Category Archives: news

Site Israel di’serbu’. 11273 mass defacements. :)


Total notifications: 15237 of which 3964 single ip and 11273 mass defacements
Kebanyakkannya mengutuk tindakan komando Israel menyerang kapal bantuan Fortila tempoh hari..
Ini baru yang kena deface..
Tak kira lagi yang kena DDOS.. πŸ™‚

refer kat sini untuk maklumat lanjut..

Zeus Trojan ditemui sebanyak 74k pada PC pengguna global.

zeuspanel12

Lebih dari 74k PC di hampir 2500 organisasi di seluruh dunia sudah terganggu selama satu setengah tahun akibat jangkitan botnet yang direka untuk mencuri rahsia2 di pangkalan data tersebut dengan masuki ke laman bank, rangkaian sosial, dan sistem e-mel.

Sistem tersebut dijangkiti dengan Trojan Zeus dan botnet yang diberi nama jolokan “Kneber” selepas PC pengguna yang dijangkiti Trojan ini di hubungkan pada syarikat dan sistem kerajaan, mengikut kajian NetWitness.

The Wall Street Journal melaporkan bahawa Merck, Kardinal Health, Paramount Pictures, dan Juniper Networks adalah di antara sasaran dalam serangan itu. NetWitness berspekulasi bahawa penjahat di Eropah Timur dengan menggunakan arahan-dan-kawalan pelayan di German dihantar melalui lampiran yang mengandungi malware dalam e-mel atau link ke malware pada halaman-halaman Web dan diklik oleh pekerja dalam syarikat tersebut tanpa menyedarinya.


NetWitness mengatakan pihak mereka telah menemui lebih daripada 75 gb data-data bernilai yang dicuri semasa mereka melakukan tugas-tugas rutin mereka sebagai sebahagian daripada evaluasi rangkaian klien pada tarikh 26 Januari. Cache data yang dicuri merangkumi login syarikat identitinya sebanyak 68k, akses kepada sistem e-mel, laman perbankan online, Facebook, Yahoo, Hotmail, 2k file SSL (Secure Socket Layer) dan data-data pada individu yang dijangkiti.

Selain mencuri data tertentu, Zeus boleh digunakan untuk mencari dan mencuri file apa saja di komputer, download dan menjalankan program dan membolehkan seseorang itu untuk mengendalikan komputer dari jarak jauh.

Lebih daripada separuh daripada enjin dikompromikan juga dijangkiti dengan peer-to-peer(p2p) malware bot yang dikenali sebagai Waledac, kata syarikat itu. Hampir 200 negara yang terkena jangkitan ini, dan sebahagian besar jangkitan ditemui di Mesir, Mexico, Arab Saudi, Turki dan Amerika Syarikat.

Berita itu datang selepas Google mengumumkan sasaran serangan itu dan apa yang diyakini akan lebih daripada 30 syarikat lain yang berkaitan dan kembali ke China. McAfee memberi nama serangan ini; “Operasi Aurora”.

“Sementara Operasi Aurora menjelaskan ancaman lanjutan, jumlah syarikat dan pertubuhan yang dikompromikan semakin meningkat jika dibandingkan dengan botnet tunggal ini,” kata Amit Yoran, Chief Executive NetWitness dan Pengarah Bahagian Keselamatan Cyber Nasional. “Ini kompromi skala besar untuk rangkaian syarikat yang telah mencapai tahap penularan yang merbahaya.”

Heraldonline.com & Mahkamah.gov.my pwnd!

1st topic.

This website has been hacked on 4th of January 2010, two days after a High Court decision allowing Catholics to use β€œAllah” to describe the Christian God in the national language. WTF!?

For more stories about what is happening, just go to Herald Malaysia and read out the stories inside.. πŸ™‚

2nd topic.

This is another website that have been hacked on 7th of January 2010, just 3 days after the Herald Malaysia been pawned.

Just my opinion, I think this action is because court’s decision that allow The Herald to use the word ‘Allah’ in its publication.

More news in here and here.

Huh! What a long journey for the 1st week of 2010..

Baru masuk tahun baru, dah macam-macam kes berlaku..

Macam-macam hal la..

p/s : Kepada pembaca sekalian, saya harap anda dapat nilai apa isi tersirat yang sebenarnya saya ingin sampaikan dalam artikel ini..

Merry Christmas to Citibank US! :)

Russian hackers ‘stole from US banks’

THE FBI is investigating the activities of a notorious Russian internet gang amid accusations that it stole tens of millions of dollars from US banks.

The hackers, known as the Russian Business Network, had been quiet for two years after masterminding a string of crimes including identity theft, fraud, spam and child pornography.

But the gang could be back in action, according to a report in The Wall Street Journal, which suggested that Citigroup was the focus of a US federal investigation linked to the Russian group.

The newspaper claimed that an attack believed to have been orchestrated by the network netted large sums of money after targeting Citigroup’s computer systems.

Reports of the cyber attack came as the White House yesterday named Howard Schmidt as its head of cyber security. Mr Schmidt, who had a similar role for several years under George Bush, will co-ordinate US government, military and intelligence efforts to repel hackers.

There has been a string of reports about hacking attacks on the US Government in recent months, as well as the theft of more than Β£5 million ($9 million) from systems belonging to the Royal Bank of Scotland. The threats led the US President, Barack Obama, to declare that defence against internet attacks was a ”national security priority” – a shift which culminated in Mr Schmidt’s appointment.

Citigroup, the world’s largest financial services company, has rejected suggestions that the FBI is investigating an incident at the bank, and denied that a raid of such proportions had taken place.

”We had no breach of the system and there were no losses, no customer losses, no bank losses,” said Joe Petro, the managing director of Citigroup’s security and investigative services. ”Any allegation that the FBI is working a case at Citigroup involving tens of millions of losses is just not true.”

Instead, a spokesman said, the company is aware of one customer whose account was drained of more than $US1 million after being hacked.

The nature of the attack remains contested, but the reports mark a significant comeback for one of the internet’s most high-profile crime groups. The organisation disappeared from view in 2007 after moving its operations from St Petersburg to China. The extended absence had left some wondering whether it had disbanded, but experts familiar with the network’s activities suggested that its influence on organised crime was still strong.

”All signs point to a dramatic rise in cyber crime,” said Anton Chuvakin, a computer security expert based in San Jose.

It would not be the first time that Citigroup or its customers had been targeted by computer criminals. Earlier this year Albert Gonzalez, a 28-year-old hacker from Florida, was charged by US prosecutors with organising a series of computer attacks that netted millions over the course of several years.

Citibank was among the groups targeted by the strikes, which resulted in more than 45 million credit card numbers being stolen.

Last weekend, it emerged that the Russian military had been meeting Washington officials to discuss potential collaboration over internet security and cyber defence. Such a move would mark a breakthrough in the often frosty relations between the two countries over their activities online.

sumber dari : http://www.smh.com.au/technology/enterprise/russian-hackers-stole-from-us-banks-20091223-ldf9.html

p/s ; aku terbaca surat khabar Utusan kot mase aku kat Hospital Serdang. Tu yang aku tergerak nk post artikel ni..

Jasakom pwnd! ;)

jasakom-hacked

the most egos, established Indonesian underground security team called “Jasakom” has been hacked by Malaysian local underground hacker, TBD.my & HMSecurity.
this is result of declaring cyber war against Malaysian sites, thus targeting and hacking into most of Malaysian site with malicious and disaster intent.

TBD.my says:

HACKED BY TBD.MY

Sepandai tupai melompat, akhirnya jatuh ke tanah juga.
I came here for a revenge for what you have done to our early tbd.
How does it feel now? you website has been hacked! Do you even have backup?
Do whatever you want, who cares, Good luck with your backup.
If its not because of Indonesian stupidity, we (Malaysian) don’t even how to hate Indonesia.
Why we hack you? because of Indonesian egos and stupidity.
We don’t hate Indonesian, but YOU (Indonesian) make us hate you.
All database has been dropped like you did to tbdsecurity.com database πŸ™‚
JASAKOM, IF YOU THINK YOU ARE SECURE ? YOURE NOT!!
youre nothing just piece of crap. We wont attack you, If you stay away from .my sites
Greetz: XShimeX, suhz, Th3-Banjarian, TBD.MY, Dark Malaysia, HMSecurity, d3ck4

credit goes to hackingexposed.blogspot.com