Matteo Cantoni coded GoogleGath – a useful script for gathering information through Google searches. As Matteo states on his website, this script “could be useful for penetration testing, security scanning, script kiddies”.

To run googlegath.pl, three things are required: the perl interpreter, the Net::Google perl module and Google API. You can use it under Windows with Active Perl interpreter.

Read More » » »

Two websites belonging to MSN (Microsoft Network) in the United Kingdom, were defaced today by an attacker who goes by the nickname “DARK LORD“. It looks like someone who is unethically testing his SQL injection skills, and “feeding” himself with a false sense of pride, just by leaving the message “DARK LORD WAZ HERE”.

No. I am not a defacer psychologist. I am just expressing my personal opinion on the matter, which is this: If a website defacement doesn’t convey a meaningful message, then it is done for selfish reasons.

A bit of an embarassment for Microsoft’s sysadmins…

Read More » » »

Was time for the website defacers to hit the music industry! Yesterday, visitors of the BritneySpears.de website could read “XTech Inc Onwed the Music Industry… and the rest of it ” at the top of the home page. It appears to me though, that they just did it for fun and not for any serious reason.

Apparently it was hosted in the same webserver with other official german websites of Sony BMG entertainment.

The attackers exploited a web application vulnerability – probably php inclusion – in order to get access to the Solaris 9/10 webserver.

Read More » » »

I was surprised when I did a simple search on Google for the keywords “carders online“. The first result that my search revealed, was a site belonging to a cyber criminal group called “Carders Online”. Their web hosting account was suspended, but their website is cached on Google, so I visited it in order to find out more information about it.

It seems to me that this group was very organised. They were providing how-to articles on carding, proxies and online payment processors. They were also selling laptops, mobile phones and cameras, which were bought with stolen/phished credit cards. They were even selling the software and equipment required to copy full details of stolen/phished credit cards into blank cards, in order to be able to cash-out from an ATM the money in the bank accounts.

Read More » » »

Since I read the news about the recent defacement of the digital attacks archive Zone-H.org, many people have commented on how “professional” the Saudi Arabian defacers were. I strongly disagree… They were very “unprofessional” kids.

Just one confused kid who praises the devil – Devil Hacker – with his fellow pal Unix Web. Both from Jeddah in Saudi Arabia.

Students with too much time on their hands. They proved that they can use a basic backdoor, change the DNS and use the exploits that come together with some security advisories.

Read More » » »