ATTENTION! If You're from the US and You'd like to buy a subscribtion please contact us directly at email: ewa.duranc@hakin9.org
Dear Readers, Welcome to this year’s first issue of Hakin9 Extra. For this special occasion, we decided to take up a special topic. This month, we are focusing on the most recent release of the famous Linux distibution – BackTrack 5 r3. Our first issue on BackTrack appeared to be the magazine you appreciated the […]
Read more
Facebook has this week (w/c 5th Dec) patched a vulnerability that allowed any user to view any other user’s private photos. Mark Zuckerberg’s Facebook account was compromised and a total of thirteen photos were downloaded and posted on a website called imgur.com. Read more…Comments
Read more
Back in March of this year I (Julian Evans blog) wrote a post about the Facebook ‘Like’ button JavaScript threat. In it I highlighted how easy it was for Facebook to collect data for internal analysis (i.e.improve their site) rent or sale and the JavaScript iFrame and XSS threat vectors. What I didn’t mention was […]
Read more
Thanksgiving day is around the corner, MacXDVD would like to take this opportunity to express our thanks for your help and are glad to provide 10, 000 copies of MacX DVD Ripper Pro for give away, along with 60% off discount on the ultimate DVD video HD Video Converter Pro for Windows can be grabbed […]
Read more
Facebook has been under attack from violent images and porn on several users’ profile pages. It appears to be one of the most prolific breaches of Facebook security since it was first launched. Users have been tricked into pasting malcious code (possible clickjacking or XSS?) into their browsers which enable hackers to gain access to […]
Read more
After the US Federal Trade Commission (FTC) investigation, Facebook is about to change the way it uses your personal information. Facebook is now close to reaching an agreement with the FTC to change its privacy in order to stay in FTC guidelines. Stats: Which? Computing survey – 48 per cent of UK Facebook members say they […]
Read more
Rootkits Hidden in Hardware of PC by Anibal Sacco Let’s think like an attacker for a second. There are multiple applications dedicated to find malicious code both in user and in kernel space. So new places have to be found to deploy your code while keeping it stealthy. TDSS aka TDL – Chronology by Eugene […]
Read more
Most of Julian’s (http://julianevansblog.com) readers probably have a Facebook account, and some of you might also have a Twitter and foursquare account. Given Julian’s blog is all about protecting your online and offline identity you might want to reconsider posting social media status updates (and amending your privacy settings), sharing your geo-location and uploading holiday […]
Read more
Facebook has recently released some interesting data from it’s ‘The Facebook Immunity System (FIS)’. According to FIS it processes and checks 650,000 actions every second (it can handle 25 billion actions every day – amazing) to maintain user safety from spam (The FIS reports just 1% of users reporting issues around spam) and other cyber […]
Read more
A number of Facebook users have contacted Julian about the “Hide this from” feature. They wanted to know whether they could hide posts from some friends. Let’s clear this up. Well Julian will attempt to clear it up today, because tomorrow Facebook may have changed this! The custom settings (Privacy Settings > Control Your Default Privacy […]
Read more
Julian Evans wondered for some time whether it might be possible to develop a security app for Facebook, that provides protection at levels similar to Internet security suites. Julian’s research has concluded that providing a scanning, tracking and notification based AV type system is very difficult to deploy due to restrictions in the Facebook and […]
Read more
Facebook is introducing URL (link scanning) protection for its users as from today (Oct 3rd, 2011). When a user clicks on any link in Facebook, Websense using its ThreatSeeker Cloud Malware Identification Platform, will analzye each URL in real-time for potential malicious content. If ThreatSeeker finds malicious content the user will be warned “Security Alert: […]
Read more
