White Hackers

Every wondered how Anonymous and other hacktivists manage to steal the data or crash the servers of websites belonging to some of the world biggest organisations? Thanks to freely available online tools, hacking is no long the  preserve of geeks , so we've decided to show you how easy it is to do, in just four easy steps. Step 1: Identify your target While  Anonymous  and other online hacktivists may choose their targets in order to protest against perceived wrong-doing, for a beginner wanting to get the taste of success with their first hack, the best thing to do is to identify a any website which has a vulnerability. Recently a hacker posted a list of 5,000 websites online which were vulnerable to attack. How did he/she identify these websites? Well, the key to creating a list of websites which are likely to be more open to attack, is to carry out a search for what is called a Google Dork. Google Dorking , also known as Google Hacking, enables yo...

Some of the interesting tutorials from the web on Cross Site Scripting attacks.  ( http://en.wikipedia.org/wiki/Cross-site_scripting ) A simple online explaination of XSS attacks designed to allow people to see in a hands on manner. ( http://www.steve.org.uk/Security/XSS/Tutorial/ ) Complete Cross Site Scripting(XSS) Guide : Web Application Pen Testing ~ BreakTheSec: ( http://www.breakthesecurity.com/2012/01/complete-cross-site-scriptingxss-guide.html ) A video tutorial on XSS There are tools which can help in detecting XSS attacks on a website. Acunetix Web Vulnerability Scanner Free Edition offers the functionality for anyone who wants to test their own application for Cross Site Scripting. Acunetix encourages all site owners and developers to visit http://www.acunetix.com/cross-site-scripting/scanner.htm and to download the Free Edition of Acunetix WVS. This Free Edition will scan any web application for XSS and it will also reveal all t...

If it runs Android, it’s going to be pushed to its limits. That’s the general rule of thumb when it comes to the voracious modding and hacking community that has sprung up around Google’s mobile OS. Even a basic e-reader like the Nook Simple Touch hasn’t been safe from rooting and the loading of various Android services never meant to be experienced on the device’s monochrome eInk display. Taking things a step further, a member of  xda-developers  has hacked multitouch capabilities into the $99 Nook, making its touch far from simple. As you can see in the videos above and below, the Simple Touch doesn’t look half bad running Angry Birds and multitouch gestures are a go when viewing a PDF. There are some bugs with the initial hack, including random screen lockups, but otherwise it turns a boring eReader into an intriguing tablet option.

That four-digit passcode you have installed on your iPhone might slow snoops down, but it won't stop them. Forbes  is reporting that in some cases, it takes less than two minutes to crack the code. Micro Systemation is a Swedish company that sells software capable of skirting privacy controls on iOS and Android gadgets. Law enforcement and military agencies use this software in order to access data on devices used by criminal suspects. In a video (see below) Micro Systemation is able to hack an iPhone in just seconds. Granted, the password wasn't very complicated – it was "0000." Forbes explains that the hack is possible through a Micro Systemation application called XRY, which deciphers the phone's password, siphons its data to a computer, and decrypts it in order to gain data like GPS logs, call history, contacts, text messages, keystrokes, and so forth. XRY works a lot like a jailbreak, Forbes said. The Micro Systemation team doesn't look for backd...

LulzSec, the Anonymous offshoot that hacks for fun ("for the lulz"), disbanded last June after 50 days of high profile hacks, also known as the 50 Day Cruise. But the jokers appear to be making a comeback, perhaps in order to restore the confidence of its followers after it was revealed that former ringleader Sabu helped the FBI locate and arrest former teammates.  On Tuesday, hackers calling themselves "LulzSec Reborn" posted onto Pastebin the email database, including names and addresses, of every employee at San Jose-based IT firm, CSS Corp.  Preceding this, on Sunday the group hacked into military dating website, militarysingles.com. It dumped the names, emails, and passwords of around 170,000 members, many with .gov and .mil addresses. The hackers also defaced a page with its signature Nyan Cat after the site's parent company told  Data Breaches  there was "no actual evidence" of a breach.  The motivations behind these two targ...

As the digital world becomes more and more complex, the need for deliberate, thorough security grows. Yes, we know, you’ve got everything “password protected.” And yes, not every hacker is like the guys in the movies who are able to keyboard their way through complicated layers of encrypted, password-protected security faster than a gamer boots up a new version of Call of Duty. Below is a list of the 10 most-favored passwords. If yours is there you A) ought to think about changing it, or B) post your Social  Security , credit card, and bank account numbers, and any other private information you think might be useful on your Facebook page. Password1 letmein Secure1 Abc123 123456 monkey Facebook1 passworD link2012 (your first name) Oh, and though it’s from an older, non-digital source, it would be well to remember the words of Confucius when setting your passwords: “When in a state of security, do not forget the possibility of ruin.”