Archive for the ‘cyber hackers’ Category

1. Secure your WIFI connection

secure your digital life from hackersHome users are particularly prone to leaving their routers open without passwords, in order to make sure that you’re protected check your router settings to verify whether encryption is turned on or not. leaving access unencrypted can be just a minor issue of bandwidth being stolen by unauthorized users freeloading off your connection to more serious cybercrimes like credit card fraud or hacking taking place using your internet connection, which may be traced back to you.

The majority of routers support encrypted connections, support either WEP or WPA/WPA2, always opt for WPA/WPA2 as it’s far more secure. If you have the option hide SSID broadcast, turn that on as well, it basically allows you to make your wireless router invisible to outsiders and they need to know your SSID to access the network.

2. Encrypt your hard drive

secure your digital life from hackersIt’s important to keep your data secure in case of loss of hardware or even theft. An encrypted hard drive basically prevents its contents from being access without the password. It is obviously more important to encrypt thumb drives and laptop drives. Windows 7 Ultimate and Business editions come with a built in hard drive functionality using a software called BitLocker which will encrypt your entire hard drive, but users with Home Premium or Basic users shouldn’t feel left out as there is a free way to encrypt your hard drive using trucrypt.

Mac users can use FileVault to encrypt their folders, and OSX Lion will allow you to encrypt your entire hard drive as well.You can also get hardware encryption which will use fingerprint recognition to unlock data inside the drive like the Lacie Rugged Safe.

3. Keep your software updated

secure your digital life from hackersIt’s a given that you need to keep your operating system, antivirus and web browser up to date in order to protect yourself from exploits, and if you haven’t got automatic update turned on for them, you should do it now.

However a lot of users often overlook other software such as Acrobat Reader, Flash, Java and iTunes when it comes to keeping software updated. It’s important to realize that many of these applications have direct access to the operating system, and an exploit in these applications can be used as a gateway into your system files. Flash and Acrobat are used heavily with web browsers which is the number one source of malware infections.

4. Upgrade your antivirus suite.

secure your digital life from hackersIt’s as important to keep your virus suite updated as much as it is to keep your virus definitions updated. The reason for this is because antivirus software evolve in the way they deal with malware, such as introducing heuristic technologies which identify common traits of viruses, the way they interact with the system and actively block these scripts. This is why having an outdated antivirus software, despite updated virus definitions may not provide the best possible protection. If you’re using an older version of antivirus software you may entitled to discounted upgrades to newer versions.

5. Secure your smartphones

secure your digital life from hackersMany people completely overlook this fact, but smartphones are essentially mini computers which hold swathes of personal information about you. They often hold logins to your facebook/twitter accounts which are set on auto login, online banking and other financial information as well as access to email. If someone gets hold of all these details it can cause a lot of stress and havoc to your life.

It’s vital to keep your devices with password lock activated, additionally you should take some precautionary measures in case you lose your device.

Apple has a very cool security software called Find my iPhone which is a free app by Apple, which lets you track your phone by GPS, lock and remotely delete data from it. You can even use it just to locate your iPhone if you misplace it, causing it to sound an alarm.

For Android users it’s important to stay protected, smartphones are just as vulnerable to viruses as a PC, although the android platform is more prone to them than apple due to the open platform nature of the former. Android phones require antivirus protection, all the popular desktop antivirus brands offer android support as well.

The app store is less prone to malware due to the fact that all apps are vetted by Apple before publishing, although if you’ve jail broken your iPhone, antivirus protection may be something you need to look at.

6. Vet web page links using a link checker

Cyber criminals are using sophisticated strategies to drive users onto their web pages, increasingly innocent websites are being targeted using exploits to find security holes to hack and implant code on them which can launch JavaScript applications and infect computers when users visit the infected site. Link checkers scan links on your search results and optionally other websites and indicate whether links are safe, websites are scanned by their own servers so it does not impair your computer performance. Link checkers are available with most anti malware security suites such as with AVG, McAfee and Symantec.

7. Laptop Security for mobile workers

secure your digital life from hackersLaptops thefts are common, and are easy targets due to their transportable nature. If you work away from your office it’s important to invest in a Kensington Lock. While a lock won’t prevent trained thieves armed with cable cutters, it will prevent opportunistic thieves which is the overwhelming majority of laptop thefts.

It’s also important to keep prying eyes away from your data, always password protect your login, and when leaving your laptop unattended, using the screen lock feature in Windows to prevent unauthorized users from looking at or accessing your information.

If you work with particularly sensitive data a privacy screen may provide an added level of protection, the screen is only viewable to the person sitting directly in front, so people sitting around you cannot look at your screen. Targus and 3M are well known for producing privacy screens for all manner of monitor sizes.

8. HTTPS encryption for websites

secure your digital life from hackersMost people are well informed with the necessity of using https secure connections with online shopping when entering sensitive personal information. However, it can be argued that websites like facebook, twitter, gmail and others hold equally sensitive information about you.

Did you know you can elect to use https secure connections on these websites? For case by case uses, you can insert a ‘s’ after the http on the web address, if there isn’t one already to access the site securely. However if you want to access the sites securely every time you visit, you can login select the option to always use https in the profile settings.

9. Use online backup to keep an offsite storage of your files.

secure your digital life from hackersA great way for mobile workers to keep data kept safe and secure while on the move is to use online backup, this provides great peace of mind if your computer gets lost, as it allows you to recover your files from the cloud. Online backup services like Sugar Sync also provide users with high level synchronization features which can be used as a great time management tool as well, as it keeps data across all your computers consistent and up to date. You can look up various online backup reviews here to compare their features and read up user reviews.

10. Avoid public wifi and public computers.

Using public computers can be incredibly risky as malware and key loggers can be installed to track your keystrokes and cached files in order to gain access to your private information.

secure your digital life from hackersAdditionally, public wifi connections can be risky as the servers can be breached with malware additionally phantom hotspots can be set up which appear like legitimate hotspots, but are actually other ordinary laptops which act as a middleman eavesdropping into the connection.

An example on how cached data can be hijacked to login to your web accounts can be demonstrated using FireSheep.

Thankfully mobile 3G internet connections are becoming more affordable, and are often faster than public wifi hotspots. 3G connections are far more secure, additionally you may be able to tether your Smartphone internet connection to work on your laptop. I hope this article helped you all for sure. And do follow these above 10 steps and secure your digital life from hackers.


— In early August, at the Def Con conference — a major annual gathering of computer hackers — someone apparently hacked into many of the attendees’ cell phones, in what may have been the first successful breach of a 4G cellular network. If early reports are correct, the incident was a man-in-the-middle (MITM) attack, so called because the attacker interposes himself between two other wireless devices.

Coincidentally, a week later, at the 20th Usenix Security Symposium, MIT researchers presented the first security scheme that can automatically create connections between wireless devices and still defend against MITM attacks. Previously, thwarting the attacks required password protection or some additional communication mechanism, such as an infrared transmitter.

Showcasing novel ways to breach security is something of a tradition at Def Con. In previous years, MITM attacks had been launched against attendees’ Wi-Fi devices; indeed, the MIT researchers demonstrated the effectiveness of their new scheme on a Wi-Fi network. But in principle, MITM attacks can target any type of wireless connection, not only between devices (phones or laptops) and base stations (cell towers or Wi-Fi routers), but also between a phone and a wireless headset, a medical implant and a wrist-mounted monitor, or a computer and a wireless speaker system.

Key change

Ordinarily, when two wireless devices establish a secure connection, they swap cryptographic keys — the unique codes they use to encrypt their transmissions. In an MITM attack, the attacker tries to broadcast his own key at the exact moment that the key swap takes place. If he’s successful, one or both of the devices will mistake him for the other, and he will be able to intercept their transmissions.

Password protection can thwart MITM attacks, assuming the attacker doesn’t know the password. But that’s not always a safe assumption. At a hotel or airport that offers Wi-Fi, for instance, all authorized users are generally given the same password, which means that any one of them could launch an MITM attack against the others. Moreover, many casual computer users find it so complicated to set up home Wi-Fi networks that they don’t bother to protect them; when they do, they often select passwords that are too simple to provide much security. That’s led to the marketing of Wi-Fi transmitters with push-button configuration: To establish a secure link, you simply push a button on top of the transmitter and a corresponding button (or virtual button) on your wireless device. But such systems remain vulnerable to MITM attacks.

“None of these solutions are quite satisfactory,” says Nickolai Zeldovich, the Douglas Ross (1954) Career Development Assistant Professor of Software Technology, who developed the new security scheme together with Dina Katabi, the Class of 1947 Career Development Associate Professor of Computer Science and Engineering, as well as postdoc Nabeel Ahmed and graduate student Shyam Gollakota, all of MIT’s Department of Electrical Engineering and Computer Science. “The cool thing about this work is that it takes some insight from somewhat of a different field, from wireless communication — actually, fairly low-level details about what can happen in terms of wireless signals — and observes that, hey, if you assume some of these properties about wireless networks, you can actually get stronger guarantees.”

Strength in silence

In an MITM attack, the attacker needs to drown out the signal from the legitimate sender. But the researchers’ new system ensures that any attempt to do so will be detected. The trick is that, after transmitting its encryption key, the legitimate sender transmits a second string of numbers related to the key by a known mathematical operation. But whereas the key is converted into a wireless signal in the ordinary way — it’s encoded as changes in the amplitude of a radio wave — the second string of numbers is encoded as alternating bursts of radiation and silences.

If an attacker tries to substitute his key for the legitimate sender’s, he’ll have to send the corresponding sequence of bursts and silences. But that sequence will differ from the legitimate one. Through the silences of one, the receiver will hear the bursts of the other. The overlapping sequences will look to the receiver like a wholly new sequence, which won’t match up with the transmitted key, indicating an MITM attack.

Of course, the attacker could try to drown out the entirety of the legitimate transmission and then send his own key. But that would require broadcasting a signal of such long duration that it, too, would alert the receiver to an attack.

The reports of an MITM attack on 4G phones are still being verified, and 4G itself is a vague term that encompasses many different technical approaches. But if the reports prove true, then cell phones, too, could benefit from the MIT researchers’ security scheme. “You could imagine that the same protocol could be used in cell phone networks as well,” Zeldovich says. “At the design level, the idea sounds like it should be applicable.”

Karsten Nohl

A German computer boffin has worked out a way to crack code used to encrypt most of the world’s mobile Internet traffic. Karsten Nohl is going to publish a guide to prompt global operators to improve their safeguards.

Karsten Nohl and his team of 24 hackers began working on the security algorithm for GSM (Global System for Mobiles) in August.Developed in 1988, the system prevents the interception of calls by forcing phones and base stations to change frequencies constantly. Most of the UK’s mobile phones use the GSM system and the breach represents a potential threat to the security of mobile phone communication.

The discovery of a way to eavesdrop so-called General Packet Radio Service (GPRS) technology allows a user to read emails and observe the Internet use of a person whose phone is hacked, said Karsten Nohl, head of Security Research Labs.”With our technology we can capture GPRS data communications in a radius of 5 km,” he told the paper before heading to a meeting of the Chaos Computer Club, a group that describes itself as Europe’s largest hacker coalition.

Nohl, who has a doctorate in computer engineering from the University of Virginia, insisted his work was purely academic. “We have written advice from our lawyers stating that our research is within the legal realm,” he said. “Obviously the data we produce could of course be used for illegitimate purposes.”

His modified phone was used to test networks in Germany, Italy and other European countries. In Germany, decrypted and read data transmissions on T-Mobile, O2 Germany, Vodafone and E-Plus. This was pretty easy because the level of encryption was weak.

Nohl, makes his cash working for mobile operators who hire him to detect vulnerabilities in their systems. He said that many operators run unencrypted data networks because it allows them to more easily filter out competing, unwanted services like Skype.

Filed in: Featured News, Hacking News, Security News, Technical News Tags: , ,

Hacked in 60 SecondsForget your car keys? Soon it won’t make a difference, as long as you have your laptop. An interesting viral Web video (see below) making the rounds since the Black Hat cybersecurity conference earlier this month depicts two researchers from iSEC Partners(a San Francisco-based security firm) breaking into a 1998 Subaru Outback via their PC. In less than 60 seconds, they wirelessly find the car’s security system module, bypass it and start the engine remotely.

iSEC researchers Don Bailey and Mat Solnik claim to be able to hack their way into a securely locked car because its alarm relies on a cell phone or satellite network that can receive commands via text messaging. Devices connecting via a cellular or satellite network are assigned the equivalent of a phone number or Web address. If hackers can figure out the number or address for a particular car, they could use a PC to send commands via text messages that instruct the car to disarm, unlock and start.

One of the reasons this text-messaging approach is disconcerting is that text messages aren’t so easy to block, unless you don’t want to receive any texts (either to your car or phone). Google Voice, iBlacklist and a few others (including wireless carriers AT&T and Verizon) do offer some tools for filtering unwanted text messages.

The researchers acknowledge that stealing a particular car would be difficult because you would have to know that car’s number or address, neither of which are easy to find. What bothers them more is that wireless-enabled systems are showing up not just in cars but also in Supervisory Control and Data Acquisition  (SCADA) systems that control and secure power plants, water-treatment facilities and other components of the nation’s critical infrastructure, they told CNET.

iSEC isn’t the only research team to have caught on to the dangers of ubiquitous networking. As Scientific American reported in April, researchers from the University of California, San Diego (UCSD), and the University of Washington in Seattle likewise claimed that a hacker could insert malicious software onto a car’s computer system using the vehicle’s Bluetooth and cell phone connections, allowing someone to use a mobile phone to unlock the car’s doors and start its engine remotely. UCSD computer science professor Stefan Savage and Washington assistant computer science and engineering professor Tadayoshi Kohno had also previously demonstrated the ability to use a computer plugged into a car’s On-Board Diagnostic system (OBD–II) port to take control of the electronic control units to (among other things) disable the brakes, selectively brake individual wheels on demand, and stop the engine—all independent of the driver’s actions (pdf). This was not done wirelessly but did highlight vulnerabilities that car-makers might want to investigate as they continue to open up their vehicles to outside communications.

Hacking For The Presidency

Credible Outlets Are Alleging Hillary Stole New Hampshire Via Commissioned Hacking

Newspaper: “Computer hackers ‘may be behind Hillary Clinton’s shock new Hampshire victory'”

January 12. 2008

Is someone this desperate to win. Has someone lost their moral compass so. What am I saying, just looking at Hillary’s track record shows she never had it.

Many outlets are asking did Hillary Clinton hack her way to a New Hampshire win. Here’s why. Hand counted votes, meaning physical votes on paper, showed Obama won in New Hampshire. However, votes counted by computer, which is hackable, mysteriously showed Hillary Clinton winning New Hampshire. A few of the articles on this scandal are cited below.

Back on August 15, 2007 in my “Hillary Clinton Slams Barack Obama” article I wrote about Hillary’s affiliation with a dirty private investigator that also specialized in hacking. 

As a matter of fact, today when I Googled the words “Hillary Clinton” and “hackers” for info on this new scandal, my site article from months ago came up in addition to the items just written about over the past two days on this subject.

Anthony Pellicano Had 4 Hackers On Staff In His West Hollywood Office That Was Raided By The FBI

It is established fact that Hillary Clinton was a client of the now incarcerated Anthony Pellicano. She hired him regarding the Paula Jones scandal and the Jennifer Flowers one as well. Both women reported invasive Anthony Pellicano style harassment being leveled at them.

While, Anthony Pellicano was arrested for illegal wiretapping, witness intimidation and identity theft, among other things,  he was known to have 4 hackers on staff.

One of his hackers destroyed the hard drive of Los Angeles Times writer Anita Busch. His hacker began hacking her computer when she started writing unflattering stories about Pellicano’s Hollywood clients.

Anita Busch

The hacker was even stupid enough to hack her computers and get advance copies of her work, forwarding it to Pellicano’s rich and famous clients.

One of his hackers even did an article with Maxim magazine bragging how she could hack and get your bank pin codes in minutes. People who hack bank info aren’t above hacking voter systems.

There’s even a documentary on it and it’s about the very type of machines (Diebold) that gave Hillary her New Hampshire victory, over Obama’s win via hand count.

Documentary “Hacking Democracy”

Pellicano paid them to hack into the computers of writers, journalists and entertainers for his perverted, nosy clients in Hollywood that paid large sums to get dirt on people or to copy and steal computer based intellectual property.

I know this stuff happens. I myself have personally experienced what commissioned hackers do, from hacking into computers, posting defamatory items on message boards and blogs, hackings web sites and the servers they sit on, disrupting many businesses  – and if paid by a person desperate enough – hacking voting systems. 

There is usually an intermediary when the person is rich and or famous. A person that communicates with the hacker(s) on behalf of the client and provides payment. That person is sometimes a private investigator or a manager.

The hacker hacks the info then passes it on to an intermediary via the internet or by mail, then it is sent to the person that commissioned it and provided payment to the intermediary. In the case of hacking to do damage to a system or changing/rigging computer data, nothing needs to be passed other than payment.  

While Pellicano is in prison, his hackers are not and there are others carrying on the invasive, illegal techniques he pioneered. There are other private investigators and hackers engaging in the same illegal activity he did on behalf of clients in Hollywood, New York and Washington.

These dirty private investigators and hackers are operating out of California, Florida, New York, Nevada and London.

This Hillary matter needs to be investigated because the last thing this country needs is people saying someone stole the election…again. This time through hacking. People don’t need to feel like their vote is not going to count.

And the last time I checked, 1 + 1 = 2, it didn’t equal 4. Voters don’t need to feel disenfranchised. It’s part of the reason I didn’t vote in the 2000 election. I got ready and was about to leave the house to go vote and saw on the news that there were significant voting problems at polls in Florida. I thought to myself, what’s the sense (I did vote in 2004 and 2006, though).

Once again, this is what I hate about politics, corruption and sometimes not really knowing where one stands until there is some scandal.

Hackers Against New World Order

Hackers Against New World Order

I recently came across this article while looking to see if I could find socalled hackers that are aware of the New World Order, and are fighting back, instead of the “patriotic” hackers who are attacking “terrorist” and arabic websites I keep reading about… This article is from 1993…

“…This article is written to educate fellow hackers/phreakers and software traders on what will be happening in the future in regards to computers and electronic communication. This is only a short article and only a few things have been included by varies sources etc… ”

                                ###     ###
                                 ###   ###
                      ###   ####  ### ###  ###   ####
                      ###    ###   #####   ###    ###
                      ###    ###    ###    ###    ###
                      ###    ###   #####   ###    ###
                      ##########  ### ###  ##########
                                 ###   ###
                                ###     ###

                         Underground eXperts United


         ####### ## ##      #######     # #    ####   #######  ####
         ##      ## ##      ##         #####     ##   ##         ##
         ####    ## ##      ####        # #      ##   #######    ##
         ##      ## ##      ##         #####     ##        ##    ##
         ##      ## ####### #######     # #    ###### #######  ######

      [Hackers Against The Governments New World Order]  [By FreeStyle]


      _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
     |_|                                                           |_|
     |_|      Hackers Against The Governments New World Order      |_|
     |_|                        Part I                             |_|
     |_|                                                           |_|
     |_|                   by : FreeStyle                          |_|
     |_|                                                           |_|
     |_|       CIA - Citizens Intelligence Agency Production.      |_|
     |_|_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _|_|


       This  article is written to educate fellow hackers/phreakers  and
       software  traders  on  what will be happening in  the  future  in
       regards to computers and electronic communication. This is only a
       short article and only a few things have been included by  varies
       sources etc... It also involves the  recent busts which have been
       happening   Australia  wide  and the  tapping of the phone  lines
       on a number of  bulletin  boards.
           This  article  is not to be taken lightly and  also  involves
       details on how we "The people can fight back" against the system
       which is designed  to  suppress the individuals rights  to  learn,
       think, privacy.
           This is not a manual on how to hack a system or how to phreak
       without  getting caught, but rather a political  statement  about
       how  society is being manipulated by our very own government  and
       their  role in the total monitoring of all people in the  future.
       if  you would like detailed information on how to hack/phreak  or
       whatever  then  you can still obtain access to a  number  of  H/P
       bulletin  boards which are still operating in Australia and  also
       overseas's, there you will find what you require.

       " The people are the power, bring back the power to the people "

       We  live  in  a  society which  is  dominated  by  computers  and
       electronic  gadgets  to  help  us  in  our  everyday  lives.  New
       technology  is  being  invented  or  improved  upon  every  year.
       Computers are being widely used in nearly every business, school,
       and  the home, in fact nearly everything you can think  of.  With
       computers  we are faced with new crimes such as  Fraud,  Hacking,
       phreaking,  theft  etc..  These  laws were made  up  by  our  own
       government  to protect the rights of it's people in  society,  or
       where they ?
           The  question  must  be asked , are  the  governments  really
       protecting  our lives, rights etc.. The answer to  that  question
       will be determined by you the reader of this article, but let  us
       face the facts for now. Documents have been obtained to what  the
       government is really up to and how society fits into their  plan.
       These  documents explain conspiracy up to the highest  levels  of
       the  government  in stopping certain knowledge falling  into  the
       publics view. The ultimate goal is the monitoring of every single
       individual and also a one world government, economy and in effect
       a total system of control over it's people. All these things  are
       being  slowly brought to our attention and migrated into our  way
       of  life every year. The UN which we now read about in  the  news
       papers are going to be the one world government in the future. In
       effect  this  means that the united states government  will  have
       total  control, After all the UN headquarters is located  in  New
       York.  Big business will play a vital role in the  monitoring  of
       the  people as well as government  agencies,  telecommunications,
       large  mining corporations, banks etc.. have more power over  the
       people that what we are lead to believe.

                         Australian Governments Role

          Australia  is one of the leading countries operating  secretly
       towards  the New World Order.  Monitoring  of  the  people  of
       Australia has increased dramatically over the pass 10 years.  The
       government  tried to introduce the I.D card but too  many  people
       rejected  their  plans, so they brought out the tax  file  number
       instead.  Everyone  has a large file about  themselves  which  is
       linked  up to the government agencies across Australia.  Students
       are  monitored with either the Tax file number, Austudy  or  just
       applications you must fill out to enter a course. It is very easy
       to   monitor  large  numbers  of  people  now  because   of   the
       introduction  of  large computers and also  their  networks.  Our
       government is actively co-operating with other governments around
       the  world and exchanging data on it's people. This  is  illegal,
       but know one seems to care or notice, after all the key to  power
       is knowledge.
           Camera's  are  everywhere  nowadays, not only  are  we  being
       monitored by shop camera's but we also have speed, red light, and
       even  football camera's which are a nice means of  raising  money
       and  also  gathering  information.  Should  we  believe  our  own
       government  when it is common knowledge that they lie to  us  and
       that even our police force is very corrupt and are able to  kill,
       bash, drink and drive, etc.. and then turn around and say that we
       must obey their laws. Our government is using the media to play a very important role in advertising to us killings, rappings, etc.. so that we the people then turn around and say that "We need tighter laws etc.." This is exactly what the government wants and needs to implement it's plan of total control.
       Documents  obtained  form varies sources on Milnet  show  clearly
       what  the  United  states  and also  other  countries  have  been
       researching  for  many  years  and that  is  ELF  (Extremely  Low
       Frequency) weapons against certain people. This research  project
       is  so  well  advanced  that it will be  for  the  normal  person
       unbelievable.  Research has been done and put into affect on  how
       ELF  affects  the brain waves of people, animals and  all  matter
       itself.  This  research  has also been used  to  change  people's
       thought patterns and is being used to manipulate people in varies
           Cellular phones have been introduced for many years now,  and
       are  a  great form of monitoring society. Everytime you  turn  on
       your  cellular phone telecom know exactly where you are  all  the
       time,  also how long you have used the phone for etc... The  same
       also goes for normal house, business phones. Customer details are
       all  processed by large computer data bases and are passed on  to
       governments  agencies when needed. People are using credit  cards
       all  the  time  nowadays  which makes  it  much  easier  for  the
       governments to keep track on what people are buying etc.. Noticed
       how  we  are slowly losing our 1c 2c coins ? also other  coins  ?
       this  is  a slow process of weaning out coins and taking  on  the
       credit   cards  as  normal.  Why  ?   well  it's  because   every
       transaction you make using credit cards go into a large  computer
       in  banks etc.. and therefore it is much easier to store data  on
       the people who use them. Cash payments are the biggest worry  for
       the  government, because they don't have much control over  thing
       like that - but in the future their will be no cash anyway. Large
       corporations  buy data off other agencies. E.g. - each  time  you
       use  your credit card, your purchase is logged and also how  much
       you payed etc.. Now the product companies come along and buy this
       information  off  banks, super markets etc... to  see  who  buy's
       there  products  and also how their products are going.  This  is
       also  illegal  because  it is invading your  privacy,  don't  you
       worry,  the  government knows EVERYTHING about you.  What  colour
       hair   you   have,   Size,  dental  records,   car   you   drive,
       working/studying, food you eat, animals you own, phones you have,
       money, house's, etc... We pay rates on almost everything now  and
       all  that  information about us goes into a  government  agencies
       computer  data base. They are even trying to see what garbage  we
       throw out now. (they are trying to put electronic monitors on our
       bins)     The   government  are  the  real   criminals.   Private
       information about it's people are being given to other  countries
       and  also  other agencies, companies etc.. Information  is  being
       withheld from the public, special deals are going on secretly all
       the  time. We even have a corrupt police force who love to  kill,
       bash,  and  also drink drive. (it seems they  are  different  law
       enforcement,  their law).  We now have news in the paper that  we
       even  have  to get our cats registered. Is this a form  of  money
       raising for the government as well as monitoring. Anyone who  has
       been pulled over by the police will know how many questions  they
       have  to  answer  before being let go. Even if you  are  not  the
       driver  of the car etc.. you are forced to tell them  everything.
       You are under no legal means to do so, but they WILL enforce you.
       Also  isn't  it  quite strange that the head  of  government  run
       Telecom was one of the bosses of At&t (The US company). maybe  he
       is teaching Telecom a thing or to about how to monitor people and
       organize  the control much better. We all know that 0014  numbers
       and  008  numbers  are being logged, but are unsure  as  to  what
       reasons. If their reasons of phreakers, hackers were valid,  then
       why not just put filters on the line etc.. to stop these  people.
       Ahhh  they have to monitor the lines and see who is calling  what
       companies.  Also the the American NSA (National Security  Agency)
       owns  over three quarters of the cray super computers, these  are
       the  biggest, fastest computers in the world. Why on earth  would
       they  need to own even half of these computers ??  Monitoring  of
       all  people  in society is the answer. They  even  sold  computer
       software  to  countries  all around the world  which  had  trojan
       horses in them, so they could access it remotely themselves.  The
       software  was also one of the fastest, most capable  software  on
       the market for the purpose of monitoring large amounts of  people
       in  society.  The middle east has remained so unstable  for  many
       years due to the fact of other nations pouring millions into  the
       countries  to de-stabilize the whole of the middle east,  why  ??
       The answer is simple, the first biggest bankers in the world came
       from  the middle east, because of the oil wells etc..  They  held
       the  balance of power within the banking world. America  did  not
       like  that, and also the other countries in the New World Order
       didn't  like  that  either, so the whole  middle  east  has  been
       de-stabilize and are fighting one another. YET who are  supplying
       these  countries  with  the arms to fight  ???  America,  France,
       Germany,  Australia,  etc..  most of the countries  who  are  now
       against them. I will not go into any of this political side of it
       as it would take far to long to explain about it. Anyway we  have
       in  Australia a special police task force which is setup  by  the
       government   to   look  into  the  so   called   "Normal   police
       corruption", isn't this crazy, we have the police monitoring  the
       police  !!   They have shown themselves to be so  corrupt  anyway
       that it's a joke. Look at all the current affair shows of how the
       police  have  bashed people, have drunk  and  driven  themselves,
       etc..  It's like the blind leading the blind..  We all  know  how
       corrupt  the police are in NSW and also WA, so what makes it  any
       different in Vic or NT (anywhere) only they have not been  caught
       enough YET !! Many police have told me that once your out of  the
       public  view  your history.. But these days they do not  seem  to
       even  care  about  bashing you behind their walls.  Look  at  the
       Rodney  King  bashing, and also many others.. they take  the  law
       into  their own hands and the government is letting them.   Never
       trust  a  politician, they are the biggest liars on  this  earth.
       They  say  they are going to do this and that and  end  up  doing
       something  different, or not doing it at all. The  last  election
       was proof of that, (no promise has been kept)
       Who  do  we  have   monitoring   the governments actions ?
       no one really, so that's where the hackers role will have to come

                     Hackers & Phreakers can fight back.

            Many bulletin boards have been raided by the federal  police
       recently,  also  many boards have there telephones  tapped  in  a
       controlled  affect  to  close down the threat  of  the  future  -
       Hacking,  Phreaking,  Anarchy Information. The  governments  have
       realized that as computers grow bigger and networks expand a  lot
       further, there must be a need to protect THEIR privacy (which  is
       really  all the data collected on us) and that is why  there  has
       been a sudden push forward to catch the hackers, etc..  Criminals
       are  just starting to realize that their old methods  of  getting
       information  etc.. are out of date. It is the computer  age  now,
       and  that is why hackers (good ones) are in upmost demand by  the
       most  criminals  in  jail/outside these days.  Image  the  damage
       hackers  can do by breaking into government /  military  computer
       systems.  We  are  able with the right  knowledge  and  equipment
       infiltrate these networks and obtain the information on what  the
       government  is  up  too. We can see  what  the  governments  have
       acquired  information about us. Police computers would be a  very
       useful  tool  in  the  hackers  arsenal.  Hackers  can  find  out
       information  regarding everyone, put out warrants for the  arrest
       of  people  etc.. Drug enforcement computer systems would  be  an
       advantage  for the drug dealers etc.. Military systems  would  be
       helpful  to certain hackers to obtain classified  information  on
       the latest technology and use it to there advantage. Hackers  can
       break into media computer systems and change the news etc..  This
       is  why  hackers are going to become the next  generation  of  SO
       CALLED   criminals.  Hackers  have  the  power  to  monitor   the
       government - and they don't like it !!!
           That is why the governments realize to stop the threat of the
       hackers  spying  on them, then first of all they  must  stop  the
       hackers  at  the  very heart on the situation, and  that  is  the
       telephone  (dialing  out.. why wait until the hacker  has  logged
       into a system before you catch him/her. Get him/her when he makes
       the  call).  AT&T  is in the middle of trying  to  clean  up  the
       european  countries at the moment, and they will be in  Australia
       in  the near future. Telecom is doing a great job  in  monitoring
       the phreakers etc.. they are currently investigating hundreds  of
       overseas's  callers and also local callers and are informing  the
       government  of  these people activities. The 0014 -  direct  dial
       U.S.A number is being monitored, and most calls are being logged.
       Also  most  008 numbers are logged and cli monitors  are  on  the
       line.  Some  0014 numbers are logged out of every ten  people  it
       will  record the last one. Also the federal police have  quite  a
       few  informers  who have accounts on top boards who  are  feeding
       then information on certain users etc.. Also I have heard a rumor
       (not  reliable) that there are some federal police who operate  a
       board in N.S.W and also Victoria and that they are operating  it,
       just like a normal BBS, but when certain users get too big,  they
       get  busted. The future looks bad for the hacker at the moment  -
       or is it ?  We hackers phreakers, software traders must not  back
       stab  each other, compete against each other, etc.. BUT  we  must
       form a united information network against the government, we must
       collect information, trade information between ourselves. We must
       realize  that  we  have the power and  technology  to  watch  the
       government  and  see what they are REALLY up too.  We  must  form
       global  networks, such as future net, HSI etc.. and email  across
       the  world with our friends. Only by realizing this power can  we
       start  to break down the walls of the governments of our  society
       and bring them back into reality, and let them see for themselves
       that  the  people  do  have  a voice and  that  we  will  not  be
       suppressed manipulated for any longer.

           " Bring back the power to the people "

            - Stop the New World Order, before it's too late -

  uXu #151             Underground eXperts United 1993                uXu #151
                       Call RIPCO ][ -> +1-312-528-5020

Hackers infiltrated 72 world organisations including United Nations and IOC, security company McAfee discover.
Cyber-hacking: prolonged series of attacks by one country uncovered
Computer user

Hackers from one country have systematically targeted 72 global companies and organisations over the past five years, McAfee have found. Photograph: AP

Dozens of countries, companies and organisations, ranging from the US government to the UN and the Olympic movement, have had their computers systematically hacked over the past five years by one country, according to a report by a leading US internet security company.

The report, by McAfee, did not openly blame any country but hinted strongly that China was the most likely culprit, a view endorsed by analysts.

China has previouslybeen implicated in a range of alleged incidents of cyberspying – a practice Beijing vehemently denies – including a concerted attack on Google and several attempts to prise secrets from computers at the Foreign Office. But the McAfee report is among the most thorough attempts yet to map the scale and range of such data-theft efforts.

The study traced the spread of one particular spying malware, usually spread by a “phishing” email which, if opened, downloaded a hidden programme on to the computer network. Through tracing this malware and also gaining access to a “command and control” computer server used by the intruders, McAfee identified 72 compromised companies and organisations. Many more had been hacked but could not be identified from the logs.

“After painstaking analysis of the logs, even we were surprised by the enormous diversity of the victim organisations and were taken aback by the audacity of the perpetrators,” said Dmitri Alperovitch, the company’s head of threat research and the author of the report.

Of the hacking victims 49 were US-based, among them various arms of federal, state and local government, as well as defence contractors and other industries. There were two targets in the UK, a defence company and a computer security firm, while other governments included those of Taiwan, South Korea, and India.

Also found on the logs were records from the United Nations, the International Olympic Committee and two national Olympic committees – one of which was accessed by the hackers for more than two years continuously.

McAfee was at pains not to identify the suspected culprit. However, it did little to disguise its suspicions, noting that the targeting of the Olympic groups, and the sport’s anti-doping agency, immediately before and after the 2008 Beijing Games was “particularly intriguing” and pointed to a country being to blame.

China has been accused in the past. After Google came under a so-called “advanced persistent attack” in 2009 which it said originated in China, the US secretary of state, Hillary Clinton, asked Beijing for an explanation. This year William Hague said a “hostile state intelligence agency” – identified by UK sources as China – had penetrated the Foreign Office’s internal communications system.

While a high proportion of media attention on cybersecurity focuses on the loss of personal data, such as the recent security breaches at Sony, and the activities of hacking collectives such as LulzSec, analysts say this is often minor when compared with the methodical, industrial-scale attempts to seize commercial and state secrets, presumed to be carried out by many countries, chief among them China. Alperovitch said state-orchestrated hacking was so endemic and ambitious it could reshape the workings of the global economy.

“What we have witnessed over the past five to six years has been nothing short of a historically unprecedented transfer of wealth,” he said. If only a fraction of the stolen data was used to gain commercial or technological advantage “the loss represents a massive economic threat not just to individual companies and industries but to entire countries that face the prospect of decreased economic growth in a suddenly more competitive landscape and the loss of jobs in industries that lose out to unscrupulous competitors in another part of the world”.

Beyond even this, he added, were the national security implications of stolen intelligence or defence files. Such was the endemic scale of this problem, Alperovitch said, that he divided large corporations into two camps: “Those that know they’ve been compromised and those that don’t yet know.”

He said: “This is a problem of massive scale that affects nearly every industry and sector of the economies of numerous countries, and the only organisations that are exempt from this threat are those that don’t have anything valuable or interesting worth stealing.”

When Google accused China last year the ministry of industry and information technology told the state news agency Xinhua: “Any accusation that the Chinese government participated in cyber-attacks, either in an explicit or indirect way, is groundless and aims to denigrate China. We are firmly opposed to that.”

No one was available for comment at the foreign ministry in Beijing. Chinese officials have previously said that China has strict laws against hacking and is itself one of the biggest victims.

Dave Clemente, a cybersecurity analyst from the Chatham House thinktank, said it was likely China was also targeted by hackers acting on behalf of other countries.

“It’s going in both directions, but probably not to the same extent,” he said. “China has a real motivation to gain these types of industrial secrets, to make that leapfrog. There’s probably less motivation for the US to look to China for industrial secrets or high technology. But certainly there’s things China has which they’re interested in, maybe not for commercial advantage but in a geopolitical sense.”

Clemente said McAfee’s characterisation of such hacking efforts as a wholesale theft of intellectual property and secrets was “fairly reasonable”: “It’s confirmed not just by this report but by so many dozens of other incidents which build up to an overall picture.”

The effects, however, were harder to quantify: “The blueprints are only part of the picture. The technology for, say, how to build a sophisticated jet engine is one thing, but there’s a whole set of other processes – the logistics, how to manage the supply chain to build more than one, the long-term management of a really advanced manufacturing process.”

While basic security or human errors often made hacking easier than it should be, Clemente said, even the biggest organisations struggle to stop sophisticated attacks: “There’s not much even Google can do if China’s really determined to get inside its networks. It’s not a fair fight in that sense.”

Spain Detains 3 in PlayStation Cyberattacks

The Spanish police said on Friday that they had apprehended three men suspected of computer hacking in connection with recent attacks on Sony’s PlayStation Network as well as corporate and government Web sites around the world.

The National Police identified the three as the local leadership of the shadowy international network of computer hackers known as Anonymous, which has claimed responsibility for a wide variety of attacks.

Anonymous is composed of people from various countries organized into cells that share common goals, the police said, with activists operating anonymously in a coordinated fashion.

One of the three suspects, a 31-year-old Spaniard, was detained in the southern Spanish city of Almería sometime after May 18, the police said. He had a computer server in his apartment in the northern Spanish port city of Gijón, where the group is believed to have attacked the Web sites of the Sony PlayStation online gaming store.

The same computer server was also believed to have been used in coordinated attacks against two Spanish banks, BBVA and Bankia; the Italian energy company Enel; and government sites in Algeria, Chile, Colombia, Egypt, Libya, Iran, Spain and New Zealand, the police said.

The two other men, both also Spaniards in their early 30s, were picked up in Barcelona and Valencia. The police statement did not make clear the timing of those detentions, but a police spokeswoman said all had occurred recently.

The spokeswoman, who did not want to be identified in accordance with department policy, said all three were subsequently released, without bail, pending formal charges.

They were expected to be charged with forming an illegal association to attack public and corporate Web sites, a charge that carries a potential sentence of up to three years in prison.

The police opened their investigation last October, after hackers overwhelmed the Spanish Ministry of Culture’s Web site to protest legislation increasing punishments for illegal downloads.

It was not immediately clear how much of a role the group may have played in the recent attacks on Sony. About a dozen Sony Web sites and services around the world have been hacked; the biggest breaches forced the company, which is based in Tokyo, to shut down its popular PlayStation Network for a month beginning in April.

The Japanese company has acknowledged that hackers compromised the personal data of tens of millions of user accounts. Earlier this month, a separate hacker collective called Lulz Security, or LulzSec, said it had breached a Sony Pictures site and released vital source code.

Sony has estimated that the hacker attacks will cost it at least 14 billion yen ($175 million), in damages, including spending on information technology, legal costs, lower sales and free offers to lure back customers.

Mami Imada, a Sony spokeswoman in Tokyo, said she had no information on the detentions and declined to comment.

The police said that they had analyzed more than two million lines of chat logs since October, as well as Web pages used by the group to identify the leadership in Spain “with the capacity to make decisions and direct attacks.” Members of Anonymous used a computer program called L.O.I.C. to crash Web sites with denial-of-service attacks, the police said.

Among recent attacks, the hackers also brought down the site of the Spanish National Electoral Commission last month before regional and municipal elections. It was that attack, on May 18, that led to the detention of the suspect in Almería.

The movement against the antipiracy law has been closely linked to the broader youth-led political movements that have occurred in Puerta del Sol, the central square in Madrid, and in other city squares since May 15.

These protests have called for a complete overhaul of Spain’s political system and laws aimed at stopping illegal downloading.

Hiroko Tabuchi contributed reporting.

After venting out their ire against Sony PlayStation Network and Sony Pictures, hackers have pointed their guns at the Federal Bureau of Investigation.

The group LulzSec has hacked an FBI-affiliated website called InfraGard and siphoned off with the details of around 180 users. The attack was on their Atlanta chapter.

InfraGard is a government and private sector alliance which provides actionable intelligence to protect critical national information infrastructure. The website defines its role as: “InfraGard is an association of businesses, academic institutions, state and local law enforcement agencies, and other participants dedicated to sharing information and intelligence to prevent hostile acts against the United States.” The site has over 42,026 members.

The recently-drafted cyber strategy of the U.S. Department of Defense (DoD) that termed hacking as an “act of war” was cited by LulzSec as the primary reason for attacking the government site.

LulzSec stole username, e-mail IDs, and passwords of users from the website. The hackers further stated that most of the users stood in contradiction to FBI rule under which they are not supposed to use the same password on other websites — an anomaly which is “heavily frowned upon in the FBI and Infragard handbook.”

This glitch led the hackers to lay bare the email id of one of the InfraGard users Karim Hijazi. He re-used his password for InfraGard website to access his personal Gmail account. Using details from Hijazi’s account, the hackers were able to enter into his company called “Unveillance”, a whitehat firm that holds expertise in data breaches and botnets.

The hackers then contacted Hijazi, who they claimed was willing to offer them funds to eliminate his competitors in the market. Hijazi was also reportedly willing to part with the “inside info” in return for hackers’ silence.

LulzSec also warned that Unveillance was formulating an operation to seize control of Libyan cyberspace through unlawful means. It states that the U.S. government is funding the CSFI to attack Libya’s cyberspace. The hackers also published e-mails of 23 people who are supposedly involved in the project.

LulzSec claims that it recently hacked Sony Pictures and stole personal details of over 1,000,000 users. The information stolen included passwords, email address, home address and date of birth. They also stole admin details which included 75,000 music codes and 3.5 million music coupons.

In the SonyPictures fiasco the hacker group claims that Sony stored user password in plain text instead of encrypting the information. LulzSec said that this loophole meant Sony was “asking for it”.

Since they mentioned Libya and NATO in their message, will NATO be the next target?

Phishing Site Discovered on Sony Server

Sony Phish

by @xbee30

Oh, Sony. Capping off a week that saw Sony disable logins across some of its PlayStation Network properties thanks to a password exploit, F-Secure identified a phishing site running on one of Sony’s servers.

Today’s incident, however, “has nothing to do with the Sony PSN hack,” F-Secure’s Mikko Hypponen wrote in a blog post.

“We know you’re not supposed to kick somebody when they’re already down … but we just found a live phishing site running on one of Sony’s servers,” Hypponen said. “Basically this means that Sony has been hacked, again. Although in this case the server is probably not very important.”

Hypponen posted screen shots of the official homepage of Sony Thailand, as well as a phishing site using the URL (above), which appears to target an Italian credit card company.

He notified Sony of the problem and later tweeted that “I can confirm that Sony has just minutes ago cleaned their site and removed the phishing site from”

When asked via Twitter if the site was hosted on Sony’s servers or just a DNS hijack, Hypponen said it was hosted on Sony’s servers.

This latest problem comes days after Sony started putting its PlayStation network back online after an extended downtime. It hasn’t been completely smooth sailing; an influx of users trying to change their passwords prompted Sony to temporarily halt the process earlier this week; the password exploit later took down log-ins, but Sony denied it was a new hack.