Cyber Terror Book! Hacker5 is India's First Hackers Magazine. Unite All Indian Hackers.

“Cat Techie”

noreply@blogger.com (cattechie) — Tue, 09 Aug 2011 19:57:00 +0000

“Cat Techie” book written by vaidehi sachin aka Cat Techie, journalist’s journey in hackers world. Online edition of cat techie available on www.cattechie.com. This is the best book, read and responded with maximum hits. Cattechie is hacker and Journalist.

--- You may write us on cyberterrors@gmail.com

Hacktivism Vs Terrorism

noreply@blogger.com (cattechie) — Tue, 30 Nov 2010 05:49:00 +0000

Hacktivism is the act of hacking, or breaking into a computer system, for a politically, socially or motivated by a criminal purpose. The intentions behind hacking are nothing but to harm and damage. The individual who performs an act of hacktivism is said to be a hacktivist. There are many such scavengers are around who never forget to boast their skills of hactivism. Globally there are 4,00000 community of black hat hackers, out of which 70 percent are students and between the age group of 20 to 25, 18 percent are between the age group of 15 to 20, 2percent are above the age of 30, 10 percent are grey hat hackers. And this population is of hactivists. (Read this beautiful research report in Cyber Terror) from this population 22% are only Indians,10 % from Pakistan ( details of these hactivists with pictures, code name, their addresses, and much more read in Cyber Terror)

A hacktivist uses the same tools and techniques as a hacker, but does so in order to disrupt services and bring attention to a political or social cause. For example, one might leave a highly visible message on the home page of a Web site that gets a lot of traffic or which embodies a point-of-view that is being opposed. Or one might launch a denial-of-service attack to disrupt traffic to a particular site. Whether hacktivism is a crime may be debated. Opponents argue that hacktivism causes damage in a forum where there is already ample opportunity for freedom of speech. Others insist that such an act is the equivalent of a protest and is therefore protected as a form of free speech. But in the recent past the best example of hactivism is nothing but the group of Injectors. Injectors are nothing but the black hat hackers, their intention are crood, motto is malicious and skills can be called as destructions on high profile level. But that does not mean all Injector are bad, the exploits should not be published or usage of exploits are always done for wrong reasons. I am not at all against inj3ct0rs. I regard them as most skillful and intelligent hackers. They not only penetrate in to your system or crash fire wall, they even crash your senses and penetrate your brains if you dare to go against them voicing your opinion. They are the powerful mafias and one should be even willing to lose life, because they can get your death near to you by harming physically or mentally.( One of the Hactvist from Pakistan threatened me saying he will create blogs to display my nude pictures on it. I just requested him saying use some good model’s body because I always had fantasy to look in shape with good curves on body. So dear readers if you come across any such blogs don’t forget only the face is mine but not the beautiful body below. This is another example of Hactivism)

Some people describing themselves as hacktivists have taken to defacing websites for political reasons, such as attacking and defacing government websites as well as web sites of groups who oppose their ideology. Within the hacking community, those who carry out automated attacks are generally known as script kiddies. Capacity for solo activity - while most forms of political activism require the strength of masses, hacktivism is most often the result of the power of one, or small group. Is most often carried out anonymously, and can take place over transnational borders. Critics suggest that DoS attacks are an attack on free speech; that they have unintended consequences; that they waste resources; and that they could lead to a "DoS war" which nobody will win. In 2006, Blue Security attempted to automate a DoS attack against spammers; this led to a massive DoS attack against Blue Security which knocked them, their old ISP and their DNS provider off the internet, destroying their business.

Depending on who is using the term, hacktivism can be a politically constructive form of anarchist civil disobedience or an undefined anti-systemical gesture; it can signal anticapitalist or political protest; it can denote anti-spam activists, security experts, or open source advocates. Critics of hacktivism fear that the lack of a clear agenda makes it a politically immature gesture, while those given to conspiracy theory hope to see in hacktivism an attempt to precipitate a crisis situation online. Hacktivism is a portmanteau [jargon] of hack and activism. This leads to a controversy of meaning because both the terms Hacker and Activism are both morally broad terms. Hacking has come to mean both "illegally breaking into computers" and "elegant computer programming". Activism similarly includes both explicitly non-violent action and violent revolutionary activities. which is assumed then hacktivism could be defined as "the nonviolent use of illegal or legally ambiguous digital tools in pursuit of political ends". These tools include web site defacements, redirects, denial-of-service attacks, information theft, web site parodies, virtual sit-ins, virtual sabotage, and software development. It is often understood as the writing of code to promote political ideology - promoting expressive politics, free speech, human rights, or information ethics. Acts of hacktivism are carried out in the belief that proper use of code will be able to produce similar results to those produced by regular activism or civil disobedience. The recent example is hacking FaceBook like high profile social network. Hacktivismo is an offshoot of Cult of the Dead Cow; its beliefs include access to information as a basic human right, they are the loose network of programmers, artists and privacy in an era of increased technological surveillance.

Hacktivism is a controversial term, and can often be misconstrued as cyberterrorism. What separates hacktivism from cyberterrorism is a distinctly political or social cause behind the "haction". Some argue it was coined to describe how electronic direct action might work toward social change by combining programming skills with critical thinking. Others use it as practically synonymous with malicious, destructive acts that undermine the security of the Internet as a technical, economic, and political platform. But randomly speaking they are the actual threat and terrorist of cyber space. Recently we found prominent links between underworld mafias like D company and Chota Rajan gang and hactivists. They have one common motto … destroy. There is elaborated info about this in Cyber Terror.

The Department of Defense secures its systems using world-class information security standards and layered controls, thanks in large part to an abundance of financial resources. Conversely, corporations have limited security budgets and can be weakened by merger and acquisition activity. Every leader, and every regime, and every movement, and every organization that steps across the line to terrorism must be banished from the discourse of civilized human life.

( The views expressed by the author in the blog are her own, she is not part of any group or team. you may have difference of openion, the best way is leave your comments to say good, bad and ugly about her and this post)

Do you want to share you views?? Just leave a comment here. you can also drop an email on amarjit@freehacking.net

Social engineering- an act of manipulation

noreply@blogger.com (cattechie) — Mon, 29 Nov 2010 09:16:00 +0000

“The term had previously been associated with the social sciences, but its usage has caught on among computer professionals. Social engineering" as an act of psychological manipulation was popularized by hacker-turned-consultant Kevin Mitnick.

Social Engineering is defined as the process of deceiving people into giving away access or confidential information. Wikipedia defines it as: "is the act of manipulating people into performing actions or divulging confidential information. While similar to a confidence trick or simple fraud, the term typically applies to trickery or deception for the purpose of information gathering, fraud, or computer system access; in most cases the attacker never comes face-to-face with the victim.

I keep a simple mindset for this: Any stranger, who is interested in you, wants something from you, and it probably isn't you. This article is about manipulation of individuals. For social engineering in terms of influencing popular behavior, Social engineering has become passion of many hackers. There are many successful hackers they have perfect nag over this subject. To deal with these kinds of physiological attacks you need to have special skills. Social engineering is the act of manipulating people into performing actions or divulging confidential information, rather than by breaking in or using technical cracking techniques. While similar to a confidence trick or simple fraud, the term typically applies to trickery or deception for the purpose of information gathering, fraud, or computer system access; in most cases the attacker never comes face-to-face with the victim. Social Engineering is tricking people into doing something you want them to, so it's been around since the beginning of time. The person who brought it into common knowledge was Kevin Mitnick one of the most famous hackers in history wanted by the U.S. Marshalls and after a while caught by them. As his parole he couldn't profit from his experience with hacking for ten years meaning he couldn't write any books, but after the ten years he wrote the Art of Deception which is a great book and has great stories of social engineering. The idea of black ops hypnosis, also known as underground hypnosis or covert hypnosis is to manipulate other people using only your mind. The difference between this technique to that of traditional hypnosis is that, you can use black ops on covert occasions. Meaning you can use this technique on any social gathering such as meetings, parties, interviews among others. However in traditional hypnosis, the hypnotist requires an approval to let him manipulate your mind to identify the causes of your problems. There are strategies in order to be an effective mind manipulator. Of the most common technique are the Majors. This is the first black ops hypnosis invented which are comprised of four main strategies: hypnosis, neuro-linguistic programming or NLP, social Engineering, and seduction. The majors are used as a preparation to make other people (persons you are talking to) be manipulated at your own advantage. The strategies listed for the majors are divided into four arts.

These are the following: alpha functions, this is a tactic to make you the Alpha Male or Female in any social gathering through the use of the social engineering; The Iron Man Pattern on the other hand is a technique to achieve humongous chutzpah; The black mirror operation deals more on making the other person like you in a blink of an eye; and lastly, the no cleaver technique is use to let someone into a limbo without him/her knowing about it. In order to be a practitioner of the Black Ops Hypnosis, you can research the Internet or go to your library. There are a lot of hardbound books and digital books that provide information regarding this skill.But in order to achieve definite results, make sure that you are giving your 100% to learn everything regarding this infamous technique. If you are interested in learning hypnosis, I recommend Igor Ledochowski's The Power Of Conversational Hypnosis. Igor is a master of hypnosis and has taught in many seminars. Check out the power of conversational hypnosis review here. The idea of black ops hypnosis, also known as underground hypnosis or covert hypnosis, is to manipulate other people using only your mind. The difference between this technique to that of traditional hypnosis is that, you can use black ops on covert occasions. Meaning you can use this technique on any social gathering such as meetings, parties, interviews among others. However in traditional hypnosis, the hypnotist requires an approval to let him manipulate your mind to identify the causes of your problems. There are strategies in order to be an effective mind manipulator. Of the most common technique are the Majors. This is the first black ops hypnosis invented which is comprised of four main strategies: hypnosis, neuron-linguistic programming or NLP, social Engineering, and seduction. The majors are used as a preparation to make other people (persons you are talking to) be manipulated at your own advantage. The strategies listed for the majors are divided into four arts.These are the following: alpha functions, this is a tactic to make you the Alpha Male or Female in any social gathering through the use of the social engineering; The Iron Man Pattern on the other hand is a technique to achieve humongous chutzpah; The black mirror operation deals more on making the other person like you in a blink of an eye; and lastly, the no cleaver technique is use to let someone into a limbo without him/her knowing about it.

In order to be a practitioner of the Black Ops Hypnosis, you can research the Internet or go to your library. There are a lot of hardbound books and digital books that provide information regarding this skill.But in order to achieve definite results, make sure that you are giving your 100 % to learn everything regarding this infamous technique. Do you think 007 movies employ some social engineering methods in some James Bond missions? Do you know that 89.7% percent of emails coming to you about get rich quick themes are spam? The attacks are no longer just in emails, now the use of images, logos and known company names are employed. The attack exploits vulnerability in 2Wire modems allowing attackers to modify the DNS servers. Mexico is one of the largest suppliers of this type of modem. There are hundreds of thousands of them. That means, more than two million users are at risk. Many attacks are been carried out by means of social engineering, which is the practice of obtaining confidential information by manipulating legitimate users. "Users are the weak link here". Practically, the commonly used methods are achieved via the telephone, web 2.0(social networks), internet etc. The engineers, either claims to be employees of a bank or company, a colleague, a technician or a customer.

is the act of manipulating people into performing actions or divulging confidential information by playing on their human emotions. The term typically applies to deception for the purpose of information gathering, fraud, or computer system access; in most cases the attacker never comes face-to-face with the victim. These days most thieves can nab your identity over the phone, mail, email, and through social networking sites such as Facebook and Twitter.While some schemes scam you into giving out social security numbers, bank account numbers or other confidential identity pieces, others are as simple as a pickpocket distracting you emotionally while another thief steals your wallet or purse. Here are what a few of the most widely used savvy cyber attacks look like:

· Phony charitable phishing scams, many of which are designed to look as if they come from real charities. Always enter in the exact URL for the Charity that you wish to donate to rather than clicking on a link.

· Urgent email or text notices from your bank. They tell you to click on a link to access your account to fix an important, time sensitive problem. Don’t click on a link via email. Always type in the exact URL of your your bank or call the number on the back of your card. Nothing is that urgent.

· Nigerian Email Scam. This scam has been around for decades in different versions and states that a wealthy foreigner needs help moving millions of dollars from his homeland and promises a hefty percentage for helping him. This scheme is designed to part you with your money. Once you send a check or bank account numbers you won’t see a dime in return and most victims report losing thousands and hundreds of thousands of dollars to this scam.

· Notices via email, phone, or mail that announce that You Have Won the Lottery! The message usually claims that you will be paid a large sum of money after you pay them a small amount now. Although this is tempting, just say no. Legitimate lotteries don’t ask you pay anything after you have already won.

· Facebook or Twitter distress messages from your friends. If you see a friend asking for money and you are considering helping them out, you should ALWAYS call that friend first. Make sure that their account hasn’t been hacked by a thief.

· Malware-ridden E-cards. It is sad, but true that it is no longer safe to open E-cards. Many contain malware to attack your desktop and gain access to confidential information. Make sure you have updated virus software protection to notify you of viruses that come through emails or the Internet.

· Make fast cash now! AKA: Make thousands a day working from home! All you have to do is send $50.00 for the starter kit. More often than not people will send their $50.00 and never receive anything in return. This scam has become more popular with our nations high nemployment rate.

These are only a few of the many variations of Identity Theft through Social Engineering. Since social engineering often plays on emotions, you should be careful not to get duped during a tragedy or commemorative event. This is when people are in a mood of giving and their emotions run high. So remember to stop and think about the possible consequences of an offer that may just be too good to be true. Never be afraid to say no! From a security standpoint, it is more a collection of tools and techniques that range from negotiation, sales, psychology and ethical hacking. While social engineering can include physical security this framework focuses on art of manipulating people to achieve a goal. Generally this goal will involve showing a company or organization where weaknesses may lie with training of their people to maintain a security focused mind. As you will see reading through this framework, the principles can be used in developing and enhancing communications, relationships and our own understanding of those we interact with.

Do you want to share you views?? Just leave a comment here. you can also drop an email on amarjit@freehacking.net

Love and Social Engineering

noreply@blogger.com (cattechie) — Sun, 28 Nov 2010 15:20:00 +0000

A love story on social sites is quite a common game. And, especially in the hackers zone this works like a miracle. Love is literary, philosophical, or some would even say metaphysical. In the history of malware, love is a virus writer whim and a well-known cybercriminal social engineering technique. Social engineering, a non-technical breach of security that relies heavily on human interaction and tricks users into breaking normal security measures, remains popular among virus writers. LoveLetter was one of the first, and most notable, examples of social engineering. It arrived as an attachment to an innocent looking e-mail containing the subject line 'I LOVE YOU' (and who doesn't like to receive a love letter?) and the body text 'Kindly check the attached LOVELETTER coming from me'. In an effort to put unsuspecting users further off their guard, the attachment had a double extension, LOVE-LETTER-FOR-YOU.TXT.vbs. Since Windows Explorer doesn't show extensions by default, it was not obvious that the attachment was anything more than a plain text file. For good measure, Love Letter also used mIRC to spread and downloaded a password stealing Trojan to the infected machine. Successful threats (from the author's point of view, that is) typically spawn further variants. LoveLetter's success, together with the fact that the VBS source code for the worm was easily accessible, led to a large number of variants in the months following its release. Loveletter showed how useful social engineering can be in spreading malware. So it's not surprising that it continues to be widely used. It arrives as an attachment to infected messages which use a range of subject headers, messages and attachment names in English. Some of the messages appear to promise tickets to the World Cup or date with Bollywood actor and who wouldn't want World Cup tickets or Date? Virus writers have been using love as theme in creating malicious codes. Whether this is attributable to the romantic nature of humanity in general or to love’s overwhelming effect on everyone, the creators of viruses would leave love messages, or traces of it, in their codes. The more famous examples include:

•VBS_LOVEMONKEY, a 1999 virus that sends email with the message "Dear Nicky... my name is and I want to make hot monkey love with you. You anti-virus stud!"

•In 2000, PE_LOVESONG.998, notable for having the word "love" in its code.

•The Spanish loveletter VBS_VALENTIN.A in 2001, supposedly written by its creator to express his undying love for "Davinia, the most beautiful girl in the world." It writes files and is triggered on Valentine’s Day.

And today probably you don’t require such viruses to get in any system, just by using few expressions, one can easily win over your heart and here the vulnerability to personal info is traced.

Virus creation was necessarily fixated to notoriety. Writers might have also seen it as a medium through which they could express their thoughts to the public. The aim to cause destruction, coupled with the entertainment brought by personal expression, may have led virus writers to make their malicious files in a certain way, love unfortunately of course being everyone’s favourite topic. Poetry and romantic love are eternally linked, even in malware attacks. Virus writers who are preoccupied with using love in malware codes did not vanish altogether. They now belong to a group called script kiddies, which are considered the opposites of sophisticated hackers. Social engineering--the act of manipulating people into doing things they otherwise would not do--is an integral element of Web-based attacks. It would be almost impossible to conceive of a threat that does not try to trick online users into clicking links, downloading and installing files, or visiting dangerous sites. Love as a social engineering technique is most popular in the spamming operations of the botnet giant Storm. Known for taking advantage of every occasion and holiday known to man, Storm sends Christmas e-cards on Christmas, New Year e-cards on or before every first of January, and love e-cards during the Valentines season.The intent is to convert more zombie PCs for the bot, which would then be used for future cybercriminal activities – spamming, scamming, information theft, DDOS attacks. The first Storm malware to send love greetings was WORM_NUWAR.CQ. The worm family gets its name from its earlier social engineering technique: sending messages about nuclear wars. In Valentines Day 2007, WORM_NUWAR.CQ made a 180-degree turn from its family’s signature technique by replacing war with love. Cybercriminals began sending love-themed malicious messages then onwards.The rise of Web threats also meant a cybercriminal move away from just malicious files and system-based threats to those that exploit the Internet as a platform. Spammed messages continued its massive volume increases and were used vectors not just for malware, but for dangerous URLs and websites as well. Legitimate websites were also compromised to lead users to malicious binaries or sites. Love maintains its status as an effective social engineering technique despite this development. From manually detected malicious URLs (phishing sites, malware download sites) during the Valentines months of January and February, 24% contained the string love, or was crafted to have references to the word.Even emerging threats use similar social engineering techniques. SYMBOS_BESELO.A– a mobile phone malware that spreads through Bluetooth and Multimedia Messaging Service (MMS) – used as file names beauty, jpg, love.rm, and sex.mp3. As cybercriminals continue to exploit the online holes they keep discovering, love would likely remain a standard luring tool. This process becomes, on the one hand, a study in human psychology: it points us to the irresistibility of love in whatever forms it may have in human affairs. On the other hand, love as a social engineering technique again exposes another crucial bug in computing systems:human frailty. The manipulation of social behaviour in an effort to create results that satisfy the opinions of bureaucrats and social managers is what characterizes the form of socialism found in most of the places. As we now enter the 21st Century, the computer age and cyber warfare is in full swing. Companies and organizations are still not fully addressing or understanding the issue of Social Engineering. The concept of Social Engineering can cause destruction to networks and cost companies millions of dollars or rupees. Here, I will try to bring to light exactly how Social Engineering exposes the vulnerabilities of Intrusion Detection Systems and what can be done to protect ourselves against these vulnerabilities.E-Mail: E-mail provides great opportunities for attackers to use social engineering. As stated earlier, each Intrusion Detection System and Anti-virus program requires signatures to capture malicious packets or mail. Because these signatures cannot be developed until the malicious packet/code has been discovered, this gives the attacker time to do his/her work. How many times have you logged in at your ISP and there is an e-mail waiting for you claiming to be from the ISP's customer services division requesting your user name, password and credit card number? Could an IDS system or anti-virus system detect this? That would depend. If this happens all the time then the answer is yes; otherwise, probably not. As technology advances, so will the type of virus we will be encountering. Social Engineering will become a critical part releasing and executing these viruses. The great thing about e-mail is that it only takes one person to open his/her e-mail to begin its circulation.

Do you want to share you views?? Just leave a comment here. you can also drop an email on amarjit@freehacking.net

Download Hacker5 Magazine First Edition Free PDF Here

noreply@blogger.com (cattechie) — Fri, 26 Nov 2010 22:46:00 +0000

Download Hacker5 Magazine First Edition Free PDF Here

Hacker5 is India's First Hackers Magazine

CLICK HERE TO DOWNLOAD Hacker5 Magazine First Edition Free PDF

HACKER5 SUBSCRIPTION FROM DOWNLOAD HERE: HACKER5 Exclusive Gifts for Magazine Subscribers Only

---Do you want to share you views?? Just leave a comment here. you can also drop an email on amarjit@freehacking.net

"The world is lucky we're so nice : Milw0rm”

noreply@blogger.com (cattechie) — Thu, 25 Nov 2010 16:34:00 +0000

"I like the world in its current state (i guess), well its better than the world would be if the b0mb went b00m. think about it k1dz, it’s not clever, it’s not big, so don't think destruction is cool, coz it’s not […] So India, LISTEN TO WISE OLD MILWORM ... You do not need nuclear weapons in the 1990s!#@!" a part of the message, which was signed by JF, VeNoMouS, Hamst0r, Keystroke, savec0re and ExtreemUK,

This was the message left by MILWORM and group, after Bhabha Atomic Research Centre (BARC) in Mumbai. Rather the group came in limelight here after. milw0rm was a group of "hacktivists" best known for penetrating the computers of the Bhabha Atomic Research Centre (BARC) in Mumbai, the primary nuclear research facility of India, on June 3, 1998. . The message announcing Milw0rm's shutdown has been removed from the website. Submissions seem to have also been reopened. It is not yet clear if str0ke decided to continue alone, if he got assistance with reviewing exploits or if someone else took over the maintenance tasks entirely. Massive dd0s from someone which str0ke put them down in their server, One of the major sources of proof of concept (PoC) exploits on the Internet, milw0rm.com, closing down all of sudden miraculously. The website's maintainer, str0ke, gave thunder stroke to the used by announcing the closer of this site. While this is sad news for people familiar with the exploit release scene, as well as a fair amount of script kiddies by some accounts, it might not mean much for the uninitiated without some background history. Milw0rm was originally the name of a group of hackers with members from various parts around the globe that communicated with each other over IRC (Internet Relay Chat). The outfit went on to achieve international fame after it took credit for compromising the computer network of India's Bhabha Atomic Research Centre (BARC) in Bombay and gaining administrative access (root) on multiple systems during the night of June 3, 1998. The hackers walked off with confidential emails and classified documents about nuclear tests, amounting to around five megabytes. The first news outlet to break out the story at the time was Wired, which the collective contacted with proof of their feat. The reasons behind the attack were mostly political in nature. The group's members, who were still teenagers at the time, wanted to show their disapproval over the development and testing of atomic weapons, making this pretty clear by defacing the BARC home page and posting pacifist messages. The group disbanded soon after this high-profile hack, or at least its members stopped being hacktivists. Several years later, in 2004, Keystroke, who is, today, better known as str0ke, went on to set up milw0rm.com as a place to publish PoC exploits, with the consent of some of his former comrades. In order to ensure a high quality for the published content, str0ke personally verified and tested all exploits submitted by other hackers, something that, unfortunately, he can no longer do. He goes on to explain that, "For the past 3 months I have actually done a pretty crappy job of getting peoples work out fast enough to be proud of, 0 to 72 hours (taking off weekends) isn't fair to the authors on this site." Finally, the hacker extends his thanks to everyone who contributed to the website. "I appreciate and thank everyone for their support in the past. Be safe, /str0ke," he signs off.

The submissions of exploits got closed, the hackers who used to explore their dreams here got panic, and there were whispers around, IRC community of hackers was in grave discussions about the same, str0ke no more remained the same keystroke from milw0rm. str0ke was not in the original milw0rm which hacked BARC and many other sites. The hacker and exploit writers started accusing him for many reasons. This was the Black day in history....This is what happens when the best goes down; there was big conspiracy behind all this. Hackers like P3ac3 and 51l3n7 voice opinion but soon that disappeared with time. The message announcing Milw0rm's shutdown was removed from the website. Submissions also reopened. Then It was not very clear if str0ke decided to continue alone, if he got assistance with reviewing exploits or if someone else took over the maintenance tasks entirely.

Members of milw0rm was the international hacking team went by the aliases of JF, Keystroke, ExtreemUK, savec0re, and VeNoMouS(Real Name: Jodi Jones***). VeNoMouS, 18, hailed from New Zealand, ExtreemUK and JF, 18, from England, and Keystroke and Savec0re, 17 from the US. To date, none of the group have come forward with their real names or identities, and investigations of the incident by the CIA and FBI or any other intelligence organizations proved fruitless in deciphering their identities, which were well-hidden. However, numerous people who were not a part of milw0rm have come forward saying that they were responsible for the hacks. Their claims have been discredited. JF went on to achieve a modicum of notoriety when MTV "hacked" its own website intentionally and graffitied the words "JF Was Here" across the page, at the same time that JF was under investigation for the milw0rm attacks by Scotland Yard. Hundreds of pages hosted on MTV.com sported the new JF logo, including one page that read, JF was here, greets to milw0rm,VeNoMouS claimed that he learned to crack into systems from Ehud Tenenbaum, an Israeli hacker known as The Analyzer. Four days before the incident, the five permanent members of the United Nations Security Council, the US, Russia, United Kingdom, France and China, denounced both India and Pakistan for unilaterally declaring themselves nuclear weapons states. The day before the attack, Jacques Gansler, US undersecretary of defense for acquisition and technology, warned a military conference that teenage hackers posed "a real threat" to national security. On the night of June 3, 1998 from their workstations on three continents, the group used a US military .mil machine to break into the LAN, or local area network, of BARC and gained root access. The center's website, connected to the LAN, and their firewall was not secured enough to prevent the group from entering and gaining access to confidential emails and documents. The emails included correspondence between the center's scientists relating to their development of nuclear weapons. They then posted a statement of anti-nuclear intentions on the center's website. In the process of the break-in, the multinational group of teenagers -- from the United States, United Kingdom and New Zealand -- gained access to five megabytes of classified documents pertaining to India's nuclear weapons program. Savec0re erased all the data on two servers as a protest against the center's nuclear capabilities. To display their security breach publicly, they changed the center's webpage to display a mushroom cloud along with an anti-nuclear message and the phrase "Don't think destruction is cool, coz its not” Milw0rm then came forward with the security flaws they exploited in BARC's system, along with some of the thousands of pages of documents they had lifted from the server, concerning India's last five nuclear detonations. The group's purpose for the attack was to protest nuclear testing, according to Savec0re, VeNoMouS and JF. After the attack Keystroke claimed that the breach had taken "13 minutes and 56 seconds" to execute. Many news organizations reported breathlessly how the teenagers had penetrated a nuclear research facility in "less than 14 minutes." However, examining more closely the hacker's wording and tone in the interview, and especially the specificity of the "56 seconds" claim, it is apparent that Keystroke meant this as a lighthearted answer to the question, "Exactly how long did it take you?". The actual invasion took careful planning, routing through servers throughout the world from three different continents, and took days to execute. An Indian news agency reported that downloading thousands of pages from India's slow servers would have taken much longer than 14 minutes. The security breach was first reported by Wired News. Members of the group claimed credit by emailing Wired reporter James Glave with documents they had obtained from the BARC servers as proof. After first denying that any incident had occurred, BARC officials admitted that the center had indeed been hacked and emails had been downloaded. An official at BARC downplayed the severity and importance of the incident announcing that the security flaw resulted from "a very normal loophole in Sendmail," while going on to state that the center had not bothered to download a new version of the Sendmail program, responsible for the center's email servers. The center also admitted that after milw0rm's breach, the site had been hacked into again, this time with less severe consequences. Forbes wrote that perhaps up to 100 hackers had followed milw0rm's footsteps into the BARC servers once they were revealed as insecure. The website was shut down while its security was upgraded. Later, a senior US government official told ZDNet that the Indians had known about the flaw and had chosen to ignore it, creating the opportunity for milw0rm to root the servers. BARC officials said that none of the emails contained confidential information, the group did not destroy data, and that the computers they have that contain important data were isolated from the ones broken into.

Nevertheless, the breach was a severe one and had the potential to cause an incident of international proportions. Forbes called it "potentially the most devastating" hacking incident of 1998.After the attack, members of the group participated in an anonymous Internet Relay Chat (IRC) chat with John Vranesivich, the founder of hacking news website Anti-Online. Keystroke explained how if he wanted to, he could have sent threatening emails from the Indian email server to a Pakistani email server. If the group had possessed malicious intentions, the consequences for both south Asian countries could have been catastrophic. For these reasons, the milw0rm attack caused other groups to heighten their security to prevent invasion by hackers. The U.S. Army announced, without giving evidence as to why they believed this to be the case, that the hacks might have originated in Turkey, noting that "Turkey is the primary conduit for cyber attacks." A senior US official said that the CIA had obtained the material that milw0rm had purloined and was reviewing it-- the official did not mention how the CIA obtained this information.Later, Wired News revealed that an Indian national and self-proclaimed terrorist, Khalid Ibrahim, had approached members of milw0rm and other hacker groups on IRC-- including Masters of Downloading and the Noid-- and attempted to buy classified documents from them. According to savec0re, Ibrahim threatened to kill him if the hacker did not turn over the classified documents in question. The Electronic Disturbance Theater released a statement in support of JF, applauding him for his hacktivism and maintaining that computer break-ins of this sort were not cyber-terrorism as some claim.

One month after the BARC incident, in July 1998, milw0rm hacked the web hosting company Easyspace, putting their anti-nuclear mushroom cloud message on more than 300 of Easyspace's websites. The text placed on the sites read in part, "This mass takeover goes out to all the people out there who want to see peace in this world... This tension is not good, it scares you as much as it scares us. For you all know that this could seriously escalate into a big conflict between India and Pakistan and possibly even World War III, and this CANNOT happen..Use your power to keep the world in a state of PEACE.

While scanning a network for weaknesses, members of the group came across EasySpace, a British company which hosted many sites on one server. Along with members of the fellow hacking group Ashtray Lumberjacks, milw0rm had the revised mushroom cloud image and text on all of Easyspace's websites in less than one hour."It's ironic that India has weapons capable of destroying the world, but they can't secure a little web server which is connected to their networks." That’s how Milw0rm dead and inj3ct0r born..Who are the injectors? There are total four prime admins, and four key injectors running the show, after going through lots of legal mess now injectors are revamping their plans. JF who is CEO of this group, holds big team of black hat hackers, the other key holder injectors are form India and Pakistan. Milworms all published exploits were posted on injector, one of the amature injector, who is young and sill studying, has taken undue advantage of the situations that who the Injector came in existance, R00ter a pakistan based injector is one of the most brillient and strongest admin of this group,Microsoft is the biggest sponsor and one of the financial supports for this group….

read more details in my book ‘Cyber Terror"

As a journalist it's my right to discover and publish ...I know all the Hacker and injectors are pro..And the biggest irony is that they have their own private exploits what they have never published anywhere, just core impact (an exploiting software) has that exploits. Injector guys can be defined as pure cyber criminals.. Some of them are former member of PHC.. Pakistan hackers club, now this group have dissolved and is no more .and some of them are the members of ICW which is vanished recentely.. most of members are working in very good companies and different sectors and having good family life. These hackers have tremendous unity when it comes for wrong things, I am sure they will find their own ways to sabotage me and my interest. What I am doing is my profession, what they are doing is their passion.. I respect them from the bottom of my heart and do not expect the same.

Sextortion on Cyber Space: New Technique of Blackmail & Threatening Young People

noreply@blogger.com (cattechie) — Thu, 25 Nov 2010 07:54:00 +0000

Sextortion on Cyber Space: New Technique of Blackmail Threatening Young People

Who’s watching your child on her or his PC Webcam -- just friends? Don't be too sure.

Age-old crimes take on a new twist in the cyber-world of today. Not least of these is “sextortion,” where in a recent high-profile case, the FBI uncovered 200 victims in just one incident, many of whom were young or even underage.

As a term, sextortion has been around longer than most of us probably realize and way before the Web was around. An early use of the term was in a headline of a 1950 article, but no one can be in any doubt that sexual extortion itself has even older origins.

In the cyber-world of today, however, sextortion appears to have reached a whole new level. It is perpetrated through a form of social engineering, wherein enough information can be gathered about an individual to hold that victim to ransom.

Social networking makes compromising situations easily available to those searching. In the FBI case, the hacker used spear phishing techniques, an email spoofing fraud that targets a specific person, seeking unauthorized access to confidential data. This kind of spoof is accomplished by the hacker posing as a trusted source of the intended victim, such as a FaceBook Friend.

Once tricked into opening an attachment from the “trusted source,” a virus in the FBI case compromised the recipient’s computer, including its Webcam, microphone, and every keystroke. In examples of sextortion, the hacker, successfully reaching his target, is then able to spy on his victim through his or her own Webcam. In the case under discussion, the hacker was only discovered when he contacted one victim in an attempt to obtain an explicit video in exchange for not telling her parents. Luckily, the intended victim told her parents, who contacted their local FBI.

There are numerous viruses around that can take over Webcams. It is not new technology at all. Probably the best known virus of all is W32/R-bot-GR, which has hundreds of variants. Viruses such as this can actually turn on the Webcam remotely and the victim doesn’t even know she is being watched. Over the last 10 years cases have regularly popped up.

Perhaps one of the most worrying related cases was earlier this year in the Robbins v. Lower Merion School District case known as "WebcamGate." This is where spyware was installed on laptops issued by the school in what was a misguided attempt to oversee Web activities by students. Of course, this spyware could have been used by a hacker as well. Lower Merion District was accused of installing spyware on laptops used by its students, and recently settled with the school district by agreeing to pay $610,000 in compensation.

Around the same time was the case of a Wisconsin 12th grader sentenced to 15 years in prison after a high school sextortion scandal. The boy pretended to be a girl on FaceBook and used naked pictures fellow students sent him to blackmail the boys into having sex with him.

More recently, a mixture of sextortion and cyber-bullying led to tragic consequences. When a young student found that his roommate had allegedly plastered a live streamed video of him in a sexual encounter, he posted a message on Facebook and then deliberately plunged to his death off the George Washington Bridge.

So can we escape the clutches of the seemingly ever-present video recording of our every movement, be it Webcams, CCTV, or even that seemingly innocent little add-on gadget that may be the choice of someone close to you for Christmas this year? There are several of them around, they can easily move in any direction, come complete with a WiFi-enabled robotic Webcam, speaker, and microphone. They enable you -- or perhaps that friendly hacker and sextortionist just down the road -- to access your home from anywhere in the world.

Not wishing to put the damper on anyone who may have already picked this out for this Christmas, but perhaps a little additional PC security may be a good idea, to prevent the spear phishing in the first place. However, the obvious comes to mind in most of these cases: Do you know who your children are conversing with online? And, even more importantly, can they approach you if there is a problem?
SOURCE — Jart Armin, Editor of RBNexploit.com, a watch blog on the infamous RBN (Russian Business Network), and HostExploit.com

---Do you want to share you views?? Just leave a comment here. you can also drop an email on amarjit@freehacking.net

Search Engine Optimization Secrets Tips & Tricks: Download Free Ebook

noreply@blogger.com (cattechie) — Wed, 24 Nov 2010 18:15:00 +0000

SEO For 2010: Search Engine Optimization Secrets

lulu.com| 2009 | ISBN: 0557161339 | MOBI, PDF | 252 pages | 31 MB

A very well-designed web site is useless if no one can find it on the web. If your company is going to succeed on the web, optimizing your site for search engine visibility is a must. Especially since it is the telephone book of the now, not the future. This book is written by the two most noted and accomplished experts in the field of search engine optimization (SEO) and provides you with proven guidelines, cutting-edge techniques, tips, and the how-to's for planning and executing a comprehensive SEO strategy.This is the first book to cover the Bing search engine in-depth. It tackles how to submit your website to the search engines, basic to advanced optimization techniques, learn how to determinetrophy keywords, keyword density, little known tricks and methods pros use, learn how to increase your rankings, and learn from those who started the entire SEO industry.This is the only guide you need!

Download Depositifiles.com

Download Hotfile.com

---Do you want to share you views?? Just leave a comment here. you can also drop an email on amarjit@freehacking.net

Where Are Hero Hackers?? Forgotten Hero Hackers By Cat Techie

noreply@blogger.com (cattechie) — Tue, 23 Nov 2010 17:37:00 +0000

What is the source of earning/income of all those notorious hackers. Read in next post with Cat Techie & Amarjit Singh

(Want to know where all these people have gone, what are they doing? what next..keep eying on this blog)

By Cat Techie

The day I started with my research I had to track down many hackers which was quite difficult task. During this journey I came across numerous new concept which no normal brain can even think of one of them was ‘Cyber War’. The first ideas that wallop my mind was this could be war between hackers from all countries. later as I started exploring I was jeopardize because I realised that virtual war is more harmful then any kind of physical war, There are highly talented hackers across the world who can be serious threat but also safety to government, economy and also infrastructure of respective countries. Till now except the ethical hacker no other hacker is known by their original names. all are coded with some different name or number, there is a great story behind these names, how these names came is existance and why they got these codes is yet another story to read. I am deffinately going to discuss about the same in near future. Cyber war was started by the Pakistani group of hackers named ‘paksbug’ which was maintained by zombie_ksa and his fellow team mates. Zombie_ksa is known to be one the highly talented hacker from Pakistan few of them mark him as a legend, his identity is still a mystery there are so many myths and rumors about this hacker. this arab hacker made his bench mark in hacking trends. I have special liking for this hacker for his uniqueness.

Amongst everybody, the major components or hackers of this group were ‘spoofer’, ‘Xoom-Xoom’, ‘big smoke’, and ‘cyber crime’ (these are substitute names given to them their real names you can get to read in Cyber terror book).

Due to the hatred for India this group started posting nude pictures of Indian girls in their community more over the Indian god were abused which was no longer tolerated by the Indian hacker. To retaliate and express disagreement Indian hackers also formed a group which was named as ICW i.e., Indian Cyber Warrior the founder of these group were Rascle (Gaurav Singh), Sai Satish, and Smart(keval) . Later so many people became members of this group, they started attacking pak cyber space but never wrote anything ill or against their almighty god, neither insulted any gender. This gave rise in the defacement of the sites from both the countries. With the growing hatred towards each other this lead to the formation of two more new groups that was PCA the founder of this group was Harun from Pakistan. Now there is one more PCA founded by .

After this there are a serias of hackers came in existance, now a days the hackers mashroomed like anything. there is one more hacker Cyber swati, how this hacker got indian name and what is his background..read in cyber terror.

One fine day both the opponent groups realised that only defacement is not the solution so the graph of hacking came down and thus here this phase was ended with the signs of maturity. But was this an end??? NO.

This time it was a quite a major issue. After few months a guy named ‘Xoom-Xoom’ regenerate the conflict by hacking our prime minister site ‘Manmohan Singh.org’ cyber war was revived but this time ICW did not retaliate May be it was the question of their ego. Hackers are known to maintain their principles and so they do not wish to go against.By then ICW and paksbug were only two active groups. This was the time where zombie realised his skill and gradually he started hacking bigger sites like national internet back bone of morocco then google.co.in, and hotmail.ug. He almost ended up hacking all the sites of Uganda and stopped attacking India. So as ICW was dead by that time.Injector, Sai satish one of the most legendary hacker known for his integrity gave up, and every one went their way. Today they all are working in different IT companies.

Indishell was the group formed and the founder by ‘hack my PC’ who was basically from London. The major platform of the group was patriotism. He trained many ordinary minds to expert hacking. Patriotism of this group was immense and was intensely mounting day by day.
What ‘Xoom-Xoom’did he ignored everything and in addition to this he ramdomly started defacing sites. Mean while another group was formed by some Pakistani hackers named ‘pak hackers’ the founder of these group called himself as a ‘spider’ who was from Afghanistan, he is the leader of afghan cyber army ,once again filthy game of defacing came in full force.

Indian sites were above to hit the top, an avarage 25 sites a day was at the target of Pak hackers. Still the Indishell was quite, and they did not reciprocate but these was high time as the defacing Indian sites went beyond limit.Two new strong Indian hackers started retaliating pak hackers. They were M.XXX and silent poison. The new brilliant hacker was thrown at the battle to controll situations his name is c0de Breaker, who was trained by ‘hack my pc’ he was the new heir of Indishell. Silent poison approached c0de breaker for defacements in which nations pride was the most important topic, this is the phase where indishell came into highlight.One more group was formed and that was cyber hacker.net which was super monitored by a hacker called his partners in this group was net cracker, these was formed due to the disputes between shack and the member of pak hackers. Shak is heartthrob of young aspiring hackers of Pakistan as well as India.

These three groups were on the top on the list of cyber war. In this was indishell ended up by hacking cyber hacker.net. complete back up and old data was erased by indeshell so that there won’t be any chance of them coming back in existance. It’s still been three months no trace of these guys is been found. Now the only person left is shak and few others who knows the technique of SQL injection and Google hacking. None of these member were even partially related to ethical hacking.

The most undue advantage was taken by SQL attack was by shack and nut crackers now their target was common man, who regularly does net shopping. These hackers hacked credit cards by introducing server of Pakistan in Germany, later on even that was suspended because the bank of these credit cards started giving back to these hackers in strrn actions. But nobody could stop this hackers from committing crimes, once again they use to establish themselves with new servers and by hacking new credit cards.

What they were doing wasn’t sufficient so they started teaching credit card hacking through their websites and forums, after some time they had to close this due to the legal problem raised by banks...Pak police started clutching there hackers and illegally the institutions were getting operated behind the eyes of law. Indishell reported this to the CMO office. Unfortunately all the officer went blind folded. There was no other option for indeshell to wait for 14th august as it was Pakistan’s independence day. On that dayPakistani hackers defaced 18 Indian sites with abusive language, they abuse India and also insulted the lord ram by pasting his face to a dogs body. this went in to the nerves of Indian hackers specially Indishell . they answered them through Gang Bang and ICA came in action with the hackers like Mr.XXX, silent poison, Inex root, dark look, and code breaker himself. by that time indishell became a open door for every hacker around the world. ICA was started by lucky and silent poison then after indian hacker started joining their camp. here after so many things happened but wait for some time to read in details..

What is the source of earning/income of all those notorious hackers. Read in next post with Cat Techie & Amarjit Singh

(Want to know where all these people have gone, what are they doing? what next..keep eying on this blog)

---Like this post, Just leave a comment as your feedback. If you want us to post an article on some specific topic OR have a suggestions for us...you can also drop an email on amarjit@freehacking.net

IBM uncloaks 20 petaflops BlueGene/Q super

noreply@blogger.com (cattechie) — Tue, 23 Nov 2010 05:17:00 +0000

SC10 Although everybody seems to be excited about GPU-goosed supercomputing these days, Big Blue is sticking to its Power-based, many-cored BlueGene and Blue Waters massively parallel supers, and revving them up to bust into the 20-petaflops zone. The Blue Waters massively parallel Power7-based supercomputer and its funky switching and interconnect, and very dense packaging were the big iron of last year's SC09 event in Portland, Oregon, which El Reg told you all about here. And we've covered the GPU additions to the iDataPlex bladish-rackish custom servers IBM builds, as well as the forthcoming GPU expansion blade for Big Blue's BladeCenter blade servers, which are due in December and which are also special-bid products.But the BlueGene/Q super — made of fleets of embedded PowerPC processor cores — is still, in terms of aggregate number-crunching power, the biggest and baddest HPC box on the horizon from IBM for the next two years.IBM lip-smackingly announced the sale of the "Sequoia" BlueGene/Q supercomputer to the US Department of Energy back in February 2009, just as the current BlueGene/P machines were ramping up production. But the company did not provide many details about the architecture, except that it would pack 1.6 million cores into a single cabinet, would have 1.6PB of storage, a peak performance of 20 petaflops, and burn 6.6 megawatts of juice. The machine will be installed at Lawrence Livermore National Laboratory, which bought the first experimental BlueGene/L super.

This week IBM yanked a compute node and an I/O out of the prototype portion of the future BlueGene/Q super that's installed at its Watson Research Center in New York and showcased them at the SC10 supercomputing show, the first outing of the BlueGene/Q system components.To understand BlueGene/Q, you have to compare it to the prior BlueGene machines and their predecessors to see how far the design has come and why IBM still believes that the BlueGene approach — small cores, and lots of them — provides the best bang for the watt.

The original BlueGene/L machine was based on some early parallel-computing design work done in the early 1990s by IBM in conjunction with Columbia University, Brookhaven National Laboratory, and RIKEN (the big Japanese government-sponsored super lab) to make a massively parallel machine called QCDSP to do quantum chromodynamics calculations using digital signal processors.A follow-on machine called QCDOC replaced the DSPs with embedded PowerPC processors, putting 64 compute nodes on a single board that interconnected with a proprietary backplane.In December 1999, IBM ponied up $100m of its own dough to create the original BlueGene/L machine, aiming the box at massive protein-folding problems. Two years later, LLNL saw that such a machine could be used for nuclear weapons simulations and placed the first order for the prototype.By the fall of 2004, a prototype of the BlueGene/L machine became the fastest supercomputer in the world, using eight BlueGene/L cabinets and 1,024 compute nodes for a sustained performance of 36 teraflops. That machine has been upgraded many times, and now has reached its full system configuration, which includes 65,536 compute nodes and 1,024 I/O nodes (both based on 32-bit PowerPC processors).BlueGene/L held the top spot on the Top 500 ranking of supercomputers, which is based on the Linpack Fortran benchmark test, for four years. The machine is based on single-core 32-bit PowerPC 440 processors that spin at 700MHz and which are packed two cores to a die with a shared L2 and L3 cache. Each core has two floating-point units as well as memory controllers, on-chip Gigabit Ethernet interfaces, and the proprietary interconnect that implements a 3D torus interconnect (derived from the Columbia University machines) that runs the Message Passing Interface (MPI) clustering protocol to lash the nodes together like oxen pulling a cart.The BlueGene/L machine at LLNL, which was first installed in 2005 and which has been upgraded a number of times, has 131,072 cores, 32TB of aggregate main memory, a peak performance of 367 teraflops, a sustained performance of 280.6 teraflops on the Linpack test, and burns around 1.2 megawatts. The machine is air-cooled.IBM's currently selling massively parallel box is the BlueGene/P, which puts four 850MHz PowerPC 450 cores on a chip with the memory controllers, floating point unit, and BlueGene interconnect on the chips as well as a beefed-up 10 Gigabit Ethernet controller and the old Gigabit Ethernet port on the chip. Those PowerPC 450 cores are still 32-bit units, by the way.Each BlueGene/P node can support 2GB of main memory (512MB for each core), and the 3D torus has 5.1GB/sec of bandwidth and somewhere between 160 nanoseconds and 1.3 microseconds of MPI point-to-point latency between its nearest peers in a single node — that's a factor of 2.4 more bandwidth and about 20 per cent lower latency.The BlueGene/P collective network that brings the nodes together has 1.7GB/sec of bandwidth per port (2.4 times that of the BlueGene/L machine) and there are three ports per node that have a 2.5 microsecond latency talking to other nodes. In a worst-case scenario, where a node has to make 68 hops across 72 racks in the 3D torus to reach another node to get data, the latency is 5 microseconds, a big improvement over BlueGene/L, which took 7 microseconds to make the same hops.

An optical 10 Gigabit Ethernet network links the BlueGene/P nodes to the outside world and there is a Gigabit Ethernet network for controlling the system. The BlueGene/P system puts 1,024 compute nodes in a rack and from 8 to 64 I/O nodes (which plug into the same physical boards as the compute nodes) per rack. The machine delivers 13.9 teraflops per rack and can scale up to 256 racks, for a 3.56 petaflops of peak (not sustained) number-crunching performance across more than 1 million cores.The BlueGene/Q nodes, like their BlueGene/L predecessors, were air-cooled and put compute and I/O nodes on the same node boards. The BlueGene/P machines crammed twice as many cores onto a chip module (four cores instead of two) and twice as many compute nodes (32 instead of 16) onto a single compute drawer, basically quadrupling the cores and nearly quintupling floating-point performance.The power drain on BlueGene/P also went up by a factor of 1.5, with a petaflops of peak oomph burning about 2.9 megawatts. But the performance per watt increased by 9 per cent, so it was a net gain on all fronts: performance and energy efficiency.With the BlueGene/Q designs, IBM is doing a number of different things to boost the performance and energy efficiency of the massively parallel supers. First, the BlueGene Q processors — called BGQ for short at IBM — bear some resemblance to IBM's Power7 chip used in its commercial servers, and an even stronger resemblance to the Power A2 "wire-speed" processors, which El Reg discussed in detail this year as they were announced. Like these two commercial chips, the BlueGene/Q processor is a 64-bit chip with four threads per core. The BlueGene/Q processor module is a bit funky in that it has 17 cores on it, according to Brian Smith, a software engineer for the product who was demonstrating the compute and I/O modules at the SC10 expo. On that BGQ processor, one of the cores will run a Linux kernel and the other 16 are used for calculations, according to Smith.The cores used in the BlueGene/Q prototype run at 1.6GHz, compared to the 2.3GHz speed on the sixteen-core Power A2 wire-speed processor. (The cores could be the same or very similar on both chips.) With the BlueGene/Q super, not only is the BGQ chip moving to 64-bits, but it also has four threads per core to increase its efficiency.

By Cat Techie: Cyber Terror Attacks & Cyber Terrorism

noreply@blogger.com (cattechie) — Mon, 22 Nov 2010 10:59:00 +0000

Article submitted by Cat Techie

The changing face of security threats must be understood by enterprises and consumers alike. We delve into the new risks they pose, just how vulnerable you are, and what can you do about it; along with useful advice for CIOs on enterprise security.

The president gets five threatening emails

Credit card numbers and other personal information peddling for less than a dollar a record Information stealing Trojan poses as Microsoft Windows patch Russia filters Internet traffic from Georgia: Google Earth being misused by militants in Gaza strip to launch attacks on Israel: HSBC loses disk containing details of around 400,000 customers.News like above is enough to send shivers down anyone's spine, be it an enterprise, individual, or the govt. But alas, it's all true. Increasingly, the news headlines everywhere are getting filled with security incidents that are more focused and malicious. It's no longer about a script-kiddie breaking into an organization's server just for kicks or to hack a website just to leave a funny message there. Security incidents the world over are being committed with a very clear and malicious objective, which could be financial gain, plan for a terrorist attack, or propaganda. In other words, security threats have really changed and taken a much more gruesome shape than you could ever imagine. It will only get worse in the future, so you have to be ready for it. Today, terror is everywhere, and there's a dire need to combat it at all levels. This special story from PCQuest will focus on various aspects of security, strategies to adopt, and tools to combat it. We'll focus on different kinds of security threats for different types of audience, along with the strategies and tools to combat them. We'll look at cyber-terrorism, what it means for different people, and how to combat it.

Just how vulnerable you are

Security incidents are different for different parts of the society, so measures taken to safeguard against them also have to be different. For enterprises, security could mean protecting critical information from getting stolen or preventing a virus from causing significant downtime. For an individual, security could mean preventing loss of personal information like credit card or bank account details. For the govt, security could mean ensuring that national secrets are well-guarded, senior leaders are protected, and citizens are safe. But before you can do that, you have to first understand the nature of security threats that you're most vulnerable to.

Enterprise security trends

If you feel your IT infrastructure is safe from any kind of security breaches, well think again. That's because there's no such thing as a boundary for your organization's network anymore, thanks to the growing number of mobile users and Internet based applications. Your users will need access to your network from everywhere, be it a hotel, cyber cafe, airport, or railway station. They will access it from all sorts of networks, putting far more stress on your network than ever before.There are many more entries to watch in the organization, many more end points to secure, and a lot more sensitivity towards protecting information theft.The other key trend is that security threats are no longer being carried out by college pass-outs wanting to bring down a website or portal just for kicks. Security attacks have now become more serious, and they're being conducted by people with a criminal bent of mind for information theft, financial gain, or other malicious reasons.There is of course, more malware than ever before. In fact, the amount of malware created last year was more than the combination of all malware ever created till date. This clearly indicates that with increasing penetration of the Internet, both the good as well as bad guys have better connectivity and reach.Last key trend in enterprise security is that today the focus of security threats is not just on the infrastructure. It's also on stealing information. So organizations must go beyond setting up firewalls, anti-virus, and anti-spam software.

Consumer security trends

If you think you're safe from prying eyes on the Internet, think again. Today, there are more bank accounts, credit cards and personal information available for purchase on the Internet than ever before, and you'll be shocked at the prices they sell them for (see table on previous page). Each record could be available for less than a dollar if purchased in bulk. Premium accounts, with higher bank balance or credit limit sell at higher prices.

Email tracing of Ahmedabad blasts

How Cyberoam and their technical support team helped to trace and identify the IP Address of Waghodia Dental Institute, Vadodara after the Ahmedabad bomb blast.

1. An email is sent to IndiaTV news channel giving some information on the blasts. From the email, police was able to track the sender's IP address which is traced to some web hosting company. The web hosting company finally traced the IP Address to Waghodia Dental Institute in Vadodara.
2. A Cyberoam device is installed at the institute. The support department of the institute is told to determine the exact computer from where the mail was sent.
3. The device is able to tell which websites were surfed at the time when the mail was sent.
4. From the websites, IP addresses of the same range were matched.
5. Finally the website is identified: abdultaiyeb.com. This was a web based proxy service that the terrorists used.
6. With the help of these reports, the IP Address of the computer from where this site was viewed is identified. Interestingly, the computer had a static IP address, and belonged to one of the institute's internal labs. 3. The police seized the computer for further investigation.

Credit card details can be stolen during online or offline transactions. Online, you might land up on a fake site, which cons you into shelving out the details. Or there could be an information stealing Trojan sitting on your machine. Offline, your credit card could get cloned at a restaurant or any other place. For instance, there are tiny credit card reading machines available, which a person could simply swipe your card on before swiping it on the actual terminal. And you thought that giving your credit card to the waiter in your favorite restaurant was safe!

Web 2.0 has been a boon for everyone, but it could become a bane if you're not careful. Just as you have access to so much information on the web, and so many social networking sites to interact on, so do the bad guys. So we all obviously know what that means! They can coordinate better and react more quickly to vulnerabilities.So while you're busy watching that YouTube video, a Trojan might be quietly be installing itself in your system, and bringing along its other friends like keyloggers, bots, etc. Rest as they say, is history.We all know the story of phishing emails pointing you to a fake website to extract your personal information. But now, things are taking a different turn. To take an example, suppose you receive an email pointing you to an 'interesting' website from where you could download some 'hot' pictures of a known celeb. But along with the picture, you end up downloading certain file infectors. These can then use your precious bandwidth to launch a deadly Denial of Service attack on other websites. So guess who'll get caught for doing this attack? You of course!Incidentally, what that means is that it's not just bank sites that are bieng faked. Any site that's not been hardened against vulnerabilities could get infected, causing you to download Trojans.

---Like this post, Just leave a comment as your feedback. If you want us to post an article on some specific topic OR have a suggestions for us...you can also drop an email on amarjit@freehacking.net

--- You may write us on cyberterrors@gmail.com

Ask Cat Techie Hacker, Vaidehi Sachin & Amarjit Singh: Unite Hackers of India Frequently Ask Questions (FAQ's)

noreply@blogger.com (cattechie) — Mon, 22 Nov 2010 10:57:00 +0000

Ask Cat Techie Hacker, Vaidehi Sachin & Amarjit Singh: Unite Hackers of India Frequently Ask Questions (FAQ's)

Is it true that only Certified can join the campaign??? What is the requirement to join this?

This campaign is against Cyber Terrorism for people who are anti Indian. There is no legal certification or formal qualification to join this cause .So whether you are a Black Hat, White Hat or Grey hat id doesn’t really matter .We want to unite all the hackers in the India under one roof for their benefit, and put their skills in right and approved manner.

We do not have certificate of Ethical Hacking. We learned it from books, online tutorials/videos & such sites. We are neither a part of any group or hacked any sites. We want to work for India as an Ethical Hacker if we get a chance & proper platform. Can we join??

You need not have Certification to join this cause. As long as you have the knack, skills and aptitude and above all since the passion to work for India is evident please join us and we will give you a platform to address everyone. This cause is to secure our country from cyber evils, and let us prove that we the indians are best at it.

Once we join this young cyber army, in future if Indian Gov. provides us a project to hack website or steal the data, will they give us protection???
Firstly, the Indian Government will never award you a project to hack any website or steal the data since it is against Indian Law.Under The Information Technology (Amendment) Act, 2008, Cyber-terrorism is punishable with life imprisonment. Cyber offences such as identity theft, cyber-stalking, cyber harassment, spoofing and hacking are the punishable offences under this section. The IT (Amendment) Act, 2008 was passed by both Houses of Parliament on December 23, 2008. It was notified after the assent of the President on February 5, 2009. without sabotaging others interest we can secure ourself and can providesecurity cover.

Who will take forward this cyber issue in front of Hon. President of India?
The platform which will unite all the hackers will serve to voice our opinion and will be noticed by the Government. So let’s hope for the best that Hon. President of India will initiate the process of some amendments to be made.

I am a Black hat and do not want to reveal my identity. How can I join?
There has to be some sort of Identity by which people can know you and you are recognized for your efforts for the development of the nation. The others in this community will surely applaud you for your efforts.

Will it be beneficial for my career prospects also? How?
As I had mentioned earlier also that our objective is to Unite Hackers of all types in order to make our country cyber protected. So you will surely get name and fame in your career even if you have contributed a drop in this ocean of Cyber Hacking. As far as government is concerned it is still unethical or illegal according to them even if you have India’s interest in mind.

Can I join this army officially after completing my college? I am very good in hacking and security?
There is nothing official or unofficial about this army, it’s the perspective which matters. The murderer has a knife in his hand as a weapon to kill his victim. Similarly the doctor also has a knife in his hand to save the life of a patient. So one takes away a human being’s life while the other saves the life . every skill has two different sides,and we need to make best choice. So if you are talented in hacking and security and want to channelise your skills and energies for India you are always welcome to join us.

I am thinking about fighting against hackers who are doing identity theft, virus that spreads, and trojan. I'm thinking of making files that will shutdown hacker's systems who are doing crimes. (Posted by Danial)
Dear Danial i welcome your suggestion fighting against hackers those who are committed to do only wrong. if you are capable, then we support you. but once hacker joins the organisation identity theft wont be a big issue.

Sir, I am very much eager to learn Computer Hacking. i want to Join Indian Cyber Army & Fight Cyber Terror for my Country. Sir, it will be a great achievement if i can join your league.
Thanking you with regards,
RAJENDRA PRASAD BHATTACHARYA KOLKATA -
Dear Rajendra we are actually not here to support any perticular hackers group. If you want to fight cyber terror we are here to provide you platform.

What if I am Pakistani and want to join the camp to secure my country against Indian hacker?
well you have every right to protect your country from cyber terror not only from India, even from other countries, which are equally threat fro India. You can deffinately form a unit in Pakistan and unite hackers to serve your country, our organisation would deffinately extend the support. if we all decide to protect our contry than attacking others, 50% of war stalls here itself, wish you luck

Do you personally hate Pakistan hackers? because in you book cyber terror you have exposed many of our country hackers?
Sad, there are lots of misunderstandings and misconseptions regarding this book.as a writer i have tried putting light to hidden dark world, irrespective of who so ever it is. I am sure you will be surprised to read about those hackers, hidden in the gone phase and existing with over rated hype. I am not against any country.

I know you will not publish this question but still I ask you, as you posted a comment that,unixroot and the hacker's news is belongs to a hacker. if you are uniting hackers then why attacking him? why cant he have his news portal as others do have? why cant you controll Amarjit singh for what he is doing?
I would have
No, I am not scared of writing the truth. Why you thought I won’t be publishing this question? First ..yes, UNIX root and the Hacker’s news has complete right to publish news or execute their freedom as media. I was against the identity theft; no media has ever hidden their face and utilized such kind of gimmicks. From past few days there were attacks on the bloggers in the name of yellow journalism even unixroot did the same. I was expecting hacker’s news to possess some above intellect than the other bloggers but the agenda itself was wrong. I just told the hacker to come in lime light with guts and introduce himself to his beloved readers. I still support Hackers news because I have got nothing personal against them.As far as Amarjit is concerned, it is his personal rivalry with some people or group. What he is doing is his personal issue; you all unite and disagree, ban reading his blog, don’t approve his post, retaliate and see what happens. Expecting from me to do this is wrong. He has his personal blog to put his personal thought across you all. I have no right to encroach at his right of expressions. More over whatever he is doing may not be hundred percent right but I am sure it’s not even totally wrong. It’s you the readers need to take a call here.

Your are wellcome to ask anything at cattechie@gmail.com & amarjit@freehacking.net or drop a private message to CAT. The answers would be published every Sunday and Thrusday.

Ask Cat Techie Hacker, Vaidehi Sachin & Amarjit Singh: Unite Hackers of India Frequently Ask Questions (FAQ's)

--- You may write us on cyberterrors@gmail.com

Cyber Terror & Cyber Terrorism: Attacks & Cases by Cat Techie

noreply@blogger.com (cattechie) — Mon, 22 Nov 2010 06:43:00 +0000

Article submitted by Cat Techie

The president gets five threatening emails

Just how vulnerable you are

Enterprise security trends

Consumer security trends

Email tracing of Ahmedabad blasts

How Cyberoam and their technical support team helped to trace and identify the IP Address of Waghodia Dental Institute, Vadodara after the Ahmedabad bomb blast.

---Like this post, Just leave a comment as your feedback. If you want us to post an article on some specific topic OR have a suggestions for us...you can also drop an email on amarjit@freehacking.net

Cyber Terror

noreply@blogger.com (cattechie) — Mon, 22 Nov 2010 00:49:00 +0000

The president gets five threatening emails

Just how vulnerable you are

Enterprise security trends

Consumer security trends

Email tracing of Ahmedabad blasts

How Cyberoam and their technical support team helped to trace and identify the IP Address of Waghodia Dental Institute, Vadodara after the Ahmedabad bomb blast.

CAT TECHIE Hacker Cracked All Pakistani Facebook Friends

noreply@blogger.com (cattechie) — Sun, 21 Nov 2010 22:11:00 +0000

CAT TECHIE Hacker Cracked All Pakistani Facebook Friends

Rafay Baloch introduces himself as an Ethical Hacker and a Security expert from Pakistan; then Adnan Anjum whom I call as my Pakistani brother, then Junaid, Umer rock, Ibrarz Buttz, Hassan ali khan,there are so many pakistan friends are in my list. They all used to chat with me every day. There is one more special friend of mine Jerry Hassan whith whom i have special bonding. All these hackers played an important role in my reserch work. Not only this, with some of them I have shared tremendous comfort level. Many a times I try doing social engineering with them to dig about pak cyber info but they just avoid commenting. some of them initiate guiding me over many such issues, many of them have typical love and hate relation with me.They have become my distinct family. Recentely I was hospitalised but I never thought that these friends can be so restless. Thier Messages were over flowing through my mailbox and blog I was so happy because I never expected them to be so caring. Rafay used to call me frequently and talk to me to solace about my conditions.

I was going through all my messages and in a while I came across one message, I couldn't hold back my tears. The message said,“hey sister your brother from Pakistan wants you to live long with all the happiness. Today I cried for and made prayers to Allah saying that to make you fit as soon as possible meri umar tummhe lagjayee.” I never expected any Pakistani hacker to be so kind to me. Actually this country is somewhere in my roots , so the countrymen, i love pakistan as much as i love India. when I am forced to choose one, i preffer going to hell than making a choice, its like asking a child to make choice between mother or a father. difficult but crood..

One day one more face book friend a Pakistani hacker asked me “do you know where I am?” I thought he will say I am in India. But he replied that “I am in Poland”,

“Hmmmm… when did go there??” I asked; he said “just aapse chat karte karte.” After some time he told me that he is hacking some site and have already rooted it and planning to deface that site. I just popped out of my window and thought to myself “my god such a bull shit. He came back to my window gave me link and said “hey! Look at this…when I clicked the link, it was some of the defaced site. I couldn't resist and started fighting with him, he just went offline, the another Pakistani friend asked me what happened told him that so and so had happened, later even he disappeared from chat box and joined me after an hour

Pakistani hacker- kaise mizaz hai apke

Me- not good

Pakistani hacker- want to laugh for a while???

Me- no

Pakistani hacker- dekh too lo ekk bar…

Before I could type anything he sent me link when I clicked in I saw that the site was restored. At that moment my happiness knew no bound I was like “WwWooOoowWwwW”…(i became baby and started dancing, that moment was very special in my life)……

Then he wrote ' choti si baat pe dil udas mat karna… tumhara bhaii hai na?

there is another cute little hacker Swati, hassan ali khan. he use to come in my chat box with a defaced link a day, and we used to argue over stupid things thats how he used to neglect and leave, but in the recent past this little boy has touched my heart with some of his innocent Gestures. In this article i am not mentioning the name of my hacking mentor of Pakistan, but becuase him today i know atleast the a b c d...of hacking, this is very intersting happening of my life as a hacker.One more friend IBRARZ i can never forget because i use to share every small happening of my life with him, humble,curious yet very much Mysterious friend, how he came my way how he disapperard is very long and traumatic story to know. But while leaving my windows he took me to different stage of investigations what happened after that just read it in my book, there are so many such good bad and ugly experiences i have written in my book Cyber Terror. Beyond this the horryfing facts about hackers and hacking is worth knowing..

CAT TECHIE Hacker Cracked All Pakistani Facebook Friends

---Like this post, Just leave a comment as your feedback. If you want us to post an article on some specific topic OR have a suggestions for us...you can also drop an email on amarjit@freehacking.net

Unite Hackers of India Frequently Ask Questions (FAQ's): Ask Cat Techie Hacker, Vaidehi Sachin & Amarjit Singh

noreply@blogger.com (cattechie) — Sun, 21 Nov 2010 21:57:00 +0000

Ask Cat Techie Hacker, Vaidehi Sachin & Amarjit Singh: Unite Hackers of India Frequently Ask Questions (FAQ's)

Is it true that only Certified can join the campaign??? What is the requirement to join this?

Your are wellcome to ask anything at cattechie@gmail.com & amarjit@freehacking.net or drop a private message to CAT. The answers would be published every Sunday and Thrusday.

Ask Cat Techie Hacker, Vaidehi Sachin & Amarjit Singh: Unite Hackers of India Frequently Ask Questions (FAQ's)

---Like this post, Just leave a comment as your feedback. If you want us to post an article on some specific topic OR have a suggestions for us...you can also drop an email on amarjit@freehacking.net

Unite Hackers : Unite All Hackers to Protect Country

noreply@blogger.com (cattechie) — Sun, 21 Nov 2010 20:31:00 +0000

Unite Hackers : Unite All Hackers to Protect Country

"This Blog is started with an intension to create difference in hacker’s life, unite them and utilise their skills in nation’s interest. Our country has best of potential united we can make our cyber world secured and protected from evil "

Support this campaign to unite all hackers of India under one roof to protect our country and make it cyber crime free. All hackers are not Criminals; they are the Heroes of the Computer Revolution. Let us make this country cyber protected with these young think tank, 73% hackers of India are in the age group of 12 to 19, they don’t have direction. 5% hackers are between the age group of 30 plus, and rest of the hackers working for some Indian companies or the IT brands and teaching hacking as security measures are called ethical hackers. But most of the hackers either in to this due to passion or due to compulsion of earning bread. So far the recorded data of hackers in crime is just 2%.

Let us unite these think tanks and spread awareness. This campaign is tuff but not difficult. We will approach Hon. President of India along with appeal and signatures through this campaign."Cyber crime is the latest threat to India's security with those inimical to its interests hiring experts to spy on companies and vital networks. There has been an increase of 200 per cent in cyber crime cases in India in the last three years and that is an alarming trend. The new tactics are more towards data theft like espionage on some other companies, working for some foreign intelligence agencies sitting in India, SMS and mobile call forging. At the age of 18, some of the hackers found loopholes like "Session Hijacking" & "Cross Site Scripting" in popular social networking websites. The biggest worry is that officials of Indian investigating agencies are not competent enough to deal with techno crimes.

Investigating agencies are still lagging behind in terms of technologies or techniques to actually tackle cyber crimes. Not even two percent of the officials know what Voice is over Internet Protocol (VoIP), its use or how to take precautions. The hacking of mobile numbers and for making calls and sending SMS is another area of concern. Anyone can use or misuse a mobile number to send SMS or make a call. This technology was misused in the 26/11 bombings. But all the servers and the infrastructure required to commit this cyber crime is not available in India. "The Indian IT law is not defined to tackle such crimes using mobile phones and that is dangerous. Social networking sites are not at all safe and hackers exploit and misuse vital information from such sites for indulging in crime.

When we lack experts in our own government system, why not unite these India hackers? They are also patriots and care for this nation’s security as any other citizen of this country. Why not assign these young hackers for the internet security and make our country cyber terror free.

Unite Hackers : Unite All Hackers to Protect Country

---Like this post, Just leave a comment as your feedback. If you want us to post an article on some specific topic OR have a suggestions for us...you can also drop an email on amarjit@freehacking.net

My facebook friends from pakistan

noreply@blogger.com (cattechie) — Sun, 21 Nov 2010 12:24:00 +0000

Rafay Baloch introduces himself as an Ethical Hacker and a Security expert from Pakistan; then Adnan Anjum whom I call as my Pakistani brother, then Junaid, Umer rock, Ibrarz Buttz, Hassan ali khan,there are so amny pakistan friends are in my list. They all used to chat with me every day. There is one more special friend of mine Jerry Hassan whith whom i have special bonding. All these hackers played an inportant role in my reserch work. Not only this, with some of them I have shared tremendous comfort level. Many a times I try doing social engineering with them to dig about pak cyber info but they just avoid commenting. some of them initiate guiding me over many such issues, many of them have typical love and hate relation with me.They have become my distinct family. Recentely I was hospitalised but I never thought that these friends can be so restless. Thier Messages were over flowing through my mailbox and blog I was so happy because I never expected them to be so caring. Rafay used to call me frequently and talk to me to solace about my conditions.

One day one more face book friend a Pakistani hacker asked me “do you know where I am?” I thought he will say I am in India. But he replied that “I am in Poland”,

“Hmmmm… when did go there??” I asked; he said “just aapse chat karte karte.” After some time he told me that he is hacking some site and have already rooted it and planning to deface that site. I just popped out of my window and thought to myself “my god such a bull shit. He came back to my window gave me link and said “hey! Look at this…when I clicked the link, it was some of the defaced site. I couldn't resist and started fighting with him, he just went offline, the another Pakistani friend asked me what happened told him that so and so had happened, later even he disappeared from chat box and joined me after an hour

Pakistani hacker- kaise mizaz hai apke

Me- not good

Pakistani hacker- want to laugh for a while???

Me- no

Pakistani hacker- dekh too lo ekk bar…

Then he wrote ' choti si baat pe dil udas mat karna… tumhara bhaii hai na?
there is another cute little hacker Swati, hassan ali khan. he use to come in my chat box with a defaced link a day, and we used to argue over stupid things thats how he used to neglect and leave, but in the recent past this little boy has touched my heart with some of his innocent Gestures. In this article i am not mentioning the name of my hacking mentor of Pakistan, but becuase him today i know atleast the a b c d...of hacking, this is very intersting happening of my life as a hacker.One more friend IBRARZ i can never forget because i use to share every small happening of my life with him, humble,curious yet very much Mysterious friend, how he came my way how he disapperard is very long and traumatic story to know. But while leaving my windows he took me to different stage of investigations what happened after that just read it in my book, there are so many such good bad and ugly experiences i have written in my book Cyber Terror. Beyond this the horryfing facts about hackers and hacking is worth knowing..

FAQ - ask vaidehi

noreply@blogger.com (cattechie) — Sun, 21 Nov 2010 06:53:00 +0000

ask vaidehi

Is it true that only Certified can join the campaign??? What is the requirement to join this?This campaign is against Cyber Terrorism for people who are anti Indian. There is no legal certification or formal qualification to join this cause .So whether you are a Black Hat, White Hat or Grey hat id doesn’t really matter .We want to unite all the hackers in the India under one roof for their benefit, and put their skills in right and approved manner.
We do not have certificate of Ethical Hacking. We learned it from books, online tutorials/videos & such sites. We are neither a part of any group or hacked any sites. We want to work for India as an Ethical Hacker if we get a chance & proper platform. Can we join??You need not have Certification to join this cause. As long as you have the knack, skills and aptitude and above all since the passion to work for India is evident please join us and we will give you a platform to address everyone. This cause is to secure our country from cyber evils, and let us prove that we the indians are best at it.
Once we join this young cyber army, in future if Indian Gov. provides us a project to hack website or steal the data, will they give us protection???
Firstly, the Indian Government will never award you a project to hack any website or steal the data since it is against Indian Law.Under The Information Technology (Amendment) Act, 2008, Cyber-terrorism is punishable with life imprisonment. Cyber offences such as identity theft, cyber-stalking, cyber harassment, spoofing and hacking are the punishable offences under this section. The IT (Amendment) Act, 2008 was passed by both Houses of Parliament on December 23, 2008. It was notified after the assent of the President on February 5, 2009. without sabotaging others interest we can secure ourself and can providesecurity cover.
Who will take forward this cyber issue in front of Hon. President of India?
The platform which will unite all the hackers will serve to voice our opinion and will be noticed by the Government. So let’s hope for the best that Hon. President of India will initiate the process of some amendments to be made.
I am a Black hat and do not want to reveal my identity. How can I join?
There has to be some sort of Identity by which people can know you and you are recognized for your efforts for the development of the nation. The others in this community will surely applaud you for your efforts.
Will it be beneficial for my career prospects also? How?
As I had mentioned earlier also that our objective is to Unite Hackers of all types in order to make our country cyber protected. So you will surely get name and fame in your career even if you have contributed a drop in this ocean of Cyber Hacking. As far as government is concerned it is still unethical or illegal according to them even if you have India’s interest in mind.
Can I join this army officially after completing my college? I am very good in hacking and security?
There is nothing official or unofficial about this army, it’s the perspective which matters. The murderer has a knife in his hand as a weapon to kill his victim. Similarly the doctor also has a knife in his hand to save the life of a patient. So one takes away a human being’s life while the other saves the life . every skill has two different sides,and we need to make best choice. So if you are talented in hacking and security and want to channelise your skills and energies for India you are always welcome to join us.
I am thinking about fighting against hackers who are doing identity theft, virus that spreads, and trojan. I'm thinking of making files that will shutdown hacker's systems who are doing crimes. (posted byDanial)
Dear Danial i welcome your suggestion fighting against hackers those who are committed to do only wrong. if you are capable, then we support you. but once hacker joins the organisation identity theft wont be a big issue.
Sir, I am very much eager to learn Computer Hacking. i want to Join Indian Cyber Army & Fight Cyber Terror for my Country. Sir, it will be a great achievement if i can join your league.
Thanking you with regards,
RAJENDRA PRASAD BHATTACHARYA KOLKATA -
Dear Rajendra we are actually not here to support any perticular hackers group. If you want to fight cyber terror we are here to provide you platform.
What if I am Pakistani and want to join the camp to secure my country against Indian hacker?
well you have every right to protect your country from cyber terror not only from India, even from other countries, which are equally threat fro India. You can deffinately form a unit in Pakistan and unite hackers to serve your country, our organisation would deffinately extend the support. if we all decide to protect our contry than attacking others, 50% of war stalls here itself, wish you luck
Do you personally hate Pakistan hackers? because in you book cyber terror you have exposed many of our country hackers?
Sad, there are lots of misunderstandings and misconseptions regarding this book.as a writer i have tried putting light to hidden dark world, irrespective of who so ever it is. I am sure you will be surprised to read about those hackers, hidden in the gone phase and existing with over rated hype. I am not against any country.
I know you will not publish this question but still I ask you, as you posted a comment that,unixroot and the hacker's news is belongs to a hacker. if you are uniting hackers then why attacking him? why cant he have his news portal as others do have? why cant you controll Amarjit singh for what he is doing?
I would have

No, I am not scared of writing the truth. Why you thought I won’t be publishing this question? First ..yes, UNIX root and the Hacker’s news has complete right to publish news or execute their freedom as media. I was against the identity theft; no media has ever hidden their face and utilized such kind of gimmicks. From past few days there were attacks on the bloggers in the name of yellow journalism even unixroot did the same. I was expecting hacker’s news to possess some above intellect than the other bloggers but the agenda itself was wrong. I just told the hacker to come in lime light with guts and introduce himself to his beloved readers. I still support Hackers news because I have got nothing personal against them.As far as Amarjit is concerned, it is his personal rivalry with some people or group. What he is doing is his personal issue; you all unite and disagree, ban reading his blog, don’t approve his post, retaliate and see what happens. Expecting from me to do this is wrong. He has his personal blog to put his personal thought across you all. I have no right to encroach at his right of expressions. More over whatever he is doing may not be hundred percent right but I am sure it’s not even totally wrong. It’s you the readers need to take a call here.

your are wellcome to ask anything at cattechie@gmail.com or drop a private message to cat the answers woul be published every Sunday and Thrusday.

campaign to unite all hackers

noreply@blogger.com (cattechie) — Sun, 21 Nov 2010 05:55:00 +0000

"This Blog is started with an intension to create difference in hacker’s life, unite them and utilise their skills in nation’s interest. Our country has best of potential united we can make our cyber world secured and protected from evil "
support this campaign to unite all hackers of India under one roof to protect our country and make it cyber crime free. All hackers are not Criminals; they are the Heroes of the Computer Revolution. Let us make this country cyber protected with these young think tank, 73% hackers of India are in the age group of 12 to 19, they don’t have direction. 5% hackers are between the age group of 30 plus, and rest of the hackers working for some Indian companies or the IT brands and teaching hacking as security measures are called ethical hackers. But most of the hackers either in to this due to passion or due to compulsion of earning bread. So far the recorded data of hackers in crime is just 2%.
Let us unite these think tanks and spread awareness. This campaign is tuff but not difficult. We will approach Hon. President of India along with appeal and signatures through this campaign."Cyber crime is the latest threat to India's security with those inimical to its interests hiring experts to spy on companies and vital networks. There has been an increase of 200 per cent in cyber crime cases in India in the last three years and that is an alarming trend. The new tactics are more towards data theft like espionage on some other companies, working for some foreign intelligence agencies sitting in India, SMS and mobile call forging. At the age of 18, some of the hackers found loopholes like "Session Hijacking" & "Cross Site Scripting" in popular social networking websites. The biggest worry is that officials of Indian investigating agencies are not competent enough to deal with techno crimes. Investigating agencies are still lagging behind in terms of technologies or techniques to actually tackle cyber crimes. Not even two percent of the officials know what Voice is over Internet Protocol (VoIP), its use or how to take precautions. The hacking of mobile numbers and for making calls and sending SMS is another area of concern. Anyone can use or misuse a mobile number to send SMS or make a call. This technology was misused in the 26/11 bombings. But all the servers and the infrastructure required to commit this cyber crime is not available in India. "The Indian IT law is not defined to tackle such crimes using mobile phones and that is dangerous. Social networking sites are not at all safe and hackers exploit and misuse vital information from such sites for indulging in crime.
When we lack experts in our own government system, why not unite these India hackers? They are also patriots and care for this nation’s security as any other citizen of this country. Why not assign these young hackers for the internet security and make our country cyber terror free.

Big Security Hole in GOOGLE

noreply@blogger.com (cattechie) — Sat, 20 Nov 2010 19:54:00 +0000

Update: The site is now down. Here’s what it looked like:

Facebook would probably just consider this a feature, but the rest of us will definitely consider this a big security hole. The creator of http://guntada.blogspot.com (don’t visit that site just yet) emailed us this morning to explain.

If you’re already logged in to any Google account (Gmail, etc.), and visit that site, he’s harvested your Google email. And proves it by emailing you immediately.

And it even works in “incognito” mode (also known as porn mode).

What is the exploit? We don’t know, and Google has yet to respond to us about it. We note that the site doing the exploiting is on Google’s own blogging platform. One developer we spoke with was confused as well, saying:

i have no idea what this is exploiting but there’s a decent chance it has something to do with Friend Connect and the way it passes data between iFrames (ie yes, it very well could be opensocial related). whatever is going on it’s an extremely serious security and privacy violation and i am confident google will address this in moments counted in minutes.

i can’t recall ever having seen anything like this on a major IdP’s website. it’s scary stuff.

If you insist on trying this yourself (hey, I did), the email to you will likely be in your spam filter.

This isn’t a particularly dangerous exploit, but it sure is something a lot of people would love to have on their own sites. The ability to harvest emails from anyone already signed into Google, not to mention just see exactly who’s visiting the site, is extremely valuable. See the second comment thread here for a related issue with App Engine a month ago.

SOURCE: Techcrunch & Satyajit Das

---Like this post, Just leave a comment as your feedback. If you want us to post an article on some specific topic OR have a suggestions for us...you can also drop an email on amarjit@freehacking.net

Fight Cyber Terrorism & Cyber Crime: New Laws Against Hackers in China

noreply@blogger.com (cattechie) — Sat, 20 Nov 2010 18:02:00 +0000

Fight Cyber Terrorism & Cyber Crime: New Laws Against Hackers in China

According to Gu Jian, Deputy Director of the Network Security Protection Bureau of the Ministry of Public Security (MPS), China is all set to fight against the hacking attacks as the government is drafting law governing the punishment of hackers and other cyber offences, as reported by ShanghaiDaily on November 11, 2010.

He further highlighted that presently, lawmakers are working on the judicial interpretations of the new law, which will be released by the end of 2010.

Gu stated that nearly 80% of the machines in China are facing the problem of botnet attacks, whereby hackers use malicious software to attack and compromise machines.

Remarkably, botnet can be defined as a network of systems that have had malware installed into them and are managed by cybercrooks, while the users are not aware of the computer hacking.

Disturbingly, according to a report released in earlier 2010 by the China National Computer Network Emergency Response Technical Team (CNCERT) revealed that 71% of the global botnets are placed in China. Of which, majority are administered by hackers of foreign origin.

Commenting on the finding, Gu stated that, China, a land of around 440 Million netizens is the key victim of cyber criminals, as reported by the web portal China on November 11, 2010. Gu also said that over 80% of the online attacks targeting China's government agencies official websites come from foreign locations.

Gu further highlighted that, to fight against overseas criminals, China has been making remarkable attempts to co-operate with overseas government agencies. Since 2004, China's public security departments have offered assistance to around 41 countries in 721 online criminal instances.

Until now, Chinese police have set up bilateral cooperation agreements with 30 nations including the United States, Germany, and the UK.

However, according to Gu, existing collaborations between various governments are far away from fighting against overseas cybercrimes.

Conclusively, Gu stated that late response is one of the major problems. Since 2009, China's police agents have asked for investigation assistance for 13 cybercrimes to the U.S. FBI (Federal Bureau of Investigation), including instances concerning fake bank website and child pornography. But, the Chinese police have not got any response till now.

SOURCE» SPAMfighter News

Fight Cyber Terrorism & Cyber Crime: New Laws Against Hackers in China

---Like this post, Just leave a comment as your feedback. If you want us to post an article on some specific topic OR have a suggestions for us...you can also drop an email on amarjit@freehacking.net

The Hacker News Become The Fakers opppss Jokers News

noreply@blogger.com (cattechie) — Sat, 20 Nov 2010 06:01:00 +0000

The Hacker News Become The Fakers opppss Jokers News

THIS IS A THE WAR IS IN BETWEEN MR.AMARJIT SINGH vs Well Established NATIONAL NEWS NETWORK... Heeeyyyyaaaaaaahhhhheeeeeeeee.....LOLZZZ.......

UNIX ROOT is a Metilda Joe from NATIONAL NEWS NETWORK. She is a well established reporter in Well Established NATIONAL NEWS NETWORK. She is managing her blog from Queens Barclays Central Park Office (IP 188.211.XXX.XXX). Currentely she on secret mission & the mission is to catch and expose all blackhat & underground hackers. To catch them she has also launched a blog (BUT that Well Established NATIONAL NEWS NETWORK OFFICIALS ARE NOT AWARE ABOUT THIS...)

Amarjit's Profile

Amarjit Singh
THIS IS A THE WAR IS IN BETWEEN MR.AMARJIT SINGH vs Well Established NATIONAL NEWS NETWORK... Heeeyyyyaaaaaaahhhhheeeeeeeee.....LOLZZZ.......

UNIX ROOT is a Metilda Joe from NATIONAL NEWS NETWORK. She is a well established reporter in Well Established NATIONAL NEWS NETWORK. She is managing her blog from Queens Barclays Central Park Office (IP 188.211.XXX.XXX). Currentely she on secret mission & the mission is to catch and expose all blackhat & underground hackers. To catch them she has also launched a blog (BUT that Well Established NATIONAL NEWS NETWORK OFFICIALS ARE NOT AWARE ABOUT THIS...)

Whenever anyone visit that blog, they trace the location of that person. Once they get enough information, they will make a documentry...so be-aware guys....you all on the target by this NEWS NETWORK reporter. I am very happy to see that those SO CALLED NEWS NETWORK reporters messing with me....he he he he he he heeee.. thinking I am one of the biggest blackhat or underground hacker lolz....but they don't know the fact that I am a N0000000bbbbbb......and also not underground. NOW THE WAR IS IN BETWEEN MR.AMARJIT SINGH vs Well Established NATIONAL NEWS NETWORK...

Well I personally invetigate this and found that Metilda Joe is really from NATIONAL NEWS NETWORK. Pls NOTE that those NATIONAL NEWS NETWORK OFFICIALS ARE NOT AWARE ABOUT all the methods using by her to expose hackers. NATIONAL NEWS NETWORK OFFICIALS are also not aware about the blog launched by her.

Yesterday so many people were accusing me for doing yello journalism, I want to show them the sample of my journalism now....Come and comment now
This is not speed breaker this is is a leg breaker

As far as Jyestha Arya is concern, I am dead sure that she will not waste her caliber on such stupid blogs, I challange the blogger to show a single post so far written by Jyestha Arya. She is my sister and 100% under my control. Before posting any thing on any blog or anywhere on Facebook, my sister is under my vigilance. About cat techie, the posts so fat i read were copy pasted from her blog. when she has her own news network with 200 employees and 20 blogs incuding www.freehacking.net which is of her brother Amarjit Singh, i don't thing she need to post any news to this kind of cheap blogs and here i dnt want to commnt on cat techie without talking to her but i cleared my doubt. As per as injector is concern all its ADMIN's themselves are confudsed and want to knw when has they given contribution to the stupid blog leaving their own reputed websites.

The only solution to this is until and unless this fake blog goes off line I am continusly my crusade against them.

As you rightly said the 18 days old blog could 100% successful in fooling the readers & hackers. Stop non sense or be prepared to face further.
Cyber Terror Book! Hacker5 is India's First Hackers Magazine. Unite All Indian Hackers.
www.freehacking.net
Hacker5 is India First Hackers Magazine! Cyber Terror Book, Fight Cyber Terror, Unite The Hackers of India, Learn Ethical Hacking, Unite Indian Hackers, .
about an hour ago · · · Comment · Share
- Root Localhost I saw your recent update and was quite shocked.If this is true then you should share this thing on your blog as well
  about an hour ago · · 1 person
  Amarjit Singh Ye to sirf trailor hai mere bhai aage aage dekh kya hota hai...PICTURE TO ABHI BAAKI HAI MERE DOST.
  about an hour ago ·
  Root Localhost Chal mai wait kar raha hun yar :P
  BTW,yeh FBI se hai ya CIA :P ?
  about an hour ago ·
  Amarjit Singh Bhai tune kiski jail mai jana hai ??
  about an hour ago ·
  Root Localhost Mujhe shak tha thoda thoda,like usney mujhey kaha apnae mail se mail karo tou mai pehlay khoob socha
  about an hour ago ·
  Amarjit Singh arre wahh.. to apne send kyo nahi ki mail bhai jaan proxy use ker lete.
  
  ek kaam karo bhai us ne apko jo bhi bola ek achi si story ready ker ke do. mai apka dukh apne blog per share karunga.
  56 minutes ago ·
  Root Localhost Okies but merai pass screenshots nahi hai
  And why anyone would need mail :D jub facebook account per insan message kar sakta hai
  54 minutes ago ·
  Jyestha Arya oye gal suno..hacker ki social engineering me mujhe taras aa raha hai. blog owner ke nam yaha mai jahir karungi to sare chakkar khake giroge.blog owner used the name og national tv netwrok, we reportrs are much clever than you people
  48 minutes ago · · 1 person
  Jyestha Arya Amarjite maine kabhi kisi tuche blog pe news nahi di hai tu dekh le,ye root iska hai kiska nam use ho raha hai ye bhi expose karte hai ab
  45 minutes ago ·
  Root Localhost Tou whats the reality jyestha?Kya amarjit sahi bol raha hai ?
  45 minutes ago ·
  Amarjit Singh Aur rooot ke bache tere ko jhoot laha tha ?? ruk tera kala chitha bhi nikaalta hu
  44 minutes ago ·
  Root Localhost Abey yar wo first comment parh kar thora samjh nahi aya :P jyestha boli root isi ka naam hai tou mai samjha she is reffering me :P yar kasam se itni hasi ayi :P
  42 minutes ago ·
  Jyestha Arya amarjit jhoot nahi bota, ye oye ye bhi farji root hai koyi. lekin isme aur thodi sachayi reflect hone baki hai jo sare hacker ko eak jhorka jhatka jor se dega.
  39 minutes ago ·
  Amarjit Singh chal teri hassi band kerta hu. kel ka post tere per paka. Emi falttu mai mera dimaag mat kharab kiya ker be. waise hi mai bhdkaa baitha hu. baad mai mat kehne ki maa bhen ek ker di. meri ek ek khabar 10000% acurate hotti hai. abhi cyber terror book mai tu bhi pad lena ki real mai AMARJIT SINGH kon hai aur loggon ko ghar tak se kaise uthaa leta hai
  38 minutes ago ·
  Root Localhost Chal bana le yar :P
  36 minutes ago ·
  Jyestha Arya oye ibrarz buttz dafa ho yahase nahi to bahot kuch samjhme aane lagega samjha farji?
  34 minutes ago · · 1 person
  Amarjit Singh Lo g. mere blog ka asal spice to ajj hi leak ho gya. chal chadd yaar.
  32 minutes ago ·
  Root Localhost Ibrarz buttz :S kya hoga jyestha ji :S
  32 minutes ago ·
  Jyestha Arya bahot kuch ji jiji farji nikal lo yaha se
  32 minutes ago ·
  Root Localhost Mai nahi nikalta :| Aur mai koi ibrarz buttz nahi :| subko paki hackers ko pata hai mai kaun hu :|
  30 minutes ago ·
  Amarjit Singh nikalna kya hai bhen..sale kanjer nu mai ban kitaa c...pir friend list vicho chukk ke bahar kudde waanho sutt dita.. kanjerr da ajj pir friend request le ker aa gya....sale sab de sab pata nahi kinaa JALIL honge
  30 minutes ago ·
  Root Localhost Amarjit tu nahi sudhrega :P
  Chal ab dekh :P
  28 minutes ago ·
  Jyestha Arya innane jalil honowicho maja aata hai
  28 minutes ago ·
  Amarjit Singh rehne de tu farji. asal photo dikane ki himat nahi tere ander aur aya bada. chal bhaag yaha se.. ijaat se chala ja nahi to pehle ki tarah kudde jaise uthaa ker bahar maarunga.
  27 minutes ago ·
  Cat Techie
  Guys its my request the hacker who runs this unix root, please come forward and admit your mistakes and expose urself. This is a call from a true journalist who loves her profession more than small time dramas
  .You all thought you can randomly take reporters for granted, but let me tell you we are journalists thats why standing strainght infront of you without hiding our face or identiry. If i come openly then the show may go worst. Its warning by Catz stop fooling peoples sentiments.
  5 minutes ago · · 1 person
  Cat Techie Amar, Jyestha controll and leve the show here.great job guys but no further action by us now let us wait ofr reaction.
  3 minutes ago · · 1 person

---Like this post, Just leave a comment as your feedback. If you want us to post an article on some specific topic OR have a suggestions for us...you can also drop an email on amarjit@freehacking.net

Pakistan Hacker KhantastiC HaXor Won: Congratulations Khantastic

noreply@blogger.com (cattechie) — Fri, 19 Nov 2010 22:57:00 +0000

Few months ago
this was his profile picture

And the winner is hacker of Pakistan- KhantastiC haXor

He leaves his statements on his defacements saying “To all the enemies of Islam, we say: By Allah, we will not Lost This War and we will continue. Or sometimes he makes his signature with the statement “This Way KhantastiC haXor Pass … My Name Is KhantastiC haXor And I will Do all I can To Raise The ISLAM n Pakistan’s Flag may be I can't Use a Weapon But I'll Use Stronger Tool and It's My skill... Why I Am Here: No reason given yet.

Fair, sharp features an average built young dude, very egoistic and intelligent maybe that’s the reason he gets head ache quite often. He is lazy lump loves to sleep, not a early bird, but very sharp and short tempered young dude. who loves Music and lives in style, electronic gadgets is his passion. This aggressive looking hacker of Pakistan not only known for his style of hacking but he is also popular amongst teen agers. his voice is very tender yet husky and sometimes speaks loud but looks clam.There are lots of myths and misconceptions about this hacker. But the most appreciating fact is that he is Very much religious and prompt Namaji , young boy who loves his country more than himself. He loves to rule this dark world on his own terms and conditions. He is one of the most famous hacker of Pakistan. He is voted as most popular hacker amongst other nominees. This hacker is even my favorite hacker and I loved writing about his good bad and ugly side of life in the second edition of “Cyber Terror”.

his defacement page pic

He is from an upper middleclass well do to family. Peshavar is his favourate place. The most interesting part of his circular is hoisting and maintaining websites, earlier he loved hacking sites all alone but now a day, he has his proper network and team. Don’t go his way he can reach to you in any means be prepared to face. That is what generally other hackers tell about him. Read most interesting story of a hacker in Cyber terror.As we have already promised a gift hamper for winner, which is with us, he can collect it on his own or can ask someone to do the needful on his behalf.

Cheers………………………

KhantastiC 209 (26%) ReXor HaXor 157 (19%)

Cyber swati 149 (18%) c0de breaker 121 (15%)

Total Votes so far: 793 (these votes are given on a popularity but not on any skill tests)

--- You may write us on cyberterrors@gmail.com

Hacking Video: Unite Hackers by Vaidehi Sachin & Amarjit Singh

noreply@blogger.com (cattechie) — Fri, 19 Nov 2010 22:38:00 +0000

Hacking Video: Unite Hackers ( http://www.freehacking.net ) by Vaidehi Sachin & Amarjit Singh

Vaidehi Sachin, Group editor of News Maker, took a revolutionary step with the support from intelligence sources, to unite all ethical & unethical hackers of India. Register them under cyber employment act & create a new young army for Cyber security of our country INDIA.The intention is to rehabilitate youth lured in cybercrime. JAI HIND..!! Any thing for India..!! Every thing for Indians..!! For more details, you can write us on amarjit@freehacking.net OR cyberterrors@gmail.com JOIN US

-------------------------------------------------

Hacker5 | India's First Hackers Magazine

http://www.freehacking.net/2010/11/hacker5-subscription-from-download-here.html

-------------------------------------------------

India's First Book on CYBER TERRORISM "Cyber Terror" Launched

http://www.freehacking.net/2010/11/first-book-on-cyber-terrorism-cyber.html

-------------------------------------------------

---Like this post, Just leave a comment as your feedback. If you want us to post an article on some specific topic OR have a suggestions for us...you can also drop an email on amarjit@freehacking.net