Rock You has suffered a serious hacker attack that has exposed 32 million of its customer usernames and passwords to possible identity theft. And it has apparently taken RockYou more than 10 days to inform its users of the breach.
The security firm Imperva informed RockYou that its site had a serious SQL injection flaw, according to reports. Imperva said that some users’ passwords had already been compromised as a result of the vulnerability by the time it notified RockYou of its findings. RockYou acted quickly to fix the flaw, but perhaps not fast enough. One hacker claimed to have gotten access to the accounts and posted some data as proof. Apparently, the database included the full list of unencrypted passwords in plain text.
The flaw is a big one because RockYou usernames and passwords are, by default, the same as users’ email names and passwords. Security experts are advising RockYou users to change their emails and passwords. RockYou has some of the most popular apps on Facebook, and it ranks third among Facebook developers with 55 million monthly active users, according to AppData.
SQL injection exploits a vulnerability in an app’s database layer and is a very common attack. It potentially lets hackers steal private information, and Yahoo’s jobs site recently suffered a similar attack. Imperva chief technology officer Amichai Shulman told eWeek Europe that users are particularly vulnerable if they use the same usernames and passwords for all of the sites that they visit.
[click to continue…]
There are few browsers which allow Viewing WAP sites via PC i.e Opera. But many of us prefer to use Firefox instead of using opera or internet Explorer. So, there is a Plugin for Firefox called WML browser (Wireless Markup Language). By using this Plugin we are able to browse most of WAP sites from our firefox.
To get this Add-on, follow the below instructions:
1.) Go to WML browser plugin.
2.) Click on Add to firefox.
3.) A Popup will be Appear i.e “Software installment”, below you will see a tab “Install now”. Click on “Install Now” tab.
4.) Once installation done, restart your firefox.
[click to continue…]
nSSIDer is an award-winning free Wi-Fi network scanner for Windows Vista and Windows XP. Because NetStumbler doesn’t work well with Vista and 64-bit XP, an open-source Wi-Fi network scanner designed for the current generation of Windows operating systems.
[click to continue…]
About two weeks ago we found out that a virus has been released out in the wild and that it’s attacking jailbroken iPhone 3G/3GS users who haven’t changed their root password. At the time the ingenious coder was only trying to alert people that their smartphones are not as secure as they thought and that simple safety measure would keep them away from trouble, however, some less well intended hacker has refined the iPhone worm to actually steal sensitive details.
Fast forward to our days because today we caught wind that the Australian who started everything, has been offered a job as an iPhone application developer by a company called mogeneration. Although 21-year-old, Ashley Towns has publicly acknowledged that he’s in charge with the Ikee worm that made unauthorised modifications to people’s handsets, he was never under investigation, hence why he took the opportunity.
Ashley Towns wrote Ikee, a self-propagating program that changed the phone’s wallpaper to a picture of 80s pop singer Rick Astley.
Mr Towns has now been employed as a iPhone application developer for Australian firm mogeneration.
Ikee was not malicious but paved the way for a more serious variant which targeted users of the online bank ING.
[click to continue…]
