Syria hackers take down al Jazeera English website :

aljazeera hacked

Syrian hackers Target the Al Jazeera’s “Syria Live Blog” which has been providing ongoing coverage of the Arab League’s observer mission to Syria and developments in the ongoing unrest in the country .

The attacked changed to display a picture of bashar assad .

Hacked by Syrian Electronic Army | Th3 Pr0.

You Got Hacked Again By SEA.

We Want Bashar Al-Assad

The hackers website : http://syrian-es.com/

It look like tha the hackers exploit a web application security in the drupal .

The zone-h Defacement attack .

This is the reason :

cyber army in syria

Technopark.ma got compromised by malware  (this is site may harm your computer )

The officelle website of technopark got compromised by malisous code ; It look like that hackers exploit a vulnerability in the open source joomla (Joomla security Flaws) .The website serving malware to anyone visiting it). This attack seems to be targeting smaller and biggest  sites that lack personnel with the skills and security awareness .

Ce site risque d'endommager votre ordinateur.

(continue reading…)

Qatar Development Bank got hacked

At 2011-12-16 13:45:32 a defacer call itself website defaced the home page of 2011-12-16 13:45:32 Qatar Development Bank ; The moroccan left message : “Fuck QATAR, Vive le maroc <3 ” With a Moroccan flag :

 A  hacked website costs you readers, search engine rank and time and money.
Use these tips to help you find and clean a WordPress website from hacked code and malicious malware links inserted into the website code.

Wordpress hacking

WordPress vulnerabilities ; SQL injection, JavaScript insertion and.htaccess hacks are all common ways to alter the content on your WordPress website.Some hackers redirect users to another website, other hackers insert malicious links and some other hackers use the .htaccess file to steal Google rank. If you think you are hacked, here are some common sings to search for in your website code.

Check Your.htaccess File :

The .htaccess file is always in the root dlretory of your
WordPress site. The .htaccess file lets you control how the
server handles website requests such as Google crawler
access and URL redirections Hackers who gain access to the
.htaccess file insert a few lines of code that redirect
search englnes. The hacked code detects the “user
agent”value, which is passed from a web browser or
search engine to the WordPress server. If the user agent is
“Google,” the hacked .htaccess file redirects Google to
the hacked website. This hack 1s completely invisible to
your WordPress readers, and it only affects Google rank
The following code is an example of hacked .htaccess code:

RewriteCond %{HTT-REFERER} .*google.* [OR]
RewriteRule ^(.*)$ http//hackedsite.com/index.php
[R=301,L]

In the above example, if Googlebot crawlss the website, the (continue reading…)

This whitepaper discusses how hackers can use the default weblogic configurations to access and deploy backdoors .It will help to understand the risk of default password and the weblogic security :

                          Hacking weblogic – sysmox.com download

Ten tips for securing your ColdFusion application

Over the past year, reports of website security vulnerabilities have increased—in number and severity. Security is a top issue in application development and production. There are a variety of responses to hackers.

ColdFusion application developers—like all applications developers—can take steps to prevent security violations. When you install the Macromedia ColdFusion  server on your local machine, it’s easy to start developing applications right out-of-the-box. Your focus during development is on the inner workings of the application and not on setting up and configuring the ColdFusion administrator. When you deploy your ColdFusion application to production, however, you expose your application to the whole world. In this environment, things are different.

Below you’ll find ten tips for setting up your ColdFusion  application server with security in mind. This list is divided into these general sections:

  1  Features and setting to turn off

  2   Features and settings to turn on

  3  On-going chores

  4  Testing techniques: A hidden JavaScript example

1 Features and settings to turn off :

    1.1 ColdFusion  installation :

Install ColdFusion on the production server without the documentation and example applications. You can uncheck the Example Applications option during your ColdFusion server installation. While the example applications are helpful to new ColdFusion developers, the CFML source code for these examples is freely available, so they present a tempting target for hackers in a production environment. The example applications were revised in ColdFusion 5 to make them more secure, but still there is rarely a good reason to have them on a production server. (continue reading…)

Timthumb is particularly fame in WordPress themes and plugins; Web master should updated the library   ; This attack can be exploited by hackers .

After Timthumb.php hacking High risk vulnerabilities was discovered in wordpress blugins Exploiting this bugs an attacker can that allows  retrieve remotely any information credentials from a vulnerable blugs ; some of them lack of validation in this query string most of them are remotely exploitable.

Sence 2011-08-05 more then 15 blugins are vulnerable :

(continue reading…)

404 error page: A 404 error page is what appears in a web browser when a user attempts to access a website that does not exist. Unlike DNS error pages, these pages are generated by websites themselves, not by the user’s browser. As a result, they are much more difficult for programs to alter.

Add/Remove programs: a function on the user’s “Control Panel” on the user’s computer. Ths function allows the user to unistall or install progams on his/her computer. (continue reading…)

As with any other element of a company’s security programme, effective document security requires a combination of physical security measures, policies and procedures, and personnel. No security programme is complete or effective without some combination of these three security elements.

In today’s environment of information theft, just making sure documents are thrown in the trash is no longer an acceptable security risk. Document collection and destruction must be the cornerstone of effective document security. While some companies may destroy their own documents, for the purposes of this discussion it is assumed a company hires a document destruction contractor to perform that function.

The first phase of a document destruction security plan is to control the exit of documents. In other words, make sure the documents that require destruction actually leave the building to be destroyed rather than in regular waste or even worse in someone’s briefcase.

This is not as easily accomplished as one might think be and may never be foolproof. The first step is to develop written policies and procedures as to what constitutes a document that needs to be destroyed and in what manner the documents are collected to facilitate the destruction. These policies and procedures will certainly vary from company to company.

The second step is to have personnel adhere to and enforce the written policies and procedures. One element of this is training every company employee on how to determine what documents need to be destroyed and how to handle and collect those documents. As with any training, it needs to be ongoing.

Another element is overseeing and enforcing the policies and procedures to make sure they are being followed. In some ways that may seem like a kindergarten-style policy, but the consequences of the information falling into the wrong hands may be so severe that this oversight is the best practice.

The third step is to have physical security measures in place to help facilitate the security of the documents. These measures can include access control systems for the exterior or interior parts of the building to restrict access to documents, CCTV systems for visual identification and verification and burglar alarm systems for after hours.

For even more secure documents, RFID technology can be employed where documents are tagged and alerts are provided if the documents begin to leave the building. Strict enforcement may also include physically checking those that leave for any documents. Any physical security measures in place cannot be used in a vacuum, they require interaction with both policies and procedures and personnel.

The second phase of a document destruction security plan is evaluating and monitoring the security plan of the contractor used to destroy the documents. It would not make any sense to spend the time and money to help ensure that the documents wi (continue reading…)

Web browsing has become the favorite target of malicious code writers seeking to compromise your network. The number of browser vulnerabilities continues to rise, fuelling zero-hour exploits which can infect systems before patches or signatures are available. The threat is moving from the inbox to the browser with increasing focus on gaining financial advantage. This is most evident in the recent rise of spyware which comes in a wide variety of forms, from programs that steal confidential information to nuisance adware.

By the time most administrators realize they have a problem, the damage is already done, and they are left with the high cost of remediation, lost productivity, and unnecessary network traffic and system instabilities. Increasing browser vulnerabilities, zero-hour threats, and the insertion of malicious code on vulnerable sites.

If you own or manage a website, you are responsible for that website’s security. Compromised websites can infect visitors with badware, and are commonly blacklisted by search engines, web browsers, and security vendors (This site can harm your computer)

Many legitimate websites are the targets of malicious hacking attacks, during which code linking directly to badware is inserted onto an otherwise innocent, but poorly secured, website. Another common way that legitimate sites are compromised is through third-party content such as the ads provided by an advertising network, which can be used as vectors for the distribution of badware.

We offer several resources to help you learn how to remove badware from compromised websites and secure your sites against future attacks.

• Our Security Tips page is a great place to start. Learn about common attack techniques and how to detect them on your site.
• You can contact us for additional help.
• If your site has been flagged by Google, check Google’s diagnostics page for your site for more information about the badware that Google detected on your site.

If your site was flagged by Google and you’re sure that the site is now clean, you can file a Request for Review with google webmaster. You can also contact us to help you