IEDB Discover Cross-Site Scripting Vulnerabilities
Security team IEDB – Iranian Exploit DataBase – discovered Cross-Site Scripting Vulnerabilities in two CMS software. STI-CS CMS – http://sti-cs.com/ – and ehsanweb CMS -http://www.ehsanweb.com – have vulnerability discovered by Amir. Cross-site scripting – XSS – is a type of…
Iran Security Group Cyber Attack Israel
Iran Security Group Cyber Attack Israel Iran Security Group – ISG – news agency recently announced successful bot net attacks on Israel websites, servers and institutions. All attacks were successful making websites inaccessible for 12 hours. Evidence of attacks released…
Iranian Dark Coders Team Deface 10 Governments
In last 2 days Iranian Dark Coders Team make defacement on 10 websites of governments around world. List of defaced sites: Website URL Government Defacement Mirror suporte.ic.uff.br Brazil http://zone-h.org/mirror/id/22825862 www.tivertontowncouncil.gov.uk United Kingdom http://zone-h.org/mirror/id/22823629 geothermal.bappenas.go.id Indonesia http://zone-h.org/mirror/id/22823654 disdik.balikpapan.go.id Indonesia http://zone-h.org/mirror/id/22823655 www.chuquisaca.gob.bo…
Italy Websites Mass Defaced By Ashiyane
Ashiyane Digital Security Team member Gazmeh12 made mass defacement on Italy IP address 94.23.64.16. Defacement was made on 42 .it domain websites on IP address. Defacement message was: Your Box Owned By Behrooz_Ice – Q7x – Sha2ow – Azazel –…
WordPress CK-And-SyntaxHighLighter Arbitrary File Upload
Announce finding by Hekt0r – member of Iran Security Group- of discovering vulnerability -Wordpress ck-and-syntaxhighlighter Plugin Remote File Upload vulnerability- Remote File Inclusion allows an attacker to include a remote file, usually through a script on the web server. The…
DSST Linux FireWall V2
Announce new version -2- of Linux FireWall by DSST team -Dark Soul Security Team- New firewall available here and was updated on 08/08/2014 by DSST author sajjad13and11 Firewall features: Open-source product by Iran team Firewall is based on iptables Stateful firewall/proxy/cache Useful…
Hekt0r Discovers J&W CMS SQL Vulnerability
Member of Iran Security Group, Hekt0r, discovered SQL Injection Vulnerability in J&W Communications CMS program. J&W Communications CMS program website is www.jw-com.com Credits from Hekt0r were: [+] Special Thanks: Root SmasheR, Mr.Moein, UmPire, Ali Ahmady, Saeed.Jok3r M4hdi, Black Hacker, Vahid…
Special Defacements – July 2014
Special Defacements – July 2014 Iranian hackers made 413 special defacements during month of July in year 2014. Special defacements made on websites of Thailand, Brasil, Kenya, and Peru governments. Total of government domain defacements: Government Defacement Number Thailand 407…
University Cyber Competition – 2nd Security Festival for Information Exchange
Announce University Cyber Competition news at festival.nsec.ir The 2nd national security competition in the field have information exchange will be held on 14 August by APA center of University of Technology. The questions and topics for competition is such that…
Ashiyane Deface Thailand Ministry Of Education
Iranian security team Ashiyane Digital Security Team made defacement on Thailand government Ministry of Education website. Website http://kalasin.nfe.go.th defaced by Ashiyane team member Ahooraxx yesterday. Defacement mirror is http://zone-h.org/mirror/id/22747081. Ahooraxx defacement message was: Your Box Owned By Behrooz_Ice – Q7x – Sha2ow – Azazel –…