When is a Phone Charger Not A Charger ?

You might want to be a little more careful the next time you pick up a cheap knock-off accessory for your device to save a few bucks because new hardware hacks could be the next big thing among cyber criminals.

Researchers say they’ve built a custom iPhone wall charger that can install malware in any iOS device using a custom made malicious chargers called Mactans, which are in turn controlled by a Raspberry-Pi like computer called a BeagleBoard.

Mactans, which is named after the black widow spider’s Latin taxonomy, will be demonstrated by Billy Lau, Yeongjin Jang, and Chengyu Song at the Black Hat 2013 conference in July and they said all users were vulnerable to attacks over the charger.

They add that they can also demonstrate that the malware infection resulting from their malicious charger is persistent and tough to spot. In order for the malicious software to remain installed and unseen, the trio will show how an attacker can hide their software in the same way Apple hides its own built-in applications.

Researchers wanted to show just how easy and cheap it can be to cause a lot of virtual destruction in an innocent package. The security researchers have disclosed the vulnerability to Apple, but presumably Apple hasn’t fixed the hole yet as the researchers are refusing to give out exact details until the conference.

It doesn’t even matter what version of Apple iOS an iPhone or iPad the user is running, the hack doesn’t discriminate again any Apple platform.

51.526392 -0.091389

Teenager Finds Vulnerability With PayPal Website

A 17-year-old German student contends PayPal has denied him a reward for finding a vulnerability in its website.

Robert Kugler said he notified PayPal of the vulnerability on May 19. He said he was informed by email that because he is under 18 years old, he did not qualify for its Bug Bounty Program. He will turn 18 next March.

PayPal, which is owned by auction site eBay, outlines the terms and conditions for its Bug Bounty Program on its website, but does not appear to have an age guideline. PayPal officials did not have an immediate comment.

Many companies such as Google and Facebook have reward programs. The programs are intended to create an incentive for researchers to privately report issues and allow vendors to release fixes before hackers take advantage of flaws.

Facebook pays a minimum of $500 for qualifying bugs, while Google pays from $100 up to $20,000 depending on the severity of the issue. Neither has an age restriction listed on their websites. Microsoft does not pay for security vulnerability information, but instead publicly acknowledges the work. PayPal does not list what it will pay a researcher for a bug.

Kugler is listed as a contributor in a Microsoft list from April of security researchers. He said he received rewards for finding vulnerabilities in the past. Mozilla paid him $1,500 for finding a problem in the Firefox browser last year and $3,000 earlier this year for another bug.

PayPal requires that those reporting bugs have a verified PayPal account. Kugler said he asked PayPal that any bounty be paid into his parent’s account.

At minimum, Kugler would like PayPal to acknowledge his finding and send him some documentation “that I can use in a job application,” he wrote via email. So far, he hasn’t received anything.

The details of the vulnerability, a cross-site scripting flaw (XSS), is posted on Full Disclosure section Seclists.org, a forum for disclosing security vulnerabilities.

An XSS attack occurs when a script drawn from another Web site is allowed to run but should not. The type of flaw can be used to steal information or potentially cause other malicious code to run.

For Security Researchers – PayPal

Source: www.pcworld.com

51.526392 -0.091389

Romanian Jailed For ATM Skimming Scheme

A Romanian man serving a five-year jail sentence in Romania for his involvement in an ATM skimming scheme, has developed a device designed to protect ATMs from such attacks.

33-year-old Valentin Boanta who is being detained in a prison from Vaslui, Romania, after he was convicted on charges of bank card fraud in 2009, developed what he calls the SRS (Secure Revolving System) which changes the way ATM machines read bank cards to prevent the operation of skimming devices that criminals hide inside ATMs.
“When I got caught I became happy. This liberation opened the way to working for the good side,” Boanta said.

“Crime was like a drug for me. After I was caught, I was happy I escaped from this adrenaline addiction,” Boanta said. Boanta began working on SRS during his trial. SRS, Boanta says, can be installed into any ATM.
ATM skimmers work by installing a second, concealed card reader over the one that’s built into the ATM. When an unsuspecting bank customer inserts a card into the slot, the card’s magnetic stripe first runs past the read head of the skimmer, allowing it to copy all of the card’s data. The transaction then proceeds as normal and the ATM returns the card to the customer, who is none the wiser.

“I’ve seen many different ATMs, they have ageing designs so they are prone to vulnerability, they are a very weak side of the banking industry,” said Boanta in a workshop. “Every ATM can be penetrated through a skimming crime. My security solution, SRS, makes an ATM unbreachable.”

Romania has a deep well of technical expertise stemming from the time of communist dictator Nicolae Ceausescu, who backed computer research and technical education. Romanian hackers stole about $1 billion from U.S. accounts in 2012, according to the U.S. embassy in Bucharest

Source: thehackernews.com

51.526392 -0.091389

Backtrack Kali Tutorial – Exploit MS08-067 Vulnerability using Metasploit

This tutorial is for demonstration purposes only – Please use this knowledge responsibly

This video will show you how to create a reverse SSH connection to a server/workstation

This exploit is taking advantage of vulnerability MS08-067 using Metasploit on Kali.
This is a Kali VM attacking a Microsoft 2008 server (this will also work on any machine without the patch)

The moral of this is to update your system

http://www.kali.org

http://support.microsoft.com/kb/958644

Caintech.co.uk – Here comes Kali

Affected Software

Operating System

Microsoft Windows 2000 Service Pack 4

Windows XP Service Pack 2

Windows XP Service Pack 3

Windows XP Professional x64 Edition

Windows XP Professional x64 Edition Service Pack 2

Windows Server 2003 Service Pack 1

Windows Server 2003 Service Pack 2

Windows Server 2003 x64 Edition

Windows Server 2003 x64 Edition Service Pack 2

Windows Server 2003 with SP1 for Itanium-based Systems

Windows Server 2003 with SP2 for Itanium-based Systems

Windows Vista and Windows Vista Service Pack 1

Windows Vista x64 Edition and Windows Vista x64 Edition Service Pack 1

Windows Server 2008 for 32-bit Systems

Windows Server 2008 for x64-based Systems

Windows Server 2008 for Itanium-based Systems

51.526392 -0.091389

Anonymous – #Operation Rohingya

Anonymous have posted the following:

Greetings Citizens of the World.

It is vital the information we are going to share with you is made viral as quickly as possible. The ethnic Rohingya people of Myanmar Burma in Southeast Asia are about to be massacred. Barbarous acts are being carried out by Neo-Nazi racist groups like the Rakhine Nationalities Development Party, Arakan Liberation Army, NaSaKa border police and 969 monks led by Monk Wirathu, the self proclaimed Bin Laden of Buddhism. The Government of Myanmar is orchestrating these crimes.

The persecution of the Rohingya people is severe. The Burmese junta considers them to be sub-human and denies them almost all basic human rights. They are subject to torture, gang rape, starvation, slave labor, and forced to reside in the most dire camps in the world – some call these refugee camps but they are actually concentration camps. Over the past few months, thousands of Rohingya have been encouraged onto boats and sent out to sea with not enough food or fuel, and left there to die. Many boats were attacked and sunk, with women and children on board.

Already the violence in Burma has spread beyond the Rohingya to include all Muslims, with ‘warm ups’ to the anticipated massacre taking place against Burmese Muslims in Meiktila, Naypyidaw and Yangon. Dead and burning bodies, including children, are now lying in the streets.

While the United States claims to defend human rights, their record clearly reflects a government that will only intercede when their business interests are threatened. While politicians occasionally pay lip service to the horrific conditions in Myanmar no action is ever taken. The only people neglecting the situation in Myanmar worse than the U.S. are the press who consistently ignored these atrocities or reported them as ‘ethnic clashes’. We consider the media to be complicit in concealing them from the rest of the world.

The Rohingya have been told to expect a third massacre starting the last week in March. Rakhine have declared they will leave no Rohingya left on the land, just a few left as exhibits for the museum.

The acts of genocide being committed against the Rohingya people must no longer be ignored. We call on the Anonymous collective to stand with those for whom no one else will stand. We call on Anonymous and all supporters of human rights to stand against this great injustice, to give the Rohingya a voice, before they are completely eliminated.

Operation Rohingya engaged.
We are Anonymous.
We are Legion.
We do not forgive.
We do not forget.
Tyrants of the world, expect us!

To date (24:03:2013 23:00 GMT)

TANGO DOWN: List of websites taken offline:

For the latest details and the operation Visit: leaksource.wordpress.com

51.526392 -0.091389

IE10, Chrome & Firefox Java exploited

During March Patch Tuesday of 2013, Microsoft released seven new security bulletins, with four rated as critical, and others as Important. Most interesting one was MS13-027, which is rated as “important” because the attack requires physical access to the vulnerable machine.

This flaw allows anyone with a USB thumb drive loaded with the payload to bypass security controls and access a vulnerable system even if AutoRun is disabled, and the screen is locked. Flaw exposes your Windows PCs to major risk. If you remember Stuxnet, worm was injected to Iran’s nuclear program system using USB thumb drive.

Windows typically discovers USB devices when they are inserted or when they change power sources (if they switch from plugged-in power to being powered off of the USB connection itself).

To exploit the vulnerability an attacker could add a maliciously formatted USB device to the system. When the Windows USB device drivers enumerate the device, parsing a specially crafted descriptor, the attacker could cause the system to execute malicious code in the context of the Windows kernel.

Because the vulnerability is triggered during device enumeration, no user intervention is required. In fact, the vulnerability can be triggered when the workstation is locked or when no user is logged in, making this an unauthenticated elevation of privilege for an attacker with casual physical access to the machine.

Microsoft admits the flaw could “open additional avenues of exploitation that do not require direct physical access to the system,” once the USB based exploit is successful.

The vulnerabilities addressed by Microsoft do not include those exploited by security researchers at the recent Pwn2Own hacking competition at the CanSecWest Conference in Vancouver.

51.526392 -0.091389

Here Comes Kali

The official update from BackTrack Central:

Seven years of developing BackTrack Linux has taught us a significant amount about what we, and the security community, think a penetration testing distribution should look like. We’ve taken all of this knowledge and experience and implemented it in our “next generation” penetration testing distribution.

After a year of silent development, we are incredibly proud to announce the release and public availability of “Kali Linux“, the most advanced, robust, and stable penetration testing distribution to date.

Kali is a more mature, secure, and enterprise-ready version of BackTrack Linux. Trying to list all the new features and possibilities that are now available in Kali would be an impossible task on this single page. We therefore invite you to visit our new Kali Linux Website and Kali Linux Documentation site to experience the goodness of Kali for yourself.

We are extremely excited about the future of the distribution and we can’t wait to see what the BackTrack community will do with Kali. Sign up in the new Kali Forums and join us in IRC in #kali-linux on irc.freenode.net and help us usher in this new era.

51.526392 -0.091389

Facebook Privacy Hoax [and the Top 3 Ways to Set Boundaries and Protect your Privacy on Facebook]

Shocking I know, but sadly, yes, this is a HOAX. I am talking about this silly message that is flying around Facebook at the moment and is probably the status message of many of your friends (and maybe yours too)….

‘WARNING!!! FACEBOOK HAS CHANGED THEIR PRIVACY SETTINGS ONCE MORE!!! DUE TO THE NEW “GRAPH APP” ANYONE ON FACEBOOK (INCLUDING OTHER COUNTRIES) CAN SEE YOUR PICTURES, LIKES, AND COMMENTS. The next 2 weeks I will be posting this, and please once you have done it please post DONE! Those of you who do not keep my information from going out to the public, I will have to DELETE YOU! I want to stay PRIVATELY connected with you. I post shots of my family that I don’t want strangers to have access to!!! This happens when our friends click “like” or “comment”… automatically, their friends would see our posts too. Unfortunately, we cannot change this setting by ourselves because Facebook has configured it that way. PLEASE place your mouse over my name above (DO NOT CLICK), a window will appear, now move the mouse on “FRIENDS” (also without clicking), then down to “Settings”, click here and a list will appear. REMOVE the CHECK on “LIFE EVENTS” and “COMMENTS & LIKES”. By doing this, my activity among my friends and family will no longer become public. Now, copy and paste this on your wall. Once I see this posted on your page, I will do the same……’

This is not real. This is not Facebook. But if you have posted this message as your status, don’t be ashamed, it is easy to fall for this sort of thing. The facts sound so real and the consequences so dramatic. However this is someone’s sick idea of fun & games and it’s got millions of people scrambling to change their settings this week then proceeding to unfriend people that have not done so. This is a variation of another hoax that also went viral a few months ago.

Read more of this superb post at www.thelikeffect.com

51.526392 -0.091389

HP LaserJet Professional printer telnet debug shell vulnerability

A critical vulnerability discovered in certain LaserJet Pro printers that could give remote attackers access to sensitive data. Homeland Security’s Computer Emergency Response Team recently issued a vulnerability note warning that HP LaserJet Professional printers contain a telnet debug shell which could allow a remote attacker to gain unauthorized access to data.

This flaw was discovered by a Germany security expert, Christoph von Wittich. He detected the vulnerability during a routine network scan of his company’s corporate network.

He said the vulnerability could also be used for a denial-of-service attack. “As long as the printer is not connected to the Internet, this vulnerability should not cause much trouble for the end user”.

Marked as CVE-2012-5215 (VU#782451, SSRT101078), vulnerability affected 12 printer models including HP LaserJet Pro P1102w, P1102w, P1606dn, M1212nf MFP, M1213nf MFP, M1214nfh MFP, M1216nfh Multifunction Printer, M1217nfw Multifunction Printer, M1218nfs MFP, M1219nf MFP, CP1025nw, and CP1025nw.

Users are advised to download updated firmware for printers impacted by the bug from the company’s Support Center site.

HP Support Center

HP SUPPORT COMMUNICATION – SECURITY BULLETIN

HP UPDATED FIRMWARE

51.526392 -0.091389

Jailbreak All iDevices on iOS 6/6.1 Untethered

It has been a long time since the news for an all-round jailbreak tool started to float around the community. Yes, you can now jailbreak your iDevice running iOS 6.1.

This jailbreak tool supports almost all iGadgets and allows an untethered jailbreak for any device that you can think of except for Apple TV 3.

The incredible and the most talented jailbreak gurus joined hands not too long ago to bring the most reliable jailbreak ever. The gurus namely Pimskeks, Planetbeing, Pod2g and MuscleNerd formed a team and called themselves the Evad3rs specifically for this project. The idea was to exploit Apple’s post-A5 chip devices in order to develop the jailbreak for iOS 6. It seems like they were very successful in doing so and have accomplished their goal with flying colours. The Evad3rs being to you Evasi0n to rock your iDevice and Apple Co.’s world!

The following devices are supported by this tool:

• iPhone 5
• iPhone 4S
• iPhone 4
• iPhone 3GS
• iPad 4
• iPad 3
• iPad 2
• iPad mini
• iPod touch 4
• iPod touch 5

iOS firmware versions supported by Evasi0n:

• iOS 6.0
• iOS 6.0.1
• iOS 6.0.2
• iOS 6.1

We recommend our readers not to update their devices over the air and to instead use download links provided below or through iTunes. You can now enjoy iOS 6′s features with the added perks of jailbreak tweaks.

Download iOS 6.1 for your iDevice.
Download Evasi0n for Windows.
Download Evasi0n for Mac.
Download Evasi0n for Linux

51.526392 -0.091389