Code104 News

Link Exchange with our Forum | Code104.net

2012-07-02T22:23:00.000-07:00

Our Forum - http://code104.net/

For Link Exchange E-mail us @ news.code104@gmail.com

Thank your for your interest..

[Giveaway] Get a Free Cloud VPS Hosting with root user! [Valid till 30th of May]

2012-05-15T01:59:00.001-07:00

We are noticing that many people run their websites on free virtual servers with limited resources ! Code104 contributed for all of our visitors and we are finally giving away free VPS with root user to our lucky winner ;)

Below are some specs of VPS :-
Disk Space- 10GB
Bandwidth- Unlimited
Ram- 128MB

Below are the Steps to get this VPS for free:-
1) Share this blog post on facebook !
2) Tweet about this blog post on twitter !
3) Comment below with link of your tweets and shares !

That's it ! We will randomly choose our lucky winner who will get a free VPS hosting !
Note: You can participate in this giveaway till 30th of may. Our Lucky winner will be declared on 1st of June !

~Best of Luck From team Code104

Facebook Offers free Antivirus Service to protect their users at AV Market Place

2012-04-25T20:13:00.000-07:00

The social networking giant, Facebook announced its partnership with a number of security vendors to protect its users from spam and malicious content.

Facebook teams up with Microsoft, McAfee, TrendMicro, Sophos, and Symantec and launched the Antivirus Marketplace where facebook users can download Antivirus softwares for free.

The Antivirus Marketplace offers the following software for download: McAfee Internet Security (PC), Microsoft Security Essentials (PC), Norton Antivirus (PC and Mac), Trend Micro (PC and Mac), and Sophos Antivirus (Mac). Six months of free updates are included with each download, but users are limited to just one free antivirus application per Facebook account.

Download your favorite Antivirus software for free of cost from here:
http://on.fb.me/FBAVMarketplace

We are thankful to Facebook for providing protection against spam and malwares.

VMWare Source Code Leaked by Anonymous Hackers

2012-04-25T01:35:00.000-07:00

VMware on Tuesday announced that a single file from its ESX server hypervisor source code has been posted online, and it held out the possibility that more proprietary files could be leaked in the future. "The fact that the source code may have been publicly shared does not necessarily mean that there is any increased risk to VMware customers," VMware said in a statement.

"Hardcore Charlie" - who claims to have downloaded some 300 Megabytes of VMWare source code.

Anonymous tweeted:

@AnonymousIRC: Oops, VMWare source leaked? Not good http://pastebin.com/JGxdK6vw to Anonymous contributors. May the Pirate Bay always sail strong!

The leaked documents include what appear to be internal VMWare communications, pasted onto CEIEC letterhead and with official looking stamps. One email exchange, dated June 5, 2003 is from Jeffrey Sheldon to an internal VMWare listserv and has the subject "code review:untruncating segments.

Given the large number of service providers that run vSphere, security issues in ESX could potentially have a broad and widespread impact, according to security researchers. VMware says it is looking into the matter and will be canvassing its industry partners and developers in order to determine the source of the breach.

Nirmal Baba's Website Hacked by League of Assassins [Code104]

2012-04-24T07:27:00.000-07:00

We haven't posted any news on our blog for a long time, Blog was also down due to some problems faced by the members of Code104, inconvenience is regretted !

Today Dark knights The Black Hat Souls aka League of Assassins Hacked biggest Indian fraud known as Nirmal Baba, Website got defaced and database is dumped ! Hackers from League of Assassins [Code104] also mention that Nirmal Baba's website is only hacked due to misguiding innocent people and making fool of them !
Below are the details of this hack:
Defaced Page:http://nirmalbaba.me/volunteer/admin/admin/volunimage.php?id=4443
Cause Of This Hack:Misguiding Innocent People and making fool of them !

Code104 Team:
GoldenBoy,CyberAce,gh0st,PH4N70M C0D3R,Akfortyseven,Vanish3r,mr.tr0jan,-[D4RK CRYST4L]-,Evil L0rd,Mysterious,Mauritania Attacker,Mack aka Mayank,Local r00t,LION HEART,Back End,theCr1m1n4L

Greetz to: All Indian hackers

Bangladeshi NewsPaper Sites Are Vulnerable to XSS

2012-04-06T08:03:00.002-07:00

Following bangladeshi newspaper sites are found to vulnerable on testing and admins are reported about this::

BDNEWS24
THE DAILY STAR
http://www.dailykalerkantho.com
http://www.mzamin.com

Another site vulnerable to blind sqli is :

www.islamictv.com.bd

3 Websites Defaced by Sen Indishell

2012-02-07T03:59:00.000-08:00

3 Website got defaced by Sen from Indishell [Indian Cyber Army]. After a big span of time a hacker named "SEN" from Indishell hacked some websites. As we know that we are too busy these days so i am posting this news after a long period !

Code104 is busy making some personal Projects!

Here are the details of this defacement :-

Website :- http://sexawek.com
Mirror :- http://legend-h.org/mirror/404283/sexawek.com/xmlrpc.php

Website :- http://latesthacker.com/
Mirror :- http://legend-h.org/mirror/403220/latesthacker.com/wp-content/

Website:- http://telecomtricks.com/
Mirror :- http://legend-h.org/mirror/403138/telecomtricks.com/wp-content/

Check out more defacements by Indishell here :- http://code104.blogspot.in/search/label/IndiShell

Embassy of Kazakhstan hacked by Anonymous Supporters

2012-01-30T02:03:00.000-08:00

The official website of Embassy of Kazakhstan in Delhi having SQL injection Vulnerability, and Hacker with codename - Abs0luti0n has successfully Extract the database tables info and leak it on a pastebin note including Admin's Username and Password.

Hacker said,"Lately we have been experimenting on some new large targets which will be unveiled soon. However today while we were cruising around in our lulzmobile,we set sights momentarily on another outdated weak vehicle and with great ease put the pedal to the metal, ran all the lights and flew straight through our accquired target."

SQL Injection is a type of web application security vulnerability in which an attacker is able to submit a database SQL command which is executed by a web application, exposing the back-end database. Attackers utilize this vulnerability by providing specially crafted input data to the SQL interpreter in such a manner that the interpreter is not able to distinguish between the intended commands and the attacker’s specially crafted data. The interpreter is tricked into executing unintended commands.

SQL injection can be prevented if you adopt an input validation technique in which user input is authenticated against a set of defined rules for length, type, and syntax and also against business rules.

SQli Vulnerability found in New York State Senate Official Site

2012-01-29T06:02:00.000-08:00

Few days ago Sec Indi Security Team exposed a Cross-site request forgery (CSRF) vulnerability in wikileaks website. Again they have found SQL-i on the official website of New York State Senate. Earlier this group have also detected SQL-i vulnerability on the official website of US Senate, also they have hacked the Admin panel of famous Indian website click India. The vulnerability on the NY State Senate is still UN-patched. According to the hackers group - an attack can easily misuse this security flaws and can gain illegal access on the database of the NY Sate Senate.

Proof Of Concept :-
http://www.nysenate.gov/committee/administrative_regulations_review_commission_%28arrc%29/updates/feed?type=%27legislation

Universal Music Portugal Hacked and Database Dumped

2012-01-28T21:50:00.000-08:00

Another Latest Tip come in my Inbox today about the leak of Database of Universal Music Portugal's website. Hacker did not mention his name,or Codename, But he enumerate the Database and Extract it by Hacking the Site.

100's of Tables from Database and Users Data has been leaked via a pastebin File. It includes the Usernames, Passwords and Emails ID's of Users of Site.

Immediate after the Hack, The Universal Group taken down the site for maintenance.

FBI will Monitor Social Media using Crawl Application

2012-01-28T21:44:00.000-08:00

The Federal Bureau of Investigation is looking for a better way to spy on Facebook and Twitter users. The Bureau is asking companies to build software that can effectively scan social media online for significant words, phrases and behavior so that agents can respond.A paper posted on the FBI website asks for companies to build programs that will map sentiment and wrongdoing.

“The application must be infinitely flexible and have the ability to adapt quickly to changing threats to maintain the strategic and tactical advantage,” the Request for Information said, “The purpose of this effort is to meet the outlined objectives…for the enhancement [of] FBI SOIC’s overall situation awareness and improved strategic decision making.”The tool would be used in “reconnaisance and surveillance missions, National Special Security Events (NSS) planning, NSSE operations, SOIC operations, counter intelligence, terrorism, and more.

Although the police, including in Britain, already use Facebook routinely to ascertain the whereabouts of criminals, automatically filtering out irrelevant information remains challenging. The new FBI application will be able to automatically highlight the most relevant information. The FBI is seeking responses by 10 February.

XSS Vulnerability in Bloggers.com

2012-01-28T21:41:00.000-08:00

Hacker Group "GodOfHackers" discovered XSS[Cross site scripting] security flaw in one of high profile site bloggers.com. Bloggers.com is one of best bloggers community , it will help to know the best bloggers around the world, discover them and connect yourself with this friendly bloggers community. It has Alexa Rank 3,519.

Vulnerability Details:

    Type: Non-Persistent XSS
    Alert-Level: Medium
    Author: GodOfHackers
    Vulnerable Link: http://bloggers.com/topics/

Proof of Concept :-
http://bloggers.com/topics/%3Cscript%3Ealert%28%22XSS+By+GOH%22%29%3C%2Fscript%3E

Anonymous threatened to Shutdown CNN.com - #OpDebateBlackout

2012-01-28T03:49:00.000-08:00

The protest against Internet censorship by Anonymous continues. Now they have called another operation named #OpDebateBlackout. According to a YouTube video Anon vows to shutdown famous media CNN during yesterday night debate.
Anon said:-

"Shut down CNN.com during the Florida debate. In response to the establishment media blackout of Ron Paul, and specifically to the lack of equal time given to him in the debates, we the people will be blacking out the responses of all candidates except Ron Paul in the upcoming CNN debate in Jacksonville Florida on Thursday, January 26 at 8PM eastern standard time. This is a call to all who are willing and able to join this effort to show the establishment media that we will not tolerate the continued media blackout of Ron Paul, and that we will, in return, shut down the cnn website and their live stream of the debate."

Video Released by Anonymous :-

Earlier for #SOPAblackout issue anon has performed massive cyber attack. And also for #OpMegaupload they have bring down Federal Authorities, US Govt, Brazil Govt, Ireland's Dept of Finance & Justice, CBS TV Network, UFC.com and many more. We would also like to give you reminder that this is not the first time earlier Anon also threatened another media (FOX News) in the #OpFoxHunt.

XSS Vulnerability found in Photobucket

2012-01-28T03:41:00.000-08:00

XSS [cross site scripting] vulnerability found in photobucket.com by God Of Hackers the Hacker group n0caReTeAm also found a xss vulnerability in photobucket.com . It seems to be two vulnerabilities are same

Here is the vulnerable link found by GodofHackers:
http://media.photobucket.com/image/hacker/ahsanulkarim/Tech%20Zons/wordpress-hacked-290x160.jpg?o=%22%3E%3Cscript%3Ealert%28%22XSS%20By%20GOH%22%29%3C/script%3E

20 Pakistani Websites Hacked by Jaguar

2012-01-26T00:39:00.000-08:00

An Indian hacker Jaguar Hacked 20 pakistani websites For celebreating Indian Republic Day,an another Indian hackers Team "Team Nuts" hacked 24 pakistani websites on republic day, check it here

Hacked websites :

http://pakistannuclearweapons.com/
http://www.masterpaints.com.pk/
http://genie.com.pk/
http://www.ilhtpakistan.com/
http://www.hairtransplantpakistanblog.com/
http://business.org.pk/
http://equranpk.com/
http://www.swopk.org/
http://www.paklinenco.com/
http://www.royalz.pk/
http://healthnetpk.com/
http://swats.org.pk/
http://cleanmax.com.pk/
http://www.pakcafe.net/
http://www.pakelevator.com/
http://pakcollection.com/
http://alawan.com.pk/
http://www.artpk.org/
http://www.lbc.org.pk/
http://www.songspklive.com/

24 Pakistani Websites hacked by Team Nuts [Indian hackers]

2012-01-26T00:34:00.001-08:00

Team Nuts Back Again, 24 pakistani websites Hacked by Team NUTS on Indian Republic Day

Thier Message on deface Page :

This Hack is A tribute to The Hero's of 26/11 Who Laid their precious life for the country people HeY ! PoRkIeZ 26/11 - SoMe pAkIsTaNI Dogs,PiGs AttAcKed TaJ Hotel Now we are back with your D grade Sites.... Revenge is Revenge ..... We were quiet not defacing site soMe motherfucking LAME pakistani ooops Porkistani made us to do this mishap Why dont you Guys Understnd y0ur Countries FutuRe is in trouble aNd Bc0z of some Idiot Pakistanis whole Pakistan is being given Bad words.....
JAI HIND

Ghana Bank Websites hacked and Database leaked by SEPO

2012-01-26T00:33:00.000-08:00

Hacker anon_4freedom continue their cyber attack on Ghana ,recently they break into the Commercial Bank of Ethiopia website and leaked the database. He focused on Ghana's bank website , for the last four days he hacked around five bank websites. Also he hacked FidelityBank Ghana, UT Bank and dumped the database in his own blog.

"It is very important, becouse other admins read all of this and they understand that everything in the internet can be hacked" Hacker said

The following bank sites are hacked:
http://www.utbankghana.com/
http://www.combanketh.com/
http://www.fidelitybank.com.gh/

The dumped database belong to Commercial Bank of Ethiopia contains the username, encrypted password ,email id and user role.

The dumped database belong to UT Bank contains the the admin userid, encrypted password and email id .

The dumped database belong to UT Bank contains the user countr, phone number and other details.

The Commercial Bank of Ethiopia (CBE) is the largest commercial bank in Ethiopia and had about Birr 73.7 billion (US$4.45 billion), in assets at the end of June 2010. At the time, the bank held approximately 63.5% of deposits and about 38% of all bank loans in the country. The bank has about 9, 000 employees who staff the headquarters and 301 branches positioned in the main cities and regional towns, including 45 branches in Addis Ababa. CBE recently opened new branches in the remote towns of Injibara and Humera.

UT Bank Ghana Limited, commonly known as UT Bank (UTB), is a commercial bank inGhana. As of February 2011, the bank is one of twenty-seven (27) licensed commercial banks in Ghana.
UTB is a medium-sized financial services provider headquartered in Ghana with subsidiaries inwest Africa and Western Europe. The bank's total assets in December 2009 were valued at nearly US$140 million, with shareholders' equity of approximately US$15 million.

Happy Republic Day

2012-01-25T21:24:00.000-08:00

HAPPY REPUBLIC DAY

Code 104 Wishes you a very very Happy Republic Day to all the Indians and Indian haxors ! Enjoy this day with your friends and family.

The 26th of January was chosen to honour the memory of the declaration of independence of 1930.

History :-

Although India obtained its independence on 15 August 1947, it did not yet have a permanent constitution.
While India's Independence Day celebrates its freedom from British Rule, the Republic Day celebrates the coming into force of its constitution..... [READ MORE]

We know everyone knows the history !

Be ready for best news from Indishell and other Indian Groups !

#OPMegaupload - OnGuardOnline.gov Hacked by Antisec

2012-01-25T04:15:00.000-08:00

Hackers under auspices of the AntiSec group claimed responsibility for hacking OnGuardOnline.gov, the U.S. federal government's online security website, in protest of various internet-related legislation including ACTA, SOPA and PIPA. OnGuardOnline.gov is managed by the U.S. Federal Trade Commission (FTC) in cooperation with 14 other agencies.
In a message left on the OnGuardOnline website and on Pastebin, hackers threatened to continue "a relentless war against the corporate internet", and promised to destroy "dozens upon dozens" of government and corporate websites, if the aforementioned legislation are made into law.
Much like Anonymous’s actions against Polish government websites hacked over the weekend, the group promised to release sensitive data including emails, passwords, bank accounts, and other information from hacked websites.
"We are sitting on hundreds of rooted servers getting ready to drop all your mysql dumps and mail spools," the Anonymous-affiliated hacker group said.
The FTC did not comment on the attack.

Website :- http://onguardonline.gov/

Imagedoll.com Hacked & 1300 + User info leaked by aKfortyseven

2012-01-24T08:45:00.000-08:00

After Many days Indian hacker named akfortyseven from League of Assassins [Code104] pawned a website and leaked more than 1300 user data of website ! This effected the users also ! , passwords that are leaked from Imagedoll.com might be similar to the passwords of their other accounts on Facebook, G-mail etc. !We can say that From 1300 users almost 40% of them have the same passwords !

Hacker says that he leaked the passwords using SQLi Vulnerability he found in that website.

Imagedoll is a Image hosting website used by many users to upload images, and its having a Alexa World Wide Rank is 610,758 & Google Pagerank -2 . It is a High profile website.

He leaked user details in a pastehtml release !
Here it is :- http://pastehtml.com/view/bltmj993d.html

Team Grey Hat Exposed - The IIS Exploit Team

2012-01-24T05:50:00.000-08:00

For the Sake of the whole Hacker's world and cyber world ~ I am publishing this article !

Title : Team Grey Hat Exposed

What was In?

Lamers[TGH] Exposed !! sO called Lamers group is now Exposed !.. now i will show you the reality behind the so called Hackers Team Grey (gay:P) Hat . So what exactly is this team ? nothing but just an IIS Exploit team :P haha yeah !.. this team is all about IIS Exploit & Story makers :D (good3y :P) .

so first let me tell you that how united they were fucked :D . i mean Hacked . Their Forum was hacked by Hunt008 team member of TGH . hahaha avik sarkar posted a news saying how hunt fooled them :P but my dear avik hacking is hacking you were social engineered by him ..its also a part of hacking buddy !

Image 1 ~ TGH Exposed

Wo0o0o0O0O0opss....Just read whats written in the image [Image 1] by avik sarkar - " One of the Most popular Hacker Group " hahahaha avik bro are you sure about this?? fuck yeah ! "TGH is Regarded as one of the most dangerous Black Hat Team if we dig in History " No need to dig deep in the History Avik !! Dont Froget Its a New Team Brother ! .. Just watch the present :D How your Forum was Fucked easily without any Hardwork' & How your Good3y Exploit was Exposed :D :* !

So now i would likle to talk about the good3y Exploit which Hacked HCA :D haha . Formed a new team ? Not getting Traffic ? Not much Popular ? yeah then got an !dea !! to fool us ? made a Fake Exploit & spreaded it among the people ? hah atlast you were cought lamers :P A fucking Fake Exploit caught by a member of HCA :P .

Image 2 ~ TGH Exposed

Yeah so now i would speak about The TGH Lamers2 that is Skywalker :* . Hhahaha he himself claims to be a Dangerous hacker :p haha but its not like that . He is just a No0b Hacker who knows "IIS EXPLOIT" . I will show you some Picz showing the Hacks done By The No0B master Skywalker !.

Image 3 ~ TGH Exposed

Image 4 ~ TGH Exposed

Team Grey Hat is just about popularity .. Hhahah see this too :p they hacked "one" site with IIS Eploit :P & they want this to be posted as news in many sites .

Image 5 ~ TGH Exposed

O0o0o0o00opss....It seems Skywalker doesn't know how to Upload his Deface in a Hacked Site :p Dont worry my dear Skywalker I wil teach you .. Just Contact me - Yourteam@Exposed :D Hey By the way how you Hacked that site :/ ... ummm let me tell all that this fucking site is hacked by a fucking perason with a fucking upload vulnerability :D ... good it reflects your Hacking Skills :) :P See the Image[Image6] Guys!

Image 6 ~ TGH Exposed

Avik Buddy Very strange You hack websites & post it in your own website :P ( Apni Tarif Khud hi ?? ) hahah lolx .. See TGH the so called Dangerous Hacker group :P Hacked 200+ China Sites :o .. Dear Avik even a small kid can hack 1000+ china sites by that Fucking IIS Exploit :D !! .

Image 7 ~ TGH Exposed

YEah Avik sarkar when your Good3y Exploit was caught then everyone was blaming you :p Then you said to some HCA Members & Other person that you dont belong to TGH ..according to you VOGH has no relation with TGH .... haha so wtf is this image[Image 8] saying :/ ... Izzat bachane ke liye kitna jhute bolega re :P

Image 8 ~ TGH Exposed

There is much to Expose but i dont have much time so i would just expose some of the members of TGH :D
Rj Raja HaXor:- Well i dont think you know him :p he is a member of TGH With lots of hacking Skills :D i will show you wait just see the Pic[Image 9] Below .. Even Google says about his Hacking !!! hahah ..

Image 9 ~ TGH Exposed

Abdullah Khwaja:- He is again a lamer of TGH who loves to Hack sites to IIS Exploit & Making Cyber army :D yeah !! haha ye is also the Founder of Kashmir Cyber Army :P haha No0b first learn Hacking Then Make your Fucking Hacking Cyber Groups :p here are some Beautiful Hacks by him [Image 10] ..

Image 10 ~ TGH Exposed

P4k-Commander:- He claims to be Commander of Pakistan hahahahhahaha Fucker Lamer you are one of the big no0b i have seen haha you too a IIS Cyber Army member :p OMG !! you hacked this many sites :p haha but with IIS :P 7 you wany people to find you hehe ....guys see this pic[Image 11] you will come to know..that how lame he & TGH is :P

Image 11 ~ TGH Exposed

  OK mY Time is Up !! :D Jai Hind !

Link to the page: http://www.zone-h.org/mirror/id/16736617

Original post published on : http://www.maurihackers.info/2012/01/team-grey-hat-exposed.html

Tor Vulnerable to Remote arbitrary code Execution

2012-01-24T04:12:00.000-08:00

According to latest post of Gentoo Linux Security Advisory, There are multiple vulnerabilities have been found in TOR, the most severe ofwhich may allow a remote attacker to execute arbitrary code. TOR is an implementation of second generation Onion Routing, a connection-oriented anonymizing communication service.

Using this Vulnerability remote attacker could possibly execute arbitrary code or cause a Denial of Service. Furthermore, a remote relay the user is directly connected to may be able to disclose anonymous information about that user or enumerate bridges in the user's connection.

Advisory explain that , Affected Vulnerable packages are < 0.2.2.35 . Multiple vulnerabilities have been discovered in Tor are listed below:

* When configured as client or bridge, Tor uses the same TLS certificate chain for all outgoing connections (CVE-2011-2768).
* When configured as a bridge, Tor relays can distinguish incoming bridge connections from client connections (CVE-2011-2769).
* An error in or/buffers.c could result in a heap-based buffer overflow (CVE-2011-2778).

All Tor users should upgrade to the latest version.

U.S. Senator Chuck Grassley's Twitter account hacked

2012-01-24T02:11:00.000-08:00

The Twitter Account belong to US Senator Chuck Grassley was hacked and used to launch anti-SOPA messages on Monday.

According to the Reuter report, the Hacker tweet around eight bogus tweets when Senator Grassley was on a flight heading from Iowa to Washington. When his staff realized the attack, he immediately called twitter to recover the account.

"Dear Iowans, vote against ACTA, SOPA, and PIPA, because this man, Chuck Grassley, wants YOUR internet censored and all of that BS." One of fake tweet says.

Grassley was among sponsors of the Protect IP Act, or PIPA, but he withdrew his support last week

Zone-H server rooted and Website hacked !

2012-01-24T02:03:00.000-08:00

Zone-H, the Biggest mirror site that hosts hacked sites' defacement mirror, hacked. by HcJ & Cyb3R-1sT & Egyptian.H4x0rZ & Sas-TerrOrisT & H311 c0d3.
The defacement page is still there. This is interesting hacking news, a defacement hosting server hacked by Hackers.

The mirror can be found here:

http://legend-h.org/mirror/317627/zone-h.com/

Hacker Message:

To be OR not TO be

Note : It's Unacceptable when we tried to notify defaced.zone-h.net and found tNote : It's Unacceptable when we tried to notify defaced.zone-h.net and found this message " nice try" it's not a try it's a real! your server rooted, all the websites hacked, all people knew that ! and it's the third time to hack your websites 2 of them in 2010( 2010/04/02 > brazilian domains + 06/2010 zone-h.com defacement database ),and now ! you should have the courage and allow the defacers to notify your sites, it's the real courage !

Phishing Google Users with the Help of Google !

2012-01-23T06:51:00.000-08:00

How Hackers are phishing Gmail/Google users successfully ? Christy Philip Mathew, an Information Security Instructor from India shared a perfect trick with us. He just exploit human psychology. Lets see how:

He Created a phishing Page of Google and Uploaded to : http://www.keepbacktrack.net84.net/ . Now How to make this URL legit for Victims ? Simple, Using Google translation Tool.

Google translation has got a vulnerability that if an attacker plan out translating a fake gmail login page he would get a perfectly crafted link that can be used for malicious purposes or Phishing. Above Shown Image the example of this Trick. New Phishing URL is Here after using Translation tool. This is Art of psychological manipulation using Google to Hack Google Users.