The security breach is part of the ongoing operation "#OpTurkey" which was kicked off in response to the government's violent attempt to suppress Turkish protests.
Unfortunately, the Government fails to know the violence against protesters will get the attention of Internet activists.
Hackers leaked more than thousands data from the Fox Turkey website(fox.com.tr) which contain ip address, email ids and name : http://nopaste.me/paste/208744166651b10f0ba7d44
The Vodasoft's leak comprise of username, email address, name and password details :http://nopaste.me/paste/126630249651b1068f3ee4c
Recently hacktivists breached the Prime minister website, Ministry of Interior and more Turkey websites as part of the operation.
A new hacking group named "Group Hp-Hack" has found a way to break into the database server of St. Francis Preparatory School website and accessed the data.
Today, we received a notification from the team that they have hacked the sfponline.org website and leaked the data compromised from the server.
Talking to EHN, the group also provided a sql injection vulnerable link that gave them access to the server. The leak contains a list of username and password(plain text format).
The group also claimed to have breached the auto-dress.ru website which is said to be Russian auto company. The group leaked thousands of user id, name, email and password data.
A hacker with twitter handle @anon_4freedom a.k.a "sepo" who has been quite for some time, has come with some interesting hacks. Today he hacked into multiple Bank websites.
The list of affected websites includes Atlantic Bank Group (banqueatlantique.net), Fidelity Bank Ghana(fidelitybank.com.gh),Italian Labour Union ( uil.it), Agricultural Development Bank of Ghana (agricbank.com).
The hacker managed to identify the SQL injection vulnerabilities that allowed him to gain access to the database server. At EHN, we have verified the vulnerability.
All leaks (pastebin.com/u/HackinotrThe) just contain server details, database details such as Database username, OS, Database name, SQL version and Host IP. It also contains the list of table names.
Hacker didn't the leak the personal data of users because he don't like to expose the normal people's data.
A security flaw in pakistanintelligence.com, a pakistani job portal gave an opportunity to Anonymous hacker to gain access to their server.
Anonymous left the about us page "www.pakistanintelligence.com/text_pages.php?id=1
" defaced with the text "hacked by anonymous "
"You b33n h4ck3d by #F**kYouSec. OHai all....time to look for a job using some other service...we haz ALL UR infoz...Y?... cuz i can...and U b33n sold out by poor security
" The message posted by the hacker.
The hackers also claimed to have leaked 2Gb of logs zipped into 24Mb file, uploaded to anonfiles website.
This is not the first time the site is being under the cyber attack. The same page was defaced in 2011. We are not sure whether the same vulnerability allowed him to gain the access.
Update:
Cyber War News analyzed the dump and found the leak contains personal data of individuals who registered in the portal which include name, contact info, job type and more. It also includes the login credentials of admin account.
*Update*: Cyber War news reports the leak is fake.
Few days back, a hacker with twitter handle @Reckz0r claimed to have breached the CNN website and leaked data.
The data published in the pastebin (http://pastebin.com/YQLv6t3E) includes server&database details, login credentials of 9 accounts that contain usernames and encrypted passwords.
"because they're a bunch of f**ng faggots trying to spread false news, your 9/11 is our 24/7. I strongly respect the Palestinian brotherhood, and it seems like CNN is on Israel's side. and you do know one thing;" He stated as reason for the attack.
He also claimed to have posted four fake articles on edition.cnn.com. We are not able to verify his claim.
The hacker also provided the screenshot of the fake article he posted : "Bill gates horrifies children by injecting poison into their buttocks". The articles has been removed.
He also said he identified Local File inclusion vulnerability in VeriSign.com
Few days back, a hacker with twitter handle @Reckz0r claimed to have breached the CNN website and leaked data.
The data published in the pastebin (http://pastebin.com/YQLv6t3E) includes server&database details, login credentials of 9 accounts that contain usernames and encrypted passwords.
"because they're a bunch of f**ng faggots trying to spread false news, your 9/11 is our 24/7. I strongly respect the Palestinian brotherhood, and it seems like CNN is on Israel's side. and you do know one thing;" He stated as reason for the attack.
He also claimed to have posted four fake articles on edition.cnn.com. We are not able to verify his claim.
The hacker also provided the screenshot of the fake article he posted : "Bill gates horrifies children by injecting poison into their buttocks". The articles has been removed.
He also said he identified Local File inclusion vulnerability in VeriSign.com
*Update*:
A hacker known by his online name @1923Turkz has breached Federal University of Bahia website(ufba.br) - one of the Brazil University, located mainly in the city of Salvador, Bahia.
"Universidade Federal da Bahia DB Hacked http://www.anonpaste.me/anonpaste2/index.php?952af0b8ee517a5f#0i/g1qDaqpzAeg8PloenF3vKMbozGKlU2gSTIxlxw6Y= …" Hacker tweeted about the hack along with a link to the database dump.
The database dump contains hundreds of account details that include name, plain-text password and email address. I had a quick look at the password list, most of them are weak passwords.
We recommend the admin to find and fix the vulnerability and users are advised to change their password.
1923Turkz become more active in recent days and busy in dumping the database from the hacked websites. Yesterday, he hacked into the Bangladesh Air force website.
