15/07/2008 Written by SyS64738 (Roberto Preatoni)
For all you folks, fan of the civil liberties as well as the Olympic games, here’s the integral text of the International Olympic Committee Blogging Guidelines for the accredited persons. It’s the perfect companion of the recent decision from the Olympic Chinese Committee to ban the flags from the stadiums.
As you will read, blogs are admitted but:
– should not contain information not related to strictly personal experience – should not contain sound or moving images from the Olympic Games – should not contain still images containing any sporting action of theGames or the Opening, Closing or Medal Ceremonies of the Games. – should not contain the Olympic symbol – should not contain commercial references (Blogspot, bye bye!) – should not contain the word “Olympic” within the blog URL
But you are lucky, still you can use your plain white Olympic blog homepage to test the brightness of your screen.
… enjoy and please comment the official text