The Edge of I-Hacked

from mrbass.org

Ubuntu Linux DVD Shrink, DVD Decrypter Guide

Shows how to install DVD Shrink 3.2 and DVD Decrypter in Ubuntu Linux.

DVD Decrypter does NOT require SCSI emulation for your DVD burner.

from “The Authentic Fake!”

Being the sort of guy who likes to use keyboad shortcuts rather than having to reach for the mouse all the time, I felt a bit hostile once I got my new Macbook Pro. I knew how to do task X or Y on Windows with a few keystrokes, but having moved to Mac OS X (read 10 not X, as I made the mistake!), I found myself feeling annoyed that I didn’t know my way around the OS smoothly. So I searched the Internet to find out about some of the more obscure shortcuts. Below I’ve listed and explained some shortcuts that a new Mac user, especially those coming from a Windows environment, may not be aware of. It’s definately made my life easier, hopefully you’re a new mac user, these will be of use.

from zone-h.org

The war in Lebanon is now showing its consequences in the digital world and a huge number of websites has been attacked and defaced as a protest against the invasion of Lebanon by Israel.

Today two NASA websites were attacked as well. The intrusion was carried out by the Chilean group of crackers known as Byond Hackers Crew through a leak in the SQL Injection they entered the system and subtracted user names, passwords and e-mails from the NASA web server.

After that these information had been stolen, they managed in entering the administrative area by using an administrator user ID and password , and finally they made the defacement replacing the homepage with their message…

This group goes with the others that in last days carried out attacks against governmental and commercial websites both from America and Israel, whereas other blackhat groups attacked Israeli websites provoking a denial of service (DDoS) of that particular webpage.

The messages conveyed by all these defacements focus on the idea that, according to the attackers, the search of terrorist is just a pretext for the war on the south of Lebanon, that actually killed a lot of innocent people .

The list of the websites that have been defaced this week follows, including NASA , Berkeley University, Microsoft and U.S Government web pages.

byond hackers team
avdc.gsfc.nasa.gov
byond hackers team avdc1.gsfc.nasa.gov
Dr.Jr7 wff.nasa.gov
Thehacker sspp.gsfc.nasa.gov
Mr.CrackerZ technology.grc.nasa.gov

from PC-Welt

The operators of a Web site that allowed MySpace.com users to track their visitors have been charged with trying to extort US$150,000 from the popular social networking site.

Shaun Harrison, 18, and Saverio Mondelli, 19, both of Suffolk County, New York, were arrested last Friday after traveling to Los Angeles to meet with undercover agents posing as MySpace employees, the Los Angeles District Attorney’s office said in a statement, released Wednesday.

The meeting was part of an shakedown attempt, the DA said, and the two have now been charged with illegal computer access and extortion. If convicted, the teenagers could face more than four years in prison. MySpace had blocked Harrison and Mondelli’s software earlier this year. After it did that, the defendants allegedly threatened to release new “unbreakable” code unless MySpace paid $150,000, the DA said.

from F-Secure :

Web Application Worms exploit persistent Cross Site Scripting (XSS) vulnerabilities in websites. It’s a new category of malware and it’s a growing concern for popular websites. Social Networking sites seem to be the most popular target as of now. MySpace has already been hit by two such worms - the Samy worm in October last year and last week’s Flash worm. Samy was written by a guy who wanted to become popular on MySpace. So he designed the worm to crawl through the site while furiously adding people to his friends list. The result: over a million “friends” in a couple of hours. Last week’s worm exploited a vulnerability in Macromedia Flash to redirect MySpace users to an objectionable webpage.

Last week MySpace was also the target of a malicious banner advertisement that ran on the site. It used the WMF vulnerability in Windows to serve adware to more than a million users with unpatched machines.

All this piqued our interest and we decided to see how secure other popular social networking sites are against “wormable” XSS vulnerabilities. We picked two among the top social networking sites with a reported combined user base of 80 million. Within half an hour we had discovered over half a dozen potentially “wormable” XSS vulnerabilities in each site! We stopped looking after finding half a dozen, but we are sure there are a lot more holes in there. With about a day’s work a malicious attacker with a half-decent knowledge of javascript could create a worm using just one of these vulnerabilities.

from ex-parrot.com

Upside-Down-Ternet

My neighbours are stealing my wireless internet access. I could encrypt it or alternately I could have fun.

Not going to say much about this.. Just go check it out.

I-Hacked will be in attending Defcon14 in Las Vegas this year.  We will be there Aug 3rd-6th and we will have a whole new set of T-SHIRTS! (more info on that soon)

If you would like to meet me (hevnsnt) or surbo, hunt us down while we are there…. Who knows you might even score a free t-shirt from us. (and maybe a beer or two)  I will be updating The Edge each morning letting you know which briefings Surbo and I plan on attending, and what we are wearing.  I would really love to meet any and all the I-Hacked readers who will be attending Defcon.

If there is any interest, we could probably setup a I-Hacked Meet.  If you are in (or going to be) in the Vegas area and would be interested in a meet, please let me know.   Seriously, if you have any interest, let me know — because I am not going to set one up unless I get some feedback that there is some interest.  I would probably set something up in a nice "Bar" type forum, so if you are not 21 (and you are still interested) let me know that as well.

Sorry for the cross-double post, but I wanted to make sure the entire I-Hacked audience was aware! Help get the word out by Digging this story!

from Misspellr

Each day, there are over a million items listed for auction or for sale around the world. With so many new items listed, some of them are bound to have misspelled keywords (typos). These misspelled listings do not show up in most searches and therefore items can be had for cheap.
About Misspellr

Misspellr is a powerful tool to find those misspelled keywords! Search with Misspellr to uncover great deals on items that would normally get passed by. Unlike other sites, Misspellr lets you choose which typo combinations to try. You can also choose between craigslist, eBay, and Yahoo Auctions. Best of all, this is free!

from MetkuMods - Because you love your hardware!

For some reason I had a thought on trying to combine a graphical LCD with a computer mouse. Perhaps this had something to do with my review of Logitech’s G15 Gaming keyboard six months back. Like in my MouseFan mod that I did in 2001, I decided to joke around by addind a fan inside a computer mouse. At that time people were putting more and more fans to their setups so I thought it would be funny to see one inside a mouse. I believe this LogiNoki started with similar thought patterns. One can find LCDs and TFTs embedded to almost everything so why not inside a mouse. And why settle for an ascii or even monochrome display as there should be usable graphical color displays available out there…

from camerahacking :: View topic - A message from Pure Digital Technologies

We at Pure Digital Technologies have to let you all know that this recent behavior has unfortunately passed the line separating cool/fun from completely illegal. Our code and algorithms are proprietary and protected by copyrights worldwide. We think you know that (1) it has been more than 15 years since a copyright notice has been required in the US, and much longer outside the US and (2) copyright protection has nothing to do with security or ease of access.

Yes, one of our folks may have accidentally left the virtual window less than fully secure. But, most of you wouldn’t think it was okay to climb through an unlocked window of our office and steal our things (and if you would, well, get ready for some jail time). The reality is… the same thing applies here, no matter how stupid you think we’ve been. Our ftp files are our property and downloading them (as well as posting them and screwing around with them) is a clear violation of our copyrights, not to mention a variety of other federal and state civil and criminal laws.

In addition to copyrights, it is totally clear from your postings on this site that everyone was well aware that any lapse on our part was an unintentional mistake and that all the downloaded material is proprietary and confidential. It is not okay to misappropriate our confidential info (and it doesn’t take much skill to steal versus really hack).

You all know very well that we are not litigation crazy (in fact, just the opposite). We welcome this group and your efforts; so long as they remain legal efforts.

Accordingly, we want you to know that it is not our desire to haul anyone into court (yes, we have the IP addresses from our logs). However, the extent of the damage (and our appropriate response) will likely depend on how fast all this information (and anything any of you have derived from it) is removed from this and any other sites as well as deleted from all your machines and storage media.

This really needs to happen TODAY; hopefully that will avoid the worst of the potential damage and can be the end of it.

BTW we sell an awesome reusable video camcorder that offers 2-3 times the quality, a zoom lens, and 30 minutes of storage. Here is a link to a $20 rebate and a list of stores and sites for purchase. It¹s a much better deal (although, less fun) than illegally stealing files (or using stolen files,
also illegal) to hack our camcorders/cameras.

http://www.puredigitalinc.com/products/index.html

Keep up the good (legal) work. Our next generation single-use products (with new security) are now beginning to hit the market.

Again, this purging really needs to happen TODAY.

Pure Digital Technologies

This really upsets me,
1) They left their FTP wide open
2) The hackers used techniques to back engineer the challenge/response (they didnt steal code)
3) The copyright doesnt even cover the challenge/response.. Does it?

I say screw Pure Digital, Hackers keep hacking.