Mass Defacement of Khorasan Razavi Schools Websites
In this week the hacker known as dr-iman has been busy. Zone-H indicates that he has carried out several defacements of several Iranian websites but his biggest work this week is a mass defacement of 954 websites belonging to Khorasan…
Iranian Advanced Malware Targets Human Rights Organizations
This article is based on a presentation at BlackHat USA 2016 by security researchers Claudio Guarnieri and Collin Anderson from Amnesty International and the Penn University -USA-. Their presentation indicated that the Iranian regime is targeting human rights organizations. Attacks in July and August 2016 against bloggers…
Ashiyane DST Discover WordPress Userpro Remote File Upload Bug
Userpro Wordpress Userpro Remote File Upload Security researchers at Iranian team Ashiyane Digital Security Team have discover remote file upload vulnerability in Wordpress -Google Dork: inurl:/wp-content/plugins/userpro/- Vulnerability risk is rated as high by cxsecurity.com This module -requires using Metasploit- exploits an arbitrary…
Iranian Expertise in IoT Security Research
Iranian academic security researchers at the ITRC (Information Technology Research Center) have published several white papers on the Internet of Things (IoT) which are available here: www.iot.itrc.ac.ir/fa/doc/list and the Security Challenges and Problems (security and privacy) in IoT and Proposed Solutions…
Iranonymous Deface Saudi Websites
Iranian hackers from Iranonymous have made deface of many Saudi websites include Saudi Hajj/Umrah pilgrimage website –http://www.dh.com.sa/– Dhafiri Services Company is allow pilgrims to make bookings for Hajj and Umrah The company was founded in the city of Khobar Deface…
Gray Hat Group Find Pixel2URL XSS Bug
Hacker MR.BL4CK of Gray Hat Group have discover new bug: Pixel2URL Cross Site Scripting -XSS- XSS -Cross Site Scripting- is type of computer security vulnerability found in web applications enable attackers to inject client-sides script into web pages viewed by other users Vendor is: http://pixel2url.com/ Greetz…
Android Security and Forensic Science by LinX64
A good article by Iranian academic is important step forward for people to understand security risks and how to undertake basic forensics if their Android device gets hacked. Mohammad Rezania -LinX64- of Firuzabad Campus of Islamic Azad University in Iran,…
ALFA-TEAM Hidden Shell V2.5 Released
ALFA-TEAM The ALFA-TEAM has made a newer version of the hidden shell called ALFA-SHELL -version 2.5- The application’s features are an improvement on the features found in V2.0: Block Google – Yahoo – Bing – Yandex And …. Crawlers Hidden…