OS X Lion bugs : change local user passwords

The latest version of OS X Lion allows any user to easily change the password of any local account, due to permissions oversights on Apple's part. The news comes less than a month after another Lion vulnerability that let users bypass LDAP without a password gained notoriety.

Originally reported by Defence in Depth blogger Patrick Dunstan, the root of the newly discovered problem in Mac OS X 10.7 is tied to the user-specific shadow files used in modern OS X platforms. These files are essentially hash databases and contain, among other things, the user's encrypted passwords. Ideally, they should be accessible only via high-privilege accounts.

According to Dunstan, Apple dropped the ball in terms of how Lion handles privilege. "Whilst non-root users are unable to access the shadow files directly, Lion actually provides non-root users the ability to still view password hash data," Dunstan wrote. "This is accomplished by extracting the data straight from Directory Services."

Any user can accomplish this trick by simply invoking the directory services listing using the /Search/ path -- for example, $ dscl localhost -read /Search/Users/bob (where "bob" is the username). This causes Lion OS X to spew out the contents of Bob's shadow hash file, including data that can be used to crack Bob's password with a simple script, such as a Python script written by Dunstan.

Making matters worse, running such a script wouldn't necessarily be required to gain access to Bob's account. Using Directory Services, a user could change a logged-in user's password -- without requiring authentication -- using this command: $ dscl localhost -passwd /Search/Users/bob

Notably, the targeted user's account could just as easily include admin privileges.

In order to pull off this hack, the perpetrator would require local access, though an outsider using social engineering could dupe a user to surrender the information. Additionally, a malicious insider could use his or existing information and wreak havoc if an admin left a machine without first logging out. Further, the user would need to access Lion's Directory Services -- another feat that would not be overly difficult in an environment with relatively lackluster security.

MacFixIt blogger Topher Kessler offered advice on how organizations can avoid being subject to these vulnerabilities. They include disabling automatic log-ins in Mac OS X; enabling sleep and screensaver passwords; disabling guest accounts (as well as accounts not in use); and better managing user privileges, such as allowing no greater permissions than necessary.

Read More

Hackers Says : Facebook tracking your cookies even after logout

According to Australian technologist Nik Cubrilovic: 'Logging out of Facebook is not enough.' He added, Even after you are logged out, Facebook is able to track your browser's page every time you visit a website. He wrote in his blog 'With my browser logged out of Facebook, whenever I visit any page with a Facebook like button, or share button, or any other widget, the information, including my account ID, is still being sent to Facebook.'

After explaining the cookies behavior he also suggested a way to fix the tracking problem: 'The only solution to Facebook not knowing who you are is to delete all Facebook cookies.'
Give firefox addon for auto delete FB cookies after logging out.

Read More

DEFCON.ORG - World's Largest Hacker Conference - DNSi Brute Dump Leaked by Anonymous LK

DEFCON.ORG - World's Largest Hacker Conference - DNSi Brute Dump Leaked by Anonymous SRI LANKA


DEF CON (also written as DEFCON or Defcon) is one of the world's largest annual hacker conventions, held every year in Las Vegas, Nevada. Started in 1992 by the Dark Tangent, DEFCON is the world's longest running and largest underground hacking conference. Hackers, corporate IT professionals...

http://en.wikipedia.org/wiki/DEF_CON
http://www.defcon.org/

THIS ATTACK AGAINST THE EXTREME HACKERS TO CHALLENGE THEIR SECURITY.....!!!!!

EXCLUSIVE FROM - Anonymous Sri Lanka

DEFCON.ORG -----> DNS Fuck3D and Bust3D

Primary DNS Server Hacked with DNS BruteForce FQDN and
with Transferring (Data Leak)....!!

Hail to Anonymous, Lulzsec and Operation Anti-Sec...

defcon.org
DNS Servers for defcon.org:
dns-2.datamerica.com
dns-1.datamerica.com

Trying zone transfer first...
Testing dns-2.datamerica.com
Request timed out or transfer not allowed.
Testing dns-1.datamerica.com
Request timed out or transfer not allowed.

DNS BruteForce Here....

173.14.243.228 www.defcon.org
173.14.243.230 forum.defcon.org
173.14.243.231 pics.defcon.org
173.14.243.233 tor.defcon.org <----------- This seems to be very interesting..
173.14.243.236 p2p.defcon.org
216.222.83.157 me.defcon.org
66.240.206.93 media.defcon.org
216.222.83.155 updates.defcon.org

Subnets found (may want to probe here using nmap or unicornscan):
173.14.243.0-255 : 5 hostnames found.
216.222.83.0-255 : 2 hostnames found.
66.240.206.0-255 : 1 hostnames found.

Read More

PlusClout Brings Clout Score To Google+

Yes I meant Clout, not Klout! The makers of FindPeopleOnPlus.com have launchedPlusClout, a service that measures social influence on Google+. The site borrows the idea from Klout and adapts it to Google+. The site takes into consideration data from FindPeopleOnPlus.com to arrive at the score. With 15 million public Google+ profiles and items shared (posts, comments, +1′s etc.), PlusClout uses numerous public variables like number of followers, frequency and volume of information sharing etc. Mix in some mathematics and you have a PlusClout score.

So, who are the most influential people on Google+? No surprises, they are all geeks! Marissa Mayer(Google), Kevin Rose (Square), Vic Gundotra(Google), Guy Kawasaki(AllTop) and Robert Scoble(Rackspace) have made it to the list with a score of 95+.

Joining the ranks at the bottom of the table is none other than Facebook founder Mark Zuckerberg with a score of “0″. Its evident from his Google+ profile that he joined Google+ out of curiosity and with no posts till date, a score of zero seems fair.

Read More

Are Social Networking Teens More Apt to Smoke, Drink and Use Drugs?

8
inShare

With kids back in or in the process the next few weeks of returning to school, a new report out from the National Center on Addiction and Substance Abuse (CASA) at New York’s Columbia University certainly must have some parents a little edgy.

According to the CASA survey, American teens of middle and high school age are more apt to engage in smoking, drinking and using drugs should they also be surfing social networking sites. The two social networking sites which received the most attention were Facebook and MySpace.

The study points out that teenagers devoting any time at all to social networking sites were a whopping five times more inclined to light up a cigarette, three times more likely to consume alcohol and twice as apt to include marijuana in their daily lives.

Proof is in the Pictures

Among some other tidbits from the survey of 12-to-17-year-olds:

• 70 percent of surveyed teenagers admit to using social media sites;
• 40 percent of all teenagers have viewed pictures on those sites of kids engaging in alcohol or drug usage – half of those individuals were not yet teens – they were 12 or younger;
• Exposure to the above-mentioned images appears to lead to greater usage of alcohol and marijuana.

One of the chief recommendations in the report is having social networking sites such as Facebook employing more technological expertise to reducing such images, along with denying access to children and teens who post such pictures.

While survey officials would not come out and say social media exacerbates the problem, it certainly does not help it.

Even though social media is still in its infancy stages, this most recent survey bears noting that both parents and their kids need to come to an agreement on how best to use social networking sites.

A 2009 report looking at similar issues noted that more than 1 out of every 10 teenagers has gone online to post a nude or seminude picture of themselves or others.

The report from Common Sense Media also pointed out that 22 percent of teens report they view their social networking sites more than 10 times daily.

Paying the Price down the Road

Along with the reported risks now for many teens that use social networking sites, there are potential negative implications down the road too.

Teenagers using different social media sites run the risk of posting images or comments that will impact them when it comes to trying to get into college, the military or even obtaining a part-time job.

Among the areas where a social media posting could wind up hurting a teen is:

• College admissions – A 2008 Kaplan report claims one in 10 college admissions officials regularly reviews college applicants’ Facebook and MySpace pages, with nearly 40 percent of them discovering posts and images that portray students in a negative manner;
• Business and medical schools – Admissions officers for both business and medical schools also regularly view sites such as Facebook to check up on prospective students;
• Child porn – While we all know the dangers teens place themselves in by posting explicit photos or language to strangers on social networking sites, they can also put themselves in legal jeopardy. Posting or transporting photos of oneself or friends in scanty clothing or sexually suggestive poses is risky, especially if any of the individuals posing are under 18, given the end result could be child pornography charges. It’s one case to be charged with sending or obtaining child pornography as a minor, however those charges in adult court could carry not only prison time, but a lifetime of sex offender registry.

As you can see, there is much that can go wrong when teens take to social media sites.

Used properly, social media sites can serve as educational tools in helping brings events into the lives of teens that may otherwise miss out on such information.

Used improperly, social media can leave many teens facing more than just being grounded.

Read More

Mibbit Server Compromised

Last day i had posted about Mibbit Hack . The Mibbit had detected the unauthorized access to the server which runs their blog. The Mibbit had opened a new blog at Blogger  .In response to this Mibbit shut it down and began investigating . Later today at around 8pm GMT Mibbit shutdown the IRC services after it became clear that several pieces of backed up data had been accessed maliciously from another server, tools.mibbit.com. Mibbit now know the data's  included The personal information of 9 Mibbit operators including their names, accounts and e-mail addresses . A backup of nickserv data from April 2011 with up to 10,000 user nicknames and their credentials andTwo sets of backup data for one operator user account PMs and Channel logs, used for testing are Leaked. Currently Mibbit are working on securing and restoring the affected services.  Mibbit are treating this as a significant and malicious attack on Mibbit services which impacts  users and which has placed user data at risk.  Mibbit are continuing to work to remedy this situation and bring back affected services online as quickly as possible.  Mibbit asked apologies for the disruption, inconvenience and difficulty this attack has caused to you and your users. As Mibbit have updates about the attack, the backup data which was stolen from tools.mibbit and the next steps to recover services we will share it via the blog and the #help channel.

Read More

Lulzsec and Anonymous Hackers leak over 10GB of Law Enforcement Agency Details

The Contents of Leaked Data

• Over 300 mail accounts from 56 law enforcement domains
• Missouri Sheriff account dump (mosheriffs.com)
• 7000+ usernames, passwords, home addresses, phones and SSNs
•  Online Police Training Academy files PDFs, videos, HTML files
• “Report a Crime” snitch list compilation (60+ entries)
• Plesk plaintext server passwords (ftp/ssh, email, cpanel, protected dirs)

All leaked information can be Find at https://vv7pabmmyr2vnflf.tor2web.org/

Read More

Facebook's founder Mark Zuckerberg's sister to start own social media firm

NEW YORK: Facebook's director of marketing Randi Zuckerberg, sister of the social network's billionaire founder Mark Zuckerberg, is leaving her brother's company to start her own social media consulting firm.

Randi, who has been with Facebook for the last six years, said she feels it is the "perfect time" to move outside of Facebook to build a company focused on the "exciting trends underway in the media industry."

"I have decided my time at Facebook is coming to a close. When I think about the projects I am most proud of during my six years at the company, they all have one thing in common -- they revolve around the intersection of traditional media and social technology," she said.

Facebook confirmed the departure and in a statement said, "We can confirm Randi has decided to leave Facebook to start her own company. We are all grateful for her important service."

However, there was no direct comment from her brother. Randi plans to start her social media consulting firm 'RtoZ Media'.

"My goal is to launch my own innovative programming and work with media companies to develop their programming in new and more social ways. In attacking this challenge, Facebook will clearly be a central element in all of my projects," she said adding that she hopes to continue advising Facebook on media projects.

According to her resignation letter posted on the website 'AllThingsD', Randi said she has focussed on innovating and pushing the media industry forward by introducing new concepts around live, social, participatory viewing.

"We have made incredible progress, but there is still much to be done and other ways I can affect change."

A prominent name in Silicon Valley, Randi has been on maternity leave for the last three months. She was recently nominated for an Emmy award in the category of live coverage of a current news event for her work on 'Facebook Live', a real-time news show she created and hosted for the company.

Read More

Chinese hackers take on the world . Campaign hits 72 organisations

Insecurity experts at the anti-virus outfit McAfee said that they have discovered the world's biggest series of cyber attacks.The attacks have seen the infiltration of the networks of 72 organisations including the United Nations, governments and companies worldwide.McAfee believes that there was one "state actor" behind the attacks. It did not name it but it appears to be talking about China.What McAfee has discovered is a five-year campaign against the United States, Taiwan, India, South Korea, Vietnam and Canada; the Association of Southeast Asian Nations (ASEAN); the International Olympic Committee (IOC); the World Anti-Doping Agency; and shedloads of companies ranging from defence contractors to high-tech enterprises.
Hackers broke into the computer system of the UN Secretariat in Geneva in 2008, and hid there unnoticed for nearly two years. Shedloads of secret data wrtr sent to China before the attack was noticed.
McAfee's vice president of threat research, Dmitri Alperovitch, wrote in a 14-page report that he was stunned by the diversity of the victim organisations and taken aback by the audacity of the perpetrators.
It is not clear what is happening to all the data. Some of it might be being used to build better products or beat a competitor at a key negotiation. But the data loss represents a massive economic threat, Alperovitch warned.McAfee first found evidence of the hacking campaign in March, when its researchers discovered logs of the attacks while reviewing the contents of a "command and control" server that they had discovered in 2009.
The attacks have been dubbed "Operation Shady RAT", although we would have thought Chinese Takeaway would have been better. The earliest breaches date back to mid-2006, though there might have been other intrusions as yet undetected.
The longest attack was on the Olympic Committee of an unidentified Asian nation which lasted for 28 months, McAfee said.
Alperovitch told Reuters  that this is the biggest transfer of wealth in terms of intellectual property in history. He said that the scale at which this is occurring is frightening. Jim Lewis, a cyber expert with the Center for Strategic and International Studies,said that it was likely that China was behind the campaign because some of the targets had information that would be of particular interest to Beijing.
While the US and Britain have capabilities to pull off this kind of campaign, they would not  spy on each other. 

Read More

New Operation By Anonymous & Lulsec #FreeTopiary

Two Days before Accused LulzSec Hacker "Topiary" had arrested and today he released on bail. Jake Davis, an 18-year-old from the Shetland Islands, He was released on bail after being charged with five offences relating to computer attacks and break-ins by the LulzSec and Anonymous hacking groups.Today all Anonymous and Lulzsec hackers stand together once again with a new operation #FreeTopiary on Twitter. Anonymous Call everyone for Show their support to @atopiary on IRC Chat. Anonymous also call for Anonymous Legal Help also.

Read More