http://www.hellboundhackers.org HellBoundHackers RSS Feed en-GB mr_cheese@hellboundhackers.org (Mr_Cheese) mr_cheese@hellboundhackers.org (Mr_Cheese) Fri, 27 Jan 2012 03:53:19 +0000 Fri, 27 Jan 2012 03:53:19 +0000 HellBoundHackers RSS 2.0 generation class http://www.hellboundhackers.org/news/rss.xml http://www.hellboundhackers.org/516-zappos-accounts-hacked.html Online retailer Zappos.com is telling 24 million customers that their personal information has been hacked, and forcing all of them to reset their passwords. Cyber criminals may have accessed customers' names, e-mail addresses, billing and shipping addresses, phone number, and the last four digits of consumers' credit card numbers, the firm said in an announcement that was posted on Zappos' Web site late Sunday night. Full credit card numbers were not stolen, the firm said, because they were stored separately. The announcement included the text of an e-mail that Zappos customers will soon receive. "We were recently the victim of a cyber attack by a criminal who gained access to parts of our internal network and systems through one of our servers in Kentucky. We are cooperating with law enforcement to undergo an exhaustive investigation," says the e-mail, which is signed by Tony Hsieh, Zappos CEO. "For your protection and to prevent unauthorized access, we have expired and reset your password so you can create a new password. Please follow the instructions below to create a new password. We also recommend that you change your password on any other web site where you use the same or a similar password." While passwords that may have been stolen were cryptographically scrambled, Zappos said, it is still requiring all consumers to change their passwords. Zappos also recommends that consumers who use their Zappos password on other sites — a common, if unsafe, practice — should change those passwords, too. Mon, 16 Jan 2012 14:43:21 +0000 http://www.hellboundhackers.org/516-zappos-accounts-hacked.html http://www.hellboundhackers.org/514-hacking-group-releases-more-stratfor-data.html Hackers released another batch of data on Thursday pilfered from Stratfor Global Intelligence, a widely used research and analysis company whose website was attacked last weekend. The data purports to be the names and credit-card numbers of people who have purchased research from Stratfor plus hundreds of thousands of user names and e-mail addresses used to register with the website. The hackers, believed to be part of the Anonymous movement, described the data on Pastebin, then provided several links to websites hosting the information. They noted that some 50,000 of the e-mail addresses released end in ".mil" or ".gov." The data comprises 75,000 names, credit card numbers and MD5 hashes, or cryptographic representations, of passwords for people who have paid Stratfor for research. The group also said the data contains 860,000 user names, e-mail addresses and MD5 hashes for passwords for anyone who has registered on Stratfor's website. Stratfor said on Thursday that it was offering a free one-year subscription to an identity protection service to those affected. Sun, 01 Jan 2012 18:42:38 +0000 http://www.hellboundhackers.org/514-hacking-group-releases-more-stratfor-data.html http://www.hellboundhackers.org/513-apple-customers-warned-of-phishing-attack.html A "vast phishing attack" that attempts to capture the credit card information of Apple customers was launched on Christmas day, according to a report from Mac security-software company Intego. In a posting on its Mac Security blog, Intego says that the attack is an attempt to fool Apple customers into clicking on a link under the guise of updating the billing information of their Apple accounts. If you click on the link in the message, you will be taken to a realistic-looking sign-in page; then, after entering your Apple ID and password, you'll be taken to a page asking you to update your account profile, notably entering your credit card information. Again, this page looks realistic, and many of the elements it contains are taken from Apple's own web pages. Intego reports that the messages are being sent with the subject "Apple update your Billing Information" from a spoofed e-mail address of "appleid@id.apple.com," though of course future emails from the same source might vary somewhat. If you hover your mouse over the hyperlink in the (impressively forged) e-mail address, you'll see a floating box that reveals the real destination of that link: the telltale chain of four numbers that specifies a numeric IP address, rather than a link to somewhere within the apple.com domain. As Intego rightly points out, "if it's not something.apple.com (it could be www.apple.com, store.apple.com, or something else), then it's bogus." Sun, 01 Jan 2012 18:36:44 +0000 http://www.hellboundhackers.org/513-apple-customers-warned-of-phishing-attack.html http://www.hellboundhackers.org/512-39anonymous39-hackers-threaten-mexican-drug-cartel.html The international hacker movement "Anonymous" has published an internet video threatening Mexico's Zetas drug cartel with exposure of its allies in the local police and news media this week unless the gang frees a kidnapped member. The YouTube message, which claims to be from Anonymous "Veracruz, Mexico and the world," says it is "tired of the criminal group the Zetas, which is dedicated to kidnapping, stealing and extortion," and threatens to fight back with information instead of weapons. It said it knows of police officers, journalists, taxi drivers and others working with the Zetas. The video refers to an unidentified person kidnapped in the coastal city of Veracruz, and says: "You have made a great mistake by taking one of us. Free him." The hacker group, which has claimed responsibility for attacks on corporate and government websites worldwide, supposedly will act on Friday if the kidnapped activist is not freed or is harmed, according to the message. "We cannot defend ourselves with weapons, but we can with their cars, houses, bars," the message adds, apparently alluding to properties owned by cartel supporters. "It's not difficult. We know who they are and where they are are." "Information is free," it says. "We do not forgive. We do not forget." An official with the Veracruz state attorney general's office, who could not be named because he was not authorised to speak on the record, said the office could not confirm video's authenticity or the case of the kidnapping. Wed, 02 Nov 2011 07:03:31 +0000 http://www.hellboundhackers.org/512-39anonymous39-hackers-threaten-mexican-drug-cartel.html http://www.hellboundhackers.org/511-hackers-break-ssl-encryption-used-by-millions-of-sites.html Researchers have discovered a serious weakness in virtually all websites protected by the secure sockets layer protocol that allows attackers to silently decrypt data that's passing between a webserver and an end-user browser. The vulnerability resides in versions 1.0 and earlier of TLS, or transport layer security, the successor to the secure sockets layer technology that serves as the internet's foundation of trust. Although versions 1.1 and 1.2 of TLS aren't susceptible, they remain almost entirely unsupported in browsers and websites alike, making encrypted transactions on PayPal, GMail, and just about every other website vulnerable to eavesdropping by hackers who are able to control the connection between the end user and the website he's visiting. At the Ekoparty security conference in Buenos Aires later this week, researchers Thai Duong and Juliano Rizzo plan to demonstrate proof-of-concept code called BEAST, which is short for Browser Exploit Against SSL/TLS. The stealthy piece of JavaScript works with a network sniffer to decrypt encrypted cookies a targeted website uses to grant access to restricted user accounts. The exploit works even against sites that use HSTS, or HTTP Strict Transport Security, which prevents certain pages from loading unless they're protected by SSL. The demo will decrypt an authentication cookie used to access a PayPal account, Duong said. Two days after this article was first published, Google released a developer version of its Chrome browser designed to thwart the attack. Fri, 23 Sep 2011 21:38:25 +0000 http://www.hellboundhackers.org/511-hackers-break-ssl-encryption-used-by-millions-of-sites.html http://www.hellboundhackers.org/510-database-of-us-internet-pirates-will-be-decentralized.html Starting in a few months, millions of online ‘pirates’ will be monitored as part of an agreement between the MPAA, RIAA and all major U.S. Internet providers. Alleged infringers will be notified about their misbehavior, and repeat offenders will eventually be punished. Thus far the details on the operation have been very slim, but TorrentFreak has learned that unlike in France, the U.S. database of Internet pirates will be decentralized. In June the MPAA and RIAA announced a ‘ground-breaking’ deal with all the major Internet providers in the United States. In an attempt to deter online piracy, a third-party company will monitor BitTorrent and other public file-sharing networks and collect the IP-addresses of alleged infringers. The ISPs will then notify these offenders and tell them that their behavior is unacceptable. After six warnings the ISP may then take a variety of repressive measures, which include slowing down the offender’s connection. This new system is a formalized version of the existing takedown system that’s already in use by copyright holders. It was announced under the name ‘Copyright Alerts‘ and will be managed by the Center for Copyright Information, but little is known about how the data on alleged infringers is collected and stored. Previously we tried to get more background info, but to no avail. However, via a detour we got in touch with a spokesman for the Center for Copyright Information (CCI) who kindly provided us with some additional information. We wanted to know what will happen with the IP-addresses that are collected, for how long will they be stored, and will there be a central organization that’s responsible for this process like there is in France. The CCI spokesperson informed us that the data will be exclusively kept by the ISPs. “ISPs will hold this information, as they do today. Please also note that no personal information about subscribers will be shared with rights holders without the required legal process being completed,” he told us. There’s no agreement on how long the data will be stored, but a minimum of 12 months is required. Fri, 09 Sep 2011 10:10:10 +0000 http://www.hellboundhackers.org/510-database-of-us-internet-pirates-will-be-decentralized.html http://www.hellboundhackers.org/508-notice-some-challenges-offline.html Please be aware that some challenges that require database functionality are offline. If at a certain point in the challenge you get mysql_select_db errors please report these to Mordak and leave the challenge for another day as you won't be able to complete it. We will get this resolved shortly. Real 7 & Basic 12 have been fixed. Tue, 06 Sep 2011 10:36:51 +0000 http://www.hellboundhackers.org/508-notice-some-challenges-offline.html http://www.hellboundhackers.org/507-hbh-v2-update.html Hey guys, we've had a lot of people asking for updates on the new system.. and rightly so! Turns out its actually quite a big job! Here are a few things we've done already and things we intend to add. DONE: - User voice voting system for new developments - revamp registration and forgot password systems - new development log and management system - announcement system - new EM features - much much more TO ADD: - super slick profile pages - svn system for development teams - development documentation for all you people itching to be developers ONCE WE LAUNCH: weekly lessons monthly newsletters massive surge in community driven content READ MORE for info on new logo competition UPDATED Tue, 30 Aug 2011 20:13:51 +0000 http://www.hellboundhackers.org/507-hbh-v2-update.html http://www.hellboundhackers.org/506-was-this-the-e-mail-that-took-down-rsa.html IDG News Service - "I forward this file to you for review. Please open and view it." As a ploy to get a hapless EMC recruiter to open up a booby trapped Excel spreadsheet, it may not be the most sophisticated piece of work. But researchers at F-Secure believe that it was enough to break into one of the most respected computer security companies on the planet, and a first step in a complex attack that ultimately threatened the security of major U.S. defense contractors including Lockheed Martin, L-3, and Northrop Grumman. The e-mail was sent on March 3 and uploaded to VirusTotal a free service used to scan suspicious messages, on March 19, two days after RSA went public with the news that it had been hacked in one of the worst security breaches ever. Researchers at F-Secure, the company that discovered the message Monday, believe that it was very likely the message that led to the RSA compromise. If true, the finding sheds light on the kind of trickery, called social engineering by security pros, it takes to break into a major security company. F-Secure antimalware analyst Timo Hirvonen discovered the e-mail message buried in the millions of submissions stored in this crowd-sourced database of malicious or potentially malicious files. VirusTotal lets computer users upload a suspicious file, say an Excel spreadsheet that might be infected, and have it scanned by over 40 of the world's top antivirus companies. In return for the free scan, the AV vendors get to examine the files, making the service a great way of learning about malicious software after the fact. Hirvonen had been searching VirusTotal's database for the RSA attack file ever since RSA acknowledged that it had been compromised. The hackers had sent two different phishing e-mails to small groups of company employees over a two day period, but nobody outside of RSA and its parent company EMC knew the full contents of those messages. It wasn't even clear if they were included in VirusTotal's data. RSA has released some details about the attack, but Hirvonen's find is a first look at just what it took to get an EMC employee to open that dangerous attachment. Mon, 29 Aug 2011 07:34:11 +0000 http://www.hellboundhackers.org/506-was-this-the-e-mail-that-took-down-rsa.html http://www.hellboundhackers.org/505-news-of-the-world-will-close-after-hacking-scandal.html THE News of the World will be closed down in the wake of the phone hacking scandal, it was announced today. This Sunday's edition will be the last ever after private eyes hired by the paper were accused of hacking thousands of numbers including those of murder victims and relatives of dead war heroes. News International — which owns the 168-year-old tabloid — announced it would be axed, adding that the alleged practices were "inhuman" and had "no place in our Company". Thu, 07 Jul 2011 19:47:36 +0000 http://www.hellboundhackers.org/505-news-of-the-world-will-close-after-hacking-scandal.html