The FBI announced recently that it managed to hack the iPhone belonging to the San Bernardino shooter without Apple’s help and all signs pointed to Cellebrite being the mysterious outside party. However, people familiar with the matter said it was actually professional hackers who aided the agency in breaking into the Islamic terrorist's smartphone.
According to The Washington Post, at least one of the people who helped the FBI access ...
Continue reading "
27 August 2018
Anynomous
"
Apple Forces Facebook VPN App Out of iOS Store for Stealing Users' Data
facebook Onavo free vpn app apple store Facebook yesterday removed its mobile VPN app called Onavo Protect from the iOS App Store after Apple declared the app violated the iPhone maker's App Store guidelines on data collection. For those who are unaware, Onavo Protect is a Facebook-owned Virtual Private Network (VPN) app that was primarily designed to help users keep tabs on their mobile data usage and ac...
Continue reading "
24 August 2018
Anynomous
"
Using Python in Ethical Hacking
"
23 August 2018
Anynomous
"
Google Redesigns Gmail – Here's a List of Amazing New Features
Google has finally been rolling out its new massively redesigned Gmail for desktop and mobile to 1.4 billion of users worldwide, which might be the most significant single upgrade in Gmail's history. This huge revamped version of the email service now offers plenty of new features such as confidential mode, offline support, email snoozing and more, to make Gmail more smarter, secure, and easier to use. In this art...
Continue reading "
23 August 2018
Anynomous
"
Code of DexGuard, software designed to secure Android applications and software development kits (SDKs), was removed from GitHub last week, after being illegally posted on the platform.
The tool is developed by Guardsquare, a company that specializes in hardening Android and iOS applications against both on-device and off-device attacks, and is designed to protect Android applications and SDKs against reverse engineering and hacking.
The DexGuard software is built on top of ...ProGuard, a popular optimizer for Java and Android that Guardsquare distributes under the terms of the GNU General Public License (GPL), version 2. Unlike ProGuard, however, DexGuard is being distributed under a commercial license.
In the DMCA takedown notice published on GitHub, Guardsquare reveals that the DexGuard code posted on the Microsoft-owned code platform was illegally obtained from one of their customers.
“The listed folders (see below) contain an older version of our commercial obfuscation software (DexGuard) for Android applications. The folder is part of a larger code base that was stolen from one of our former customers,” the notice reads.
The leaked code was quickly removed from the open-source hosting platform, but it did not take long for it to appear on other repositories as well. In fact, Guardsquare said it discovered nearly 200 forks of the infringing repository and that demanded all be taken down.
HackedTeam, the account that first published the stolen code, also maintains repositories of open-source malware suite RCSAndroid (Remote Control System Android).
The spyware was attributed several years ago to the Italy-based Hacking Team, a company engaged in the development and distribution of surveillance technology to governments worldwide. Earlier this year, Intezer discovered a new backdoor based on the RCS surveillance tool.
See more "
22 August 2018
Anynomous
"
Since smart speakers like the Amazon Echo first began to appear in homes across the world, the security community has come to see them as a prime target. But that threat has remained largely hypothetical: No Echo malware has appeared in the wild, and even proof-of-concept attacks on the devices have remained impractical at best.
Now, one group of Chinese hackers has spent months developing a new technique for hijacking Amazon's voice assistant gadget. It's still hardly a full...
Continue reading "
20 August 2018
Anynomous
"
Thousands of Mobile Apps Expose Their Unprotected Firebase Hosted Databases Thursday, June 21, 2018 Mohit Kumar
Firebase data leak hack Mobile security researchers have discovered unprotected Firebase databases of thousands of iOS and Android mobile applications that are exposing over 100 million data records, including plain text passwords, user IDs, location, and in some cases, financial records such as banking and cryptocurrency transactions.
...Continue reading "
21 June 2018
Anynomous
"
7 Chrome Extensions Spreading Through Facebook Caught Stealing Passwords Thursday, May 10, 2018 Swati Khandelwal 1.35k Share Share...
Continue reading "
11 May 2018
Anynomous
"
How To hack Android Games Using Lucky Patcher Without Root
Hack Android games using lucky Patcher-No Root: if you are Android Games lover then this article will be very helpful for you. Sometimes you may get frustration, if you have unable to cross the level in a game. Most of the Android Games are very much addictive and tough to play. To cross the game level hacking is the best way and Lucky patcher is an application through which we can hack android games like hill climb r...acing, subway surfers, temple run etc. Actually this application does free in app purchases of Google Play store.
With Lucky patcher you can hack android games easily for unlimited score and points. Lucky Patcher is an excellent app with which we can do free in app purchases in android phone no root. Also you can hack android games in such a way that removes annoying Google Ads. We can make free in app purchases in android without rooting phone with the help of lucky patcher. Means you can hack android games with no root required. So in this article we are introducing you How To hack Android games using lucky Patcher-No Root.
_How To hack Android games using lucky Patcher-No Root_
Methods To Hack/Patch Android Games Using Lucky Patcher:
At first Enable the installation from unknown sources by going to settings > security and tap on Unknown sources check-box. Now download and install Lucky Patcher on your Android Mobile/device. Download Lucky Patcher APK
It will show all the apps and games present in your phone. Select the game which contains in app purchases. Click on the Game to get in app purchases for free. Now click on “Open menu of patches”.
Now select “Create modified apk”.
Then select “Support patch for LVL emulation” and “Support patch for inApp emulation”.
Now just tap on “Rebuild The App” button at the bottom and it will now start creating the patched app. Then it takes few minutes and app is rebuilded. When the rebuild is complete tap on ok and exit. Now uninstall the app which you selected inlucky patcher for hacking in-app purchases. Then open sdcard>Android>data>com.forpda.lp>files>lucky patcher>modified>required game. Here you will get two folders one will be of the same name of your app and the other one will be named as Keys. Open the folder which has the name of your app. you will get the modified apk file of your app there. Then install the app from the above folder. Then Keep enjoys playing games. Now it will open the dialogue box, just select “Save purchase for restore” and tap on the Yes button to purchase the thing.
Conclusion
This trick may not work for some games, but works for many top games like hill climb racing, temple run, subway surfers and some other games. This is the entire method for _Hack Android games using lucky Patcher-No Root._This whole procedure takes but ffive minutes to be completed. I hope this can be terribly useful for you.
See more "
29 October 2017
Anynomous
"
Hackers Hijacked Chrome Extension for Web Developers With Over 1 Million Users
From past few years, spammers and cyber criminals were buying web extensions from their developers and then updating them without informing their users to inject bulk advertisements into every website user visits in order to generate large revenue. But now they have shifted their business model—instead of investing, spammers have started a new wave of phishing attacks aimed at hijacking popular bro...wser extensions.
Just two days ago, we reported how cyber criminals managed to compromise the Chrome Web Store account of a German developer team and hijacked Copyfish extension, and then modified it with ad-injection capabilities to distribute spam correspondence to users. Now just yesterday, another popular Chrome extension 'Web Developer' was hijacked by some unknown attackers, who updated the software to directly inject advertisements into the web browser of over its 1 million users. Chris Pederick, the creator of Web Developer Chrome extension that offers various web development tools to its users, alerted late Wednesday that some unknown hackers apparently phished his Google account, updated the extension to version 0.4.9, and pushed it out to its 1,044,000 users. In both the cases, cyber criminals used phishing first to gain access to the developers' Google accounts, hijacked their respective extensions and then updated the extension to perform malicious tasks. However, the Firefox version of both the extensions was unaffected. According to the developer, the malicious software build fetched JavaScript code from the web and ran it within users' web browsers to forcibly inject advertisements on web pages.
The plugin has access to pretty much everything that's happening on a user's browser—can do anything from reading all the website content to intercept traffic, sniff keystrokes, or any task one can imagine. So, hijacking the Web Developer extension could be a nightmare for users—especially for those who are professional designers and access their official accounts (website, hosting, or email) using the same browser. Pederick said version 0.4.9 of the software might have done worse, but within five to six hours of its compromise, he came to know of the malicious build, pulled it down from the Chrome store, and fixed the extension about an hour later. However, the compromised code would have allowed the miscreants to make a sizable commission from the advertisements during the few hours the evil javascript was active. Web Developer users are strongly recommended to update their extension to version 0.5 immediately. Users should also consider changing their passwords for all web accounts, as well as nullify login tokens and cookies used on websites they visited while using the infected extension.
See more "
03 August 2017
Anynomous
"
This is How CIA Disables Security Cameras During Hollywood-Style Operations
In last 20 years, we have seen hundreds of caper/heist movies where spies or bank robbers hijack surveillance cameras of secure premises to either stop recording or set up an endless loop for covert operations without leaving any evidence. Whenever I see such scenes in a movie, I wonder and ask myself: Does this happen in real-life? Yes, it does, trust me—at least CIA agents are doing this.
...Continue reading "
03 August 2017
Anynomous
"
Dangerous Mobile Banking Trojan Gets 'Keylogger' to Steal Everything
Cyber criminals are becoming more adept, innovative, and stealthy with each passing day. They have now shifted from traditional to more clandestine techniques that come with limitless attack vectors and are harder to detect. Security researchers have discovered that one of the most dangerous Android banking Trojan families has now been modified to add a keylogger to its recent strain, giving attackers yet a...
Continue reading "
03 August 2017
Anynomous
"
Hackers Take Over US Voting Machines In Just 90 Minutes
Today, election hacking is not just about hacking voting machines, rather it now also includes hacking and leaking dirty secrets of the targeted political parties—and there won’t be a perfect example than the last year's US presidential election. But, in countries like America, even hacking electronic voting machines is possible—that too, in a matter of minutes. Several hackers reportedly managed to hack into multiple Un...
Continue reading "
01 August 2017
Anynomous
"
Revelation that linux can be hacked surprises many.
With various different operating systems functioning these days around the globe, the ultimate goal of the manufacturers of every operating system is to reduce the number of vulnerabilities as much as possible. Windows, Linux, Ubuntu, Android and IOS are some examples of widely used operating systems nowadays with each one of them having its pros and cons. However, the latest discovery about a very major vulnerability in Lin...ux operating system has taken many by surprise. The discovery has opened up the fact that linux can be hacked by a mere malicious DNS response.
This vulnerability named as CVE-2017-9445 can allow hackers with no need to even physically access the device. They can exploit this vulnerability remotely and trigger a buffer overflow which allows hackers to install malicious code on any Linux device. In other words, the overwritten data is the one in which hackers can dictate their terms to harm Linux devices. This means linux can be hacked!
The service through which Linux system can be hacked has been discovered to be the service manager “Systemd”. The point of concern is the fact that this vulnerability hasn’t come under the developers’ eyes. It is present in Systemd version 223 introduced in 2015 and is present in the current version 233 as well. The discovery that linux can be hacked has caused an upheaval in the developers minds and they are continuously working to track down any further discrepancies in the system.
In simple words, the method used to exploit this vulnerability is by forcing Systemd to allocate a buffer of a very small size with the help of a malicious DNS server. A size so small that when data is written so it goes beyond its limit and all the data beyond its limit is used to maliciously attack the linux device.
According to latest updates, this bug is present in Ubuntu, Buster and other operating systems too like linux that use Systemd. However, strong steps are being taken and many updates have been introduced to counter this vulnerability and make users safe.
So, if you are a user of Linux, install those security patches and stay safe!
See more "
01 July 2017
Anynomous
"
Windows 10 to Get Built-in Protection Against Most Ransomware Attacks
Ransomware Ransomware Everywhere Not a Single Place to Hide! But, Microsoft has a simple solution to this problem to protect millions of its users against most ransomware attacks....
Continue reading "
01 July 2017
Anynomous
"
Critical RCE Flaw Found in OpenVPN that Escaped Two Recent Security Audits
A security researcher has found four vulnerabilities, including a critical remote code execution bug, in OpenVPN, those were not even caught in the two big security audits of the open source VPN software this year. OpenVPN is one of the most popular and widely used open source VPN software solutions mostly used for various connectivity needs, but it is especially popular for anonymous and private acces...
Anynomous
"
Grey Hat Hackers Helped FBI Hack iPhone:
The FBI announced recently that it managed to hack the iPhone belonging to the San Bernardino shooter without Apple’s help and all signs pointed to Cellebrite being the mysterious outside party. However, people familiar with the matter said it was actually professional hackers who aided the agency in breaking into the Islamic terrorist's smartphone.
According to The Washington Post, at least one of the people who helped the FBI access ...
Continue reading " 27 August 2018Anynomous
"
Apple Forces Facebook VPN App Out of iOS Store for Stealing Users' Data
facebook Onavo free vpn app apple store Facebook yesterday removed its mobile VPN app called Onavo Protect from the iOS App Store after Apple declared the app violated the iPhone maker's App Store guidelines on data collection. For those who are unaware, Onavo Protect is a Facebook-owned Virtual Private Network (VPN) app that was primarily designed to help users keep tabs on their mobile data usage and ac...
Continue reading " 24 August 2018Anynomous
"
Using Python in Ethical Hacking
" 23 August 2018Anynomous
"
Google Redesigns Gmail – Here's a List of Amazing New Features
Google has finally been rolling out its new massively redesigned Gmail for desktop and mobile to 1.4 billion of users worldwide, which might be the most significant single upgrade in Gmail's history. This huge revamped version of the email service now offers plenty of new features such as confidential mode, offline support, email snoozing and more, to make Gmail more smarter, secure, and easier to use. In this art...
Continue reading " 23 August 2018Anynomous
"
Code of DexGuard, software designed to secure Android applications and software development kits (SDKs), was removed from GitHub last week, after being illegally posted on the platform.
The tool is developed by Guardsquare, a company that specializes in hardening Android and iOS applications against both on-device and off-device attacks, and is designed to protect Android applications and SDKs against reverse engineering and hacking.
The DexGuard software is built on top of ...ProGuard, a popular optimizer for Java and Android that Guardsquare distributes under the terms of the GNU General Public License (GPL), version 2. Unlike ProGuard, however, DexGuard is being distributed under a commercial license.
In the DMCA takedown notice published on GitHub, Guardsquare reveals that the DexGuard code posted on the Microsoft-owned code platform was illegally obtained from one of their customers.
“The listed folders (see below) contain an older version of our commercial obfuscation software (DexGuard) for Android applications. The folder is part of a larger code base that was stolen from one of our former customers,” the notice reads.
The leaked code was quickly removed from the open-source hosting platform, but it did not take long for it to appear on other repositories as well. In fact, Guardsquare said it discovered nearly 200 forks of the infringing repository and that demanded all be taken down.
HackedTeam, the account that first published the stolen code, also maintains repositories of open-source malware suite RCSAndroid (Remote Control System Android).
The spyware was attributed several years ago to the Italy-based Hacking Team, a company engaged in the development and distribution of surveillance technology to governments worldwide. Earlier this year, Intezer discovered a new backdoor based on the RCS surveillance tool.
See more " 22 August 2018Anynomous
"
Since smart speakers like the Amazon Echo first began to appear in homes across the world, the security community has come to see them as a prime target. But that threat has remained largely hypothetical: No Echo malware has appeared in the wild, and even proof-of-concept attacks on the devices have remained impractical at best.
Now, one group of Chinese hackers has spent months developing a new technique for hijacking Amazon's voice assistant gadget. It's still hardly a full...
Continue reading " 20 August 2018Anynomous
"
Thousands of Mobile Apps Expose Their Unprotected Firebase Hosted Databases Thursday, June 21, 2018 Mohit Kumar
Firebase data leak hack Mobile security researchers have discovered unprotected Firebase databases of thousands of iOS and Android mobile applications that are exposing over 100 million data records, including plain text passwords, user IDs, location, and in some cases, financial records such as banking and cryptocurrency transactions.
...Continue reading " 21 June 2018Anynomous
"
7 Chrome Extensions Spreading Through Facebook Caught Stealing Passwords Thursday, May 10, 2018 Swati Khandelwal 1.35k Share Share...
Continue reading " 11 May 2018Anynomous
"
How To hack Android Games Using Lucky Patcher Without Root
Hack Android games using lucky Patcher-No Root: if you are Android Games lover then this article will be very helpful for you. Sometimes you may get frustration, if you have unable to cross the level in a game. Most of the Android Games are very much addictive and tough to play. To cross the game level hacking is the best way and Lucky patcher is an application through which we can hack android games like hill climb r...acing, subway surfers, temple run etc. Actually this application does free in app purchases of Google Play store.
With Lucky patcher you can hack android games easily for unlimited score and points. Lucky Patcher is an excellent app with which we can do free in app purchases in android phone no root. Also you can hack android games in such a way that removes annoying Google Ads. We can make free in app purchases in android without rooting phone with the help of lucky patcher. Means you can hack android games with no root required. So in this article we are introducing you How To hack Android games using lucky Patcher-No Root.
_How To hack Android games using lucky Patcher-No Root_
Methods To Hack/Patch Android Games Using Lucky Patcher:
At first Enable the installation from unknown sources by going to settings > security and tap on Unknown sources check-box. Now download and install Lucky Patcher on your Android Mobile/device. Download Lucky Patcher APK
It will show all the apps and games present in your phone. Select the game which contains in app purchases. Click on the Game to get in app purchases for free. Now click on “Open menu of patches”.
Now select “Create modified apk”.
Then select “Support patch for LVL emulation” and “Support patch for inApp emulation”.
Now just tap on “Rebuild The App” button at the bottom and it will now start creating the patched app. Then it takes few minutes and app is rebuilded. When the rebuild is complete tap on ok and exit. Now uninstall the app which you selected inlucky patcher for hacking in-app purchases. Then open sdcard>Android>data>com.forpda.lp>files>lucky patcher>modified>required game. Here you will get two folders one will be of the same name of your app and the other one will be named as Keys. Open the folder which has the name of your app. you will get the modified apk file of your app there. Then install the app from the above folder. Then Keep enjoys playing games. Now it will open the dialogue box, just select “Save purchase for restore” and tap on the Yes button to purchase the thing.
Conclusion
This trick may not work for some games, but works for many top games like hill climb racing, temple run, subway surfers and some other games. This is the entire method for _Hack Android games using lucky Patcher-No Root._This whole procedure takes but ffive minutes to be completed. I hope this can be terribly useful for you.
See more " 29 October 2017Anynomous
"
Hackers Hijacked Chrome Extension for Web Developers With Over 1 Million Users
From past few years, spammers and cyber criminals were buying web extensions from their developers and then updating them without informing their users to inject bulk advertisements into every website user visits in order to generate large revenue. But now they have shifted their business model—instead of investing, spammers have started a new wave of phishing attacks aimed at hijacking popular bro...wser extensions.
Just two days ago, we reported how cyber criminals managed to compromise the Chrome Web Store account of a German developer team and hijacked Copyfish extension, and then modified it with ad-injection capabilities to distribute spam correspondence to users. Now just yesterday, another popular Chrome extension 'Web Developer' was hijacked by some unknown attackers, who updated the software to directly inject advertisements into the web browser of over its 1 million users. Chris Pederick, the creator of Web Developer Chrome extension that offers various web development tools to its users, alerted late Wednesday that some unknown hackers apparently phished his Google account, updated the extension to version 0.4.9, and pushed it out to its 1,044,000 users. In both the cases, cyber criminals used phishing first to gain access to the developers' Google accounts, hijacked their respective extensions and then updated the extension to perform malicious tasks. However, the Firefox version of both the extensions was unaffected. According to the developer, the malicious software build fetched JavaScript code from the web and ran it within users' web browsers to forcibly inject advertisements on web pages.
The plugin has access to pretty much everything that's happening on a user's browser—can do anything from reading all the website content to intercept traffic, sniff keystrokes, or any task one can imagine. So, hijacking the Web Developer extension could be a nightmare for users—especially for those who are professional designers and access their official accounts (website, hosting, or email) using the same browser. Pederick said version 0.4.9 of the software might have done worse, but within five to six hours of its compromise, he came to know of the malicious build, pulled it down from the Chrome store, and fixed the extension about an hour later. However, the compromised code would have allowed the miscreants to make a sizable commission from the advertisements during the few hours the evil javascript was active. Web Developer users are strongly recommended to update their extension to version 0.5 immediately. Users should also consider changing their passwords for all web accounts, as well as nullify login tokens and cookies used on websites they visited while using the infected extension.
See more " 03 August 2017Anynomous
"
This is How CIA Disables Security Cameras During Hollywood-Style Operations
In last 20 years, we have seen hundreds of caper/heist movies where spies or bank robbers hijack surveillance cameras of secure premises to either stop recording or set up an endless loop for covert operations without leaving any evidence. Whenever I see such scenes in a movie, I wonder and ask myself: Does this happen in real-life? Yes, it does, trust me—at least CIA agents are doing this.
...Continue reading " 03 August 2017Anynomous
"
Dangerous Mobile Banking Trojan Gets 'Keylogger' to Steal Everything
Cyber criminals are becoming more adept, innovative, and stealthy with each passing day. They have now shifted from traditional to more clandestine techniques that come with limitless attack vectors and are harder to detect. Security researchers have discovered that one of the most dangerous Android banking Trojan families has now been modified to add a keylogger to its recent strain, giving attackers yet a...
Continue reading " 03 August 2017Anynomous
"
Hackers Take Over US Voting Machines In Just 90 Minutes
Today, election hacking is not just about hacking voting machines, rather it now also includes hacking and leaking dirty secrets of the targeted political parties—and there won’t be a perfect example than the last year's US presidential election. But, in countries like America, even hacking electronic voting machines is possible—that too, in a matter of minutes. Several hackers reportedly managed to hack into multiple Un...
Continue reading " 01 August 2017Anynomous
"
Revelation that linux can be hacked surprises many.
With various different operating systems functioning these days around the globe, the ultimate goal of the manufacturers of every operating system is to reduce the number of vulnerabilities as much as possible. Windows, Linux, Ubuntu, Android and IOS are some examples of widely used operating systems nowadays with each one of them having its pros and cons. However, the latest discovery about a very major vulnerability in Lin...ux operating system has taken many by surprise. The discovery has opened up the fact that linux can be hacked by a mere malicious DNS response.
This vulnerability named as CVE-2017-9445 can allow hackers with no need to even physically access the device. They can exploit this vulnerability remotely and trigger a buffer overflow which allows hackers to install malicious code on any Linux device. In other words, the overwritten data is the one in which hackers can dictate their terms to harm Linux devices. This means linux can be hacked!
The service through which Linux system can be hacked has been discovered to be the service manager “Systemd”. The point of concern is the fact that this vulnerability hasn’t come under the developers’ eyes. It is present in Systemd version 223 introduced in 2015 and is present in the current version 233 as well. The discovery that linux can be hacked has caused an upheaval in the developers minds and they are continuously working to track down any further discrepancies in the system.
In simple words, the method used to exploit this vulnerability is by forcing Systemd to allocate a buffer of a very small size with the help of a malicious DNS server. A size so small that when data is written so it goes beyond its limit and all the data beyond its limit is used to maliciously attack the linux device.
According to latest updates, this bug is present in Ubuntu, Buster and other operating systems too like linux that use Systemd. However, strong steps are being taken and many updates have been introduced to counter this vulnerability and make users safe.
So, if you are a user of Linux, install those security patches and stay safe!
See more " 01 July 2017Anynomous
"
Windows 10 to Get Built-in Protection Against Most Ransomware Attacks
Ransomware Ransomware Everywhere Not a Single Place to Hide! But, Microsoft has a simple solution to this problem to protect millions of its users against most ransomware attacks....
Continue reading " 01 July 2017Anynomous
"
Critical RCE Flaw Found in OpenVPN that Escaped Two Recent Security Audits
A security researcher has found four vulnerabilities, including a critical remote code execution bug, in OpenVPN, those were not even caught in the two big security audits of the open source VPN software this year. OpenVPN is one of the most popular and widely used open source VPN software solutions mostly used for various connectivity needs, but it is especially popular for anonymous and private acces...
Continue reading " 23 June 2017