Hackstacks

The Windows Shortcut Explot aka CPLINK, knows to be a zero-day vulnerability which affects all the version of Microsoft Windows. A shortcut link will be created (.lnk shortcut) to run the malicious DLL file. It is knows that the shortcut link could be on the website or attached to document. As per Sophos “The exploit works when you open a device, network share or WebDav point carrying an infection—you don’t need to click on anything for the exploit to work, [...]

Near a million Orkut user accounts hacked by eluring users for free mobile recharge. Hackers this time used the psychology of human behaviour of getting free money. Thousand of users were targeted with this technique and since it plays delicate with exploiting the greed for money for users. Mode Of attack: Users were given a link which has title saying recharge you mobile for free and get a free credit of 500.When a user clicks the link ,it lands up [...]

Trend Micro lab reports that Apple Quicktime’s  specifically crafted .mov files trigger the download of malware masquerading as a codec update and an installation file for another player when run in the latest (7.6.6) version of QuickTime Player. Researcher Marco Dela Vega says that both files pretend containing Salt, the latest Angelina Jolie movie, but that his suspicion was aroused by the unusually small size of the files – small when compared to regular movie files, that is.Upon running the [...]

Qualys SSL labs has announced a free online SSL test for websites.We can examine whether the website can be trusted and service is secure. SSL certificate chain to ensure it is trusted and serves as a good security foundation for communications over the Internet. The test lets a user test a web site’s SSL certificate chain and performs comprehensive configuration analysis to detect configuration weaknesses and performance issues. Users simply enter the web site domain name, and the test will [...]

23 year old Mariposa Malware author arrested in Slovenia .He developed the Malware code that allowed the three alleged Spanish Mariposa Botnet herders to infect some 13 million personal, corporate, bank and government computers in more than 190 countries. The arrest is the result of a massive investigation that included the FBI, Spanish authorities, the Slovenian Criminal police, and the Mariposa working group (comprising the Georgia Tech Information Security Center, Defense Intelligence, Panda Security, and other international security experts). According [...]

Barracuda security labs have conducted study across Bing,Google,Twitter and yahoo and yet another reveals shocking news. They conducted a 2 month study over these search engines; the analysis reviews more than 25,000 trending topics and nearly 5.5 million search results. The purpose of the study was to analyze trending topics on popular search engines to understand the scope of the problem and to identify the types of topics used by malware distributors. Results included: Google tops when when it comes [...]

Another shocking news on air! Personal Information and Facebook pages of 100 million users are there for download on torrent site, courtesy of hacker Ron Bowes of Skull Security. These are result of Facebooks privacy scrutinized when we create pages with as open access directory and which can be viewed by simple search on search engines. But, there is no doubt that having them all in one place will be a godsend to anyone bent on data mining. User names [...]