"We are aware that some of our accounts have been compromised and are working to resolve the issue. Many thanks for your patience." The telegraph responded to the hack.

Chinese website of Bose Electronics(bose.cn) has been breached by the hacker known with handle "Ag3nt47".  He managed to gain access to the database server and extracted the data.

The hacker leaked the compromised database in AnonPaste : " http://www.anonpaste.me/anonpaste2/index.php?4cbad9f598e7d75a#77V8WGbQvLhhZZAHZC+Plj79CjDesej7kvzr/WQCmz4= "

The leaked contains the login credentials of admin account.  The password used by the admin apparently shows the admin are not aware of the security measures.

The leak also contains the address, mobile, name,  email address, and few other data.  Most of the data are in chinese language.

The same hacker recently break into the Harvad, MIT, Standford universities, Rutgers, Mazda and Suzuki.

Cybercriminals hacked into the Mumbai-based current account of the RPG Group of companies and stole Rs 2.4 crore within 3 hours on May 11, Times of India reported.

The TOI report says money has been transferred to 13 different bank accounts in Chennai, Coimbatore,Tirunelveli, Bangalore,Hyderabad and other places.

The bank blocked those accounts but the gang have already managed to withdraw some funds.

The police has arrested three members of the crew who came to withdraw the money in Coimbatore and Hyderabad.

It appears the Company fell victim when the company officials opened the malware attached mail sent by the gang.  The gang then probably harvested the bank login credentials using the malware.

Earlier this year, cyber criminals stole Rs 1 crore in Mulund from the current account of a cosmetics company.

The same group recently the hijacked the twitter accounts of Guardian, E! News, BBC, The Onion and Associated Press.

The hacker with twitter handle Ag3nt47 who hits top university websites has breached the Suzuki and Mazda Russia websites.

The hacker tweeted links to the dump.  The database dumped(pastebin.com/u01PitxP) from the Japanese automobiles manufacturer Suzuki includes password hashes, email addresses.

The data(pastebin.com/9hrwnmgC) taken from Russian website of the Japanese-based automobiles manufacturer Mazda contains no interesting data.

There is no specific reason mentioned by the Ag3nt47 for the attack.  It appears the hacker randomly target high profile website.

Saudi branch of Anonymous hacktivist has launched cyberattack on Saudi Government websites , the operation has been named as "#OpSaudi". Few government websites are facing heavy Distributed-denial-of-service(DDOS) attack from the Anonymous.

The affected government sites include Saudi Arabia and the Ministry of Foreign Affairs(mofa.gov.sa), The Ministry of Finance(mof.gov.sa), General Intelligence Presidency(gip.gov.sa ).


gosi.gov.sa, Riyadh Region Traffic(www.rt.gov.sa), hrc.gov.sa are also being targeted by the hackers.

The Anonymous saudi also claimed they have gained access to the server of Qassim Region Traffic website(q-t.gov.sa/h.asp) and deleted the database. 

General Directorate of Education in Jeddah website fell victim to the cyber attack.  Hackers identified and exploited the SQL Injection vulnerability in feenakhair.jedu.gov.sa.

Yes, it is Cyberspace, here no one can assure 100% Security but it doesn't mean that you can ignore the security holes.  Godzilla the hacker who breached the Pakistani Government websites few months ago has claimed to have identified multiple security flaws in EC-Council website(eccouncil.org).

EC Council is best known for its professional certifications for the IT security field, especially 'Certified Ethical Hacker(CEH)'.

The hacker claimed to have gained access to admin desk and accessed the course materials for CEHV8, CHFIV4, ECSS,ECSA_LPT4.

Talking to EHN, the hacker said "This could take a very deadly turn if played by the cyber terrorist.They are the same org who train DOD, CIA, NSA ,NASA etc."

"If a cyber terrorist infects this material with Trojans and malware the same content will be accessed by the defense people. And this is the easy way to enter into the network of defense. They should concentrate on security and in future should avoid such situation."

" Consider it as a security alarm for USA and Defence network, you will never know in cyber space who is knocking your door."

The hacker didn't mention the type of vulnerability that gave the access to these materials.  But it appears his motive is to create cyber security awareness.

*Update *

EC-Council responded to the hacking claim by saying the hacker obtained the files due to a "human error" that allowed "Directory viewing". 

"This configuration allows a visitor to view the contents of a web directory much like visiting a web page, however instead of a webpage, the user is able to see links to files in web directories."

" This was not a breach and no systems were affected. The files contained in the listed directories were encrypted binary .Resource files; primarily DRM (Digital Rights management) protected documents that EC-Council makes available for download to paying students and organizations globally and some other non confidential files that were already in public circulation. No sensitive data or personal information was compromised."

The Philippines cyber space is again facing another cyber war. Following the cyberattack from China, Malaysia hackers, now the Taiwan hackers have started the cyber war against Philippines.

The operation named #OpPhilippines has been launched by the Anonymous Taiwan. The attack comes after Philippine Coast Guard killed Taiwanese fisherman. EHN was notified about the cyberwar by pinoyhacknews.

"Philippine coastguard killed taiwanese unarmed fishermen is injustice and unforgivable. Philippine government protecting murders is unacceptable." The hackers posted in the pastebin. "You must apologize. Killers must be arrested immediately. Otherwise, we will not stop."

The hackers defaced the '.gov.ph' domain registry website(dns.gov.ph/opph.html). They also defaced one more government webstie "Advanced Science and Technology Institute(suppliers.asti.dost.gov.ph/opph.html)".

The hacktivist also leaked database from six different Government websites as part of the cyberwar. The links to the database dump is provided in a single paste(pastebin.com/sRykr2Wd).

The affected websites includes Department of Education of the Philippines(former.deped.gov.ph), onlineservices.ipophil.gov.ph, Provincial Government of Bulacan (bulacan.gov.ph), Philippine Public Safety College(ppsc.gov.ph),Province of Sulu(sulu.gov.ph). The leak contains username, email address and passwords.

The hackers also dumped(pastebin.com/D7gCEdS6) the database from the 'gov.ph' domain registry website that contains username and password details belong to all Government websites. It has more than 2300 entries.

We are in the Cyber world , here the robbers don't wear masks, use guns or even threatening bank tellers , they use laptop and internet instead.

An alleged international cyber criminals managed to steal $45 million from thousands of ATM's in matter of hours.

Their first operation started from India, the hackers were able to "infiltrate the system of an unnamed Indian credit-card processing company that handles Visa and MasterCard prepaid debit cards. "

In their first operation, the crews made 4,500 ATM transactions worldwide and stole $5million, according to New York Times report.

In the second operation, the crews made 36,000 transactions worldwide and stole about $40 million in approximately 10 hours. It included $2.4 million stolen by a team of eight people in New York City.

The seven of the eight suspected members of the New York crew have been arrested. The eighth, said to be the ringleader, was found dead on April 27 in the Dominican Republic.

A Hacker group called "Hack The Planet(HTP)" hacked into one of the top name registrar and web hosting company Name.com. According to Hacker News report, the Name.com was not specifically targeted, they just want to trace another hacker group causing trouble to HTP.

The Story goes like this: HTP realized another group impersonating ac1db1tch3z tried to cause trouble for HTP's botnet. HTP found out the group used an IRC channel hosted on SwiftIRC. If they could break into SwiftIRC which is hosted in Linode, they could cause all sorts of trouble for the impersonators.

To gain access to SwiftIRC , HTP decided to breach the Lionde. To breach Linode, HTP breached their domain name registrar name.com.

The rest of the story can be found here.

Name.com confirmed the security breach and started to send password-reset emails to customers.  Unfortunately, E Hacking News also received the password-reset mail :(

"Name.com recently discovered a security breach where customer account information including usernames, email addresses, and encrypted passwords and encrypted credit card account information may have been accessed by unauthorized individuals" The mail reads.

The Name.com claimed the have stored credit card info using strong encryption and  "the private keys required to access that information are stored physically in a separate remote location that was not compromised".

Fortunately, i never use my real credit card details in Internet( i know it is insecure medium).  I always generate a virtual credit card and use it , the feature provided by my Bank ;) And i never use the same password anywhere else.

*Security Tips*: Make sure to check the URL before clicking on the link provided in the email.  There are plenty of Hyena out there to take advantage of this security breach to send phishing emails. 

Their research reveals the Internet giant Google using Tridium Niagara for various Building Management Systems in their Google Wharf 7 building is also affected by this zero-day vulnerability.

Although Tridium has released a patch for the system, Google's fails to patch the vulnerability which allowed the researchers to access the config.bog file of Tridium device used by the Google.

The credentials stored in the config.bog file allowed them to get into the admin panel of the device.  The panel gave access to a variety of Building Management features including "Active Alamrs", "Active overrides", "Alarm console".

Researchers reported this issue to the Google Vulnerability Rewards Program (VRP).

The researchers stated more than 25,000 of building using the Tridium Niagara AX system that haven't patched the security hole are vulnerable to hack.

"If Google can fall victim to an ICS attack, anyone can." Researcher noted.

It seems like the Onion news organization will be the next victim of the Syrian Electronic Army's cyber attack on News organization. 

Few minutes ago, the Syrian Electronic Army(SEA) has provided a screenshot that shows they have gained accessed to the official twitter account.

Based on the screenshot provided by the hacker group, they have compromised the four onion's twitter accounts including @theonion,@OnionSports, @onionpolitics, @onionstroe and  @TheAVClub .

It seems like they have hacked the official facebook pages including The Onion and Online sports.

If i am not wrong, the SEA still have access to those twitter accounts because the tweets in the screenshot has been posted before 1 hour.

The screenshot tweeted by the hacker:

The hacker group specified they hacked this website in retaliation of attacks on people at MayDay.

"Hacked in retaliation of attack on people at MayDay and to commemorate revolutionaries Deniz. Yusuf, Huseyin hanged on 6th May 1972" the tweet posted by the hacker group reads.


Hacker posted a picture of the Istanbul Governor Hüseyin Avni Mutlu picture with the following message "I didn't say you can't be a Mayor, I said you can't be a man".(translated)

At the time of writing, the website seems to be restored by the administrator and back to normal.

An anonymous hacktivist with the handle CharafAnons has claimed to have hacked into more than 990 websites as part of the ongoing cyberattack operation "#OpUSA".

The list of hacked websites can be found here: "http://pastebin.com/UW3Pdqkn "  The hacker has uploaded the defacement page as "jihad.htm" file.

Another hacker group named  X-BLACKERZ INC has breached the official website of US Honolulu Police Department(honolulupd.org).  The hackers claimed to have compromised the database.


They leaked two database dumps that contains the name, email addresses and login credentials for mail account .

http://pastebin.com/NeDLRfg2
http://pastebin.com/QFjuEbNR

*Update*:
X-BLACKERZ INC has claimed to have breached 100 US websites as part of the operation USA.  The list can be found here: "http://pastebin.com/NyQ0gk7s"

The source says the hackers are going to attack the high profile websites of United States on May 7.  Hackers posted the list of target "http://pastebin.com/LXHKjsfg"

The official website of Rajasthan Public service commission(RPSC) was found to be hacked and defaced by the Pakistani hacker named "Codacker" with the message "Pakistan Zindabad".

The hacker placed two links in the News section that leads to the defacement page.  According to the TOI report, the website was restored by the admin and changed the password of the website.

"We also put the websites on surveillance and have reported to the IT ministry,"K K Pathak, secretary of RPSC told Times of India.

But it doesn't seem like they have fully restored the website.  At EHN, we are still able to see the defacement page uploaded at the "http://rpsc.rajasthan.gov.in/index.html".

"Codacker is here.  Hey Admin! I own you now.  Feel the wrath of Pakistani Hacker" the defacement message reads.

Changing the password alone won't help in stopping the hackers.  They should identify the vulnerability that allowed the hacker to breach the website and patch that vulnerability.

The Syrian Electronic army once again strikes another news organization. The Twitter account(Eonline) belong to the Entertainment news organization E! Online which had more than 5.2M followers was hacked by the SEA.

The hackers tweeted fake messages after hijacking the account.  "Exclusive: Justin Bieber to E!online: I'm a gay," reads the first fake tweets posted by SEA.

"E! News Breaking: Justin Bieber arrested in Dubai due to false tweets with him coming out situation developing" another tweet reads.

"This account @eonline was compromised and some incorrect information was sent out. " E! online confirmed the security breach. "We're working with Twitter now to fix this."

The hacker also managed to compromise the SMS service of E! Online and sent the above message as well as the following message "E! News Breaking: Fuck Barack Obama via Syrian Electronic Army"


"This message will reach 33,684 subscribers... From E!News SMS Service Control Panel" Hacker posted in their official twitter account.

Reputation.com , an online reputation management website lost their own reputation when a hacker invade their website and accessed the personal data of users.

Reputation.com on Tuesday sent an email to customers disclosing the security breach.  Reputation.com said in the mail that intruders had accessed the personal information including names, email , physical address, phone numbers, date of birth and occupational info.

On top of that, hackers had accessed the encrypted passwords of a small number of users. Reputation.com claimed that the passwords are highly encrypted(Hash+Salt) and "it was highly unlikely that these passwords could ever be decrypted".

One of the EHN's user commented on the issue "You fail at cryptology. The salt is stored with the hash. It doesn't add any strength to the individual hash's resistance to brute-force attacking, it only strengthens hashes from being attacked by pre-built rainbow tables.  Even if you used bcrypt with a cost of 16 and 128-bit /dev/random salts, all an attacker has to do is iterate the10,000 most common passwords and they'll hit 98% of internet users. "

However the company immediately reset the password to prevent unauthorized access.

Though the company claimed that hacker didn't access the financial information such as credit card numbers which they don't store, they are offering free credit monitoring for one year.

These security breaches are going to be next examples for the Government careless about the cyber security.  The hacker @WilyXem found two more Army websites are vulnerable to SQL Injection.

Brazilian Navy and Pakistan Army websites are found to be affected by the SQL Injection vulnerability.  The hacker tweeted few links that contains the proof-of-concepts(http://sprunge.us/ZUHM, sprunge.us/ZdKY, sprunge.us/CJGO)

The vulnerability exists in the Board of Historic & Documentation Navy(biblioteca.dphdm.mar.mil.br), Department of Distance Education(ead.densm.mar.mil.br) and Pakistan Army(www.pakistanarmy.gov.pk).

The POCs exposes the target database details including database name, database version and table details.

The same hacker yesterday hacked into the Royal Thai Navy website and leaked the login information from the database.

Cyber space poses an important role in the national security. A country should also remember to provide security in cyber space.   But the government fails to concentrate on cyber security that lefts most of the government sites vulnerable to hack.

The security breach of Royal Thai Navy website(www.navy.mi.th) is best example for this - the navy of Thailand and part of the Royal Thai Armed Forces.

A hacker with twitter handle @WilyXem has discovered a SQL Injection vulnerability in the Thailand navy website.   He managed to exploit the vulnerability and compromised the target database.

Earlier today, the hacker posted a link to the dump in twitter(sprunge.us/YHHf). The dump contains database details including database name, version, table details.  He also provided a Proof-of-Concept of the SQL injection vulnerability.

The hacker also leaked 3 tables namely membern, personalacc, personalacc1 that contains username and passwords in plain-text format.

It is really sad to know that the passwords are being stored in plain-text format. But it won't take much time for a hacker to crack, even if there is an encryption.  Because they use very weak password.