One US and One Indian websitesite hacked by ZHC Unknown and ZHC Dropper.Gen. Here the victims are Newel Technologies of US and DJ’s Group of India.
Hacked Sites:-
Mirror Links:-
One Indian & One US Website Hacked by ZHC Unknown & ZHC Dropper.Gen
BSNL Hacked By PCA (More than 10000 Customers Data Stolen)
Pakistan Cyber Army hunts once again. This time the target was BSNL. More than 10,000 customers sensitive information & credentials (Name, Email-id, Phone number Address and so on) leaked. PCA also exposed BSNL's VPN details, important technical information and some other details.
-News Source (PCA)
Anonymous stolen Data of 214,000 Austrians Including 96,000 sensitive Bank Account Details
The Austrian authority that collects state television fees from customers says hackers have stolen 214,000 data files from its server, including 96,000 containing sensitive bank account information.
GIS says the cyberattack by a group identifying itself as "AustrAnon" occurred Friday. It said Monday that it has started informing customers whose data has been stolen and is taking steps to improve security.
Austrian state television is partially funded by viewers' fees.
The culprits are believed to be linked to the loosely knit hacker group "Anonymous," known for cyber attacks worldwide.
(LPS) Lightweight Portable Security
Lightweight Portable Security (LPS) creates a secure end node from trusted media on almost any Intel-based computer (PC or Mac). It is a LiveCD distro designed by the US Department of Defense to function as a secure end node, in other words, a safe environment from which to access the web or a remote desktop host. Since the focus is on security, LPS boots a thin Linux operating system from a CD or USB flash stick without mounting a local hard drive, while providing tools such as a web browser, a file manager in addition to few other small tools. Administrator privileges are not required; nothing is installed! LPS-Public is a safer, general-purpose solution for using web-based applications. The accredited LPS-Remote Access is only for accessing your organization’s private network and is available only on request. We requested for one and are yet to hear back from “them”.
This livecd is very useful for not for whole organisation but some departments whose employees are on the move or carry critical data in and out of the organisation. In fact there are two version of the lightweight portable securityFREE download. Their brief use is as follows: linux distro available for a
- LPS-Public: It includes features designed to allow productive use of the Internet and CAC- or PIV-restricted Government websites from home or while traveling. LPS-Public comes preconfigured with a smart card-enabled Firefox web browser with Java and Flash support, Encryption Wizard-Public, a PDF viewer, a file browser, remote desktop software (Citrix, Microsoft or VMware View), SSH client, and the ability to use USB flash drives. This build does not contain any For Official Use Only (FOUO) material or any customized software. It is a very light distro and needs lesser RAM.
- LPS-Public Deluxe: It adds OpenOffice software, which is a Microsoft Office-compatible suite of office applications, and Adobe Reader, which allows PDF files to be digitally signed. A bit heavier distribution, requiring about a Gigahertz of RAM.
LPS-Public allows general web browsing and connecting to remote networks. It includes a smart card-enabled Firefox browser supporting CAC and PIV cards, a PDF and text viewer, Java, and Encryption Wizard – Public. LPS-Public turns an untrusted system (such as a home computer) into a trusted network client. No trace of work activity (or malware) can be written to the local computer. Our initial working with the linux distro leads us to believe that after logon, you are taken to a desktop that is rendered via IceWM – the window manager for the X Window Systems. You can use a WiFi connection too, but understandably, there is no support for printers and sound. Surprisingly, given the notoriety the Adobe Flash plugins, the distro includes a fairly recent Firefox with the Flash plugin pre-loaded. It also includes a few more Firefox add-ons. You also get a Remote Desktop client to initiate RDP requests. Another interesting thing we observed is that if you plan on using smart cards and you think that it might not be compatible with LPS, worry not as it has the OEM’s firmware updater built in!
Features of LPS
- LPS differs from traditional operating systems in that it isn’t continually patched.
- LPS is designed to run from read-only media and without any persistent storage.
- Any malware that might infect a computer can only run within that session.
- A user can improve security by rebooting between sessions, or when about to undertake a sensitive transaction.
CID (Criminal Investigation Department)of WB is Vulnerable & Sensitive Data Leeked By Hitcher & Mìstâ Hâxôr
The official website of CID (Criminal Investigation Department) Westbengal, Govt. of India is Vulnerable. Hitcher & Mìstâ Hâxôr from Team PCF (Paksitan Cyber Force) found both SQL-i and XSS vulnerability on this site. They also leaked some sensitive data from this site.The official website of CID (Criminal Investigation Department) is Vulnerable & Sensitive Data Leeked
One of the leeked Message:-
"...
>>>>>>>>>::::::__Message from DGP CID West Bengal Following__::::::>>>>>>>>>>>>>>>>>>>> "Recognizing the seriousness of cyber threats, CID West Bengal has developed a Cyber Crime Unit under the Special Operation Group (SOG). For Scientific Analysis of such threats a Computer Crime Analysis Lab (CCAB) has also been set up. This Lab will have the ability to handle cases pertaining to hacking, spread of virus, pornography, manipulation of accounts, alteration of data, software piracy, creation of false websites, printing of counterfeit currency, forged visas, theft of intellectual property, email spamming, denial of access, password theft, crimes with cell phones and palmtops, cyber terrorism and the transmission of secret codes concealed in pictures...." The fight against Cyber Crime requires the highest level of expertise. However, in addition to this there should be awareness among members of public about seriousness of Cyber Crime. It is with this objective that the CID Website has been created."
Vulnerable Website:-http://cidwestbengal.gov.in/
Vulnerable Link (SQL-i):-http://cidwestbengal.gov.in/users/highlywanted.php?id=10
Vulnerable Link (XSS):- http://cidwestbengal.gov.in/users/register.php?reset=Reset&submit=Proceed&ug=%27%22--%3E%3C/style%3E%3Cp%3E%3Ch1%3EYour%20all%20Database%20Info%20and%20Site%20Vulnerability%20Are%20Leaked%20by%20Hitcher_____________________________________________%3Ch1%3E%3C/p%3E%3Cp%3E%3Ch1%3EHere%20is%20the%20leaked%20link%3C/h1%3E%20http://geo.it/Hitcher_cidwestbengal.txt%3C/p%3E%3Cp%3E%3C/p%3E%3Cp%3E%3C/p%3E%3Cp%3E%3C/p%3E%3C/script%3E%3Cscript%3Ealert%280x000184%29%3C/script%3E For More Info Click HERE
Indian Gov site hacked by SeeKeR
Indian Gov site sabar-deo.gov.in hacked by SeeKeR in reveng of hacking Multan Gov Websites.
Hacked Sites:-
http://sabar-deo.gov.in/
Mirror Link:-
http://legend-h.org/mirror/195345/sabar-deo.gov.in/
CNAIPIC Hacked & More 8Gb Data Leaked (#Antisec)
National Anti-Crime Computer Centre for Critical Infrastructure Protection hacked By Anonymous and Lulzsec community.
The Official Statement Of the Hackers are:-
"...
////////////////////////////////////////////////////////////////////////////////////////////+Legion of Anonymous Doom+ Release Zero1+
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
Heynow,
This is a prerelease of a series we are going to make to reveal the biggest in history of European LE cyber operation Evidence exploitation and abuse. Thing's gonna get published and twittered all over anonymous and lulzsec community.
Today we were granted with the Italian law enforcement Pandora box, we really think it shall be a new era of “regreaissance” to the almighty Homeland Security Cyber Operation Unit in EU.
So we decided to leak everything they got since they were established as a full scale cyber taskforce named CNAIPIC.
This corrupted organization gathered all the evidence from the seized property of suspected computer professional entertainers and utilized it over many years to conduct illegal operations with foreign intelligence agencies and oligarchy to facilitate their lust for power and money, they never used obtained evidence to really support ongoing investigations.
Today we reveal a whole Load of stuff (estimated leak would be over 8Gb) from such owned institutions, just to make it clear all of this stuff was stored on CNAIPIC evidence servers for years while people are doing time in jail waiting for the trial while CNAIPIC used the evidence in the global spy game galore:
Egypt: Ministry of Transport and Communication
Australia: Ministry of Defence
Russia: Atomstroyexport, Diaskan, Sibneft, Gazprom etc.
Ukraine: several embassies and consulates on it’s territory
Nepal: Ministry of Foreign Affairs
Belarus: Ministry of Foreign Affairs, Belneftehim, Belspetzexport
Gibraltar, Cyprus, Cayman Islands etc: Tecno Develp, Line Holdings, Dugsberry Inc, Alpha Prime, Alpha Minerals etc.
Vietnam: PetroVietnam (PTSC), Ministry of Natural Resources (MONRE)
USA: EXXON MOBIL, US Department of agriculture and hundreds of attorneys and DOJ accounts including: McCallion & Associates LLP, Goodkind, Labaton, Rudoff & Sucharow, LLP, and hundreds of bullshit agencies we don’t even know why we pay taxes to support all of them.
So to cut the crap let’s get it over with fellaz…
http://imgur.com/a/tkFdY#UTByw
Is the image preview to get a glimpse on what is meant to be said.
http://depositfiles.com/files/tm7zeqiq9
first of 2 preview archives with preview documents to get a general idea.
http://depositfiles.com/files/nn6dbleyv
2nd preview archive
http://www.sendspace.com/file/ta62tk
CNAIPIC file structure and listing Part 1
Thank you all,
Stay tuned...4 update on this one.
NKWT LOAD .."
