Fail 2011 "Year Of The Hack" - TheHackerNews

[nuxbie_cyber]

- According to IT security experts Year 2011 have labeled as the "Year of the Hack" or "#Fail 2011".
Hacking has become much easier over the years allowing hackers to hack into systems easier then ever before, which is why 2011 had a lot of hackings happen so far.
Hackers are coming up with tools as well as finding new methods of hacking faster than companies can increase their security.

Every year is te year of the hacking as long as there are hackers out there ready to execute their malicious programs and attain their goals like gathering impotant information from the victim's computer, stealing important identities, credit card information, etc.
2011 could produce another generation of hacking. Every year there are always forward advancements of the tools and programs that could use by the hackers.

[x] Have a look to some Major Hacking Cases of 2011.

1. RSA Hack (03/17/2011).
Motive: Unknown attacker, although China belived to be suspect. Motive is probably espionage.
Method: Advanced Persistent Threat (APT) targeted at individuals within an organization using social engineering. Malware hindden in an Exel spreadsheet exploited a zero-day (unpatched) Flash hole.
Harm: SecureID token deployments at financial, government and other sites were at risk.

2. Comodo Hack and several of its digital certificate resellers (03/23/2011).
Motive: 21-year-old Iranian patriot took credit saying he was protesting US policy and retaliating agains the US for its alleged involvement with last year's Stuxnet, which experts say was designed to target Iran's nuclear program.
Method: Compromise of digital certificate registry authorities les to the theft of digital certificates that are used by sites to prove they are who they are legitimate.
Harm: If they had not been revoked the faked certificares could have been used to spoof sites like Google, Yahoo, Microsoft and Skype.

3. Sony (Indonesian, Japan, Thailand, Greece, Canada, Netherland, Europe, Russia, Portugal) & Sony PlayStation Network Hacked (04/06/2011-06/08/2011).
Motive: Lulzsec, Anonymous, Lebanese hacker Idahc and various other hackers organized the attack in retaliation for Sony attempting to identify visitor to PlayStation 3 hacker George Hotz' blog site, as well as seeking data from his Twitter and YouTube accounts as part of a lawsuit.
The case was later settled out of court.
Method: Distributed Denial-of-service (DDoS), SQL Injection.
Harm: Defacement of various domains of Sony and Personal information of 77 million people, including customer names, addresses, e-mail addresses, birthdays, PlayStation Network and Qriocity passwords, user names, online handles and possibly credit cards were exposed.

4. Fox Network's X Factor (05/07/2011).
Attacker: Lulzsec.
Harm: X Factor contestants personal information exposed and internal Fox data exposed.

5. PBS.org - Public Broadcasting Service Hacked (05/30/2011).
Attacker: LulzSec in retaliation over Frontline Wikileaks program they considered biased.
Method: Zero-day exploit in Moveble Type 4.
Harm: Passwords were leaked and a fake news article was published on the page.

6. 100's of Gmail users (06/01/2011).
Motive: Google says attack originated in China and appeared designed to monitor communications of journalists, political, activists and military personel.
Method: After stealing password with a phising attack, perpetrators apparently used the passwords to change Gmail users' forwarding and delegation settings.
Harm: Attack was "disrupted" but it's unknowns if any snooping was accomplished.

7. Acer Europe Hacked (06/03/2011).
Attacker: Pakistan Cyber Army.
Method: Stupidity of Server admin.
Harm: Source code and user data of 40.000 people reportedly compromised.

8. FBI Partner Infragard Atlanta Hacked (06/03/2011).
Motive: LulzSec, in an attempt to embarras the FBI and security firm government contractors.
Harm: Site was hacked, defaced and 180 Infragard usernames and passwords were leaked.

9. Citigroup Hacked (06/08/2011).
Motive and Attacker: Unknown.
Harm: Names, account numbers, and contact information, including e-mail addresses, were accessed during the breach, which affected about 360.000 customers.

10. Turkish Government (06/09/2011).
Motive: Anonymous, in opposition to internet filtering plan.
Harm: Site inaccessible temporarily.

11. U.S. Senate Hacked (06/13/2011).
Motive: LulzSec, saying it doesn't like the U.S. Government.
harm: Published on the Web Server's directory and file structure of the Senate site.

12. Spanish National Police (06/13/2011).
Motive: Anonymous, in retaliation for the arrest of three people in Spain.
Harm: Site was inaccessible temporarily.

13. CIA Hacked (06/15/2011).
Attacker: LulzSec.
Harm: Site temporarily down.

14. Electronic Arts Hack (06/16/2011).
Harm: System hosting BioWare Neverwinter Nights forum in breached and user names, encrypted passwords, e-mail address, mailing addresses, names, phone numbers, CD keys and birth dates may have been compromised.
Some unencrypted password believed stolen.

15. Sega Hack (06/18/2011).
Harm: Some Sega Pass member e-mail addresses, dates of birth, and encrypted passwords compromised.

16. NATO Hack (06/23/2011).
Motive: After NATO released a report singling out Anonymous'a hacktivism as a cyber threat, the group warnet NATO not to challenge it.
Harm: Subscribers to NATO's e-Bookshop service ware urged to chage their passwords after a possible compromise of usernames, password, addressess and e-mail addresses.

17. Arizona Departement of Public Safety (06/23/2011).
Motive: Lulzsec said it is leaking the data to protest "racial profiling anti-immigrant" policies of Arizona law enforcement, specifically SB1070, which makes it a crime to be in Arizona without documentation proving United States residency.
Releases another batch of data on june 29.
Harm: Publicly released hundreds of private intelligence bulletins, training manuals, personal e-mail correspondence, names, phone numbers, addresses and passwords belonging to Arizona law enforcement.

18.Former British Prime Minister Tony Blair Hack (06/24/2011).
Motive:TeaMp0oisoN says it targeted Blair over his support for the Iraq War.
Harm: Contents of his electronic address book, including contact data for members of Parliament.

19. Arizona Department Of Public Safely Hack (06/29/2011).
Attacker: AntiSec.
Harm: Hackers release second dump of data, including more personal data on specific officers.

20. Al-Qaeda Hack (06/29/2011).
Harm: Hackers shutdown Al-Qaeda's Internet Communications, halting the flow of videos and statements online.

21. Arizona Fraternal Order of Police, Fraternal Order of Police Mesa, Tucson Hack (06/30/2011).
Attacker: AntiSec.
Harm: 8 web sites defaced, documents released including passwords and e-mail addresses of 1.200 officers, some financial data os specific officers and personal e-mails.

22. Apple Hack (07/04/2011).
Attacker: AntiSec.
Method: Exploited security flaw in the software Apple used.
Harm: 26 admin usernames and passwords for an Apple server exposed.

23. Fox News Twitter Account Hack (07/04/2011).
Harm: Te Fox News Twitter feed was used to publish false report that President Obama had been killed.

24. German Federal Police Hack (GFP).
Attacker: n0-N4m3 Cr3w
Harm: The Hackers compromised a server used by the country's customers service and posted location coordinates, license plate and telephone numbers, police usernames and passwords, and GPS application in response to government communications interception.

25. News Corp. sites, The Sun and News International Hack (07/18/2011).
Attacker: LulzSec.
Harm: Hackers redirected The Sun home page to fake story about death of News Corp. Owner Rupert Murdoch, and then later to Lulzsec's Twitter fees, as well as redirected a News International's page with a statement on the hack to the LulzSec Twitter feed.
They also released phone numbers of News Corp. Employees and an e-mail address and password for former Sun editor Rebekah Brooks, who is embroiled in the mobile phone voice mail hacking scandal at News of the World.

26. Italian Police's National Center for Computer Crime and the Protection of Critical Infrastructure (07/22/2011).
Attacker: AntiSec.
Harm: hackers claim to have stolen more than 8 GB of internal data that was allegedly seized during police investigations, including information on the Ministry of Transport In Egypt, Ministry of Defence in Australia, Russian companies and U.S.Justice Department.
They threatened to publish in online.

27. 72 Public and Private Organizations in 14 countries Hack (08/02/2011).
Motive: McAfee report does not speculate, but there's a pattern in the targets which do not include China but do include political non-profits, a prodemocracy organization, the world Anti-doping Agency, and the international Olympic Committee and Olympic committess in three countries, which were targeted right befoce and after the 2008 Olympic Games in Beijing.
Method: Targeted phising attack with e-mail exploit that installed a back door.
Harm: national secrets, classified government data, source code, bug databases, e-mail archives, details for new oil and gas field auctions, legal contracts, SCADA configurations and more.

28. Citigroup Japan Hack (08/05/2011).
Method: A Source said the scheme was perpetrated by a third-party vendor that had been given access to Citi's internal systems.
Harm: Personal information of 92.408 Citigroup credit card customers in japan was stolen and sold to third parties, the bank said.

29. 70 U.S law enforcement agencies and police association in italy Hacked (08/06/2011).
Attacker: AntiSec.
Harm: 10 GB of personal information, private e-mails, passwords, training files, data from informants, Social Security numbers and stolen credit card information.

30. Government of Syria Hack (08/08/2011).
Attack: Anonymous.
Harm: Home page of the syrian Ministry of Defence site defaced with Anonymous logo and call for the downfall of President Bashar al Assad.

31. Blackberry maker Research In Motion (RIM) Defacement (08/09/2011).
Attacker: Team Poison.
Harm: RIM's Blackberry blog was hacked in retaliation for RIM offering to assist London police in combating rioters, many of whom are using Blackberrys to organize.

32. Hongkong Stock Exchage Hack (08/10/2011).
Harm: Hackers broke into news site of Hongkong stock exchage, where corporate filings arte published, forcing the suspension of trading for seven companies.


"No matter how sophisticated technology is, it always has one big hurdle that cannot outwit us. How we use somethings "how we behave" will always condition technology, either by how it is designed or how it is used. Nothing is private online. Somethings are more difficult to access than others. Now judge: ARE YOU SECURE?"




[x] Taken From:
TheHackerNews Magazine - September 2011.

[seva]

indonesian please

[my3nemy]

wew,manteb emang,apa lagi teknologi udah maju,makin banyak deh orang2 cerdas....

[ev1lut10n]

wah itu yg kernel.org juga masuk bro

[ikbal]

sadisss lachhh

[mariachi]

kira2 kalo DC di hek masuk gak ya

[tridi]

(09-26-2011 12:12 PM)t3k0 Wrote:  kira2 kalo DC di hek masuk gak ya

kasian adminnya ntar..