French Facebook Phishing Scam Steals More Than 5000 Facebook Accounts

In my previous post "Facebook Phishing At It's Best" I wrote about recent facebook related phishing scam stealing thousands of facebook accounts, However every time I come across a phishing site, I try to find the password file which saves the entered passwords, I was able to obtain the passwords txt file, However what surprised me most that a french facebook phishing site had more than 5000 entered usernames and passwords.

Here is the exposed password file with over 5000 passwords:

I am screening through the password files of rest of the phishing pages, I will update you once I find some more of them.

Facebook Phishing Scams At It's Best

Phishing as discussed before is one of the most widely used method to hack a facebook account, Phishing holds the top position in an article I wrote on 10 Ways How Hackers Can Hack Your Facebook Account In 2011. There are variety of methods to carry out phishing attack, In a simple phishing attacks a hacker creates a fake login page which exactly looks like the real facebook page and then asks the victim to login into that page, Once the victim logins through the fake page the victims "Email Address" and "Password" is stored in to a text file, The hacker then downloads the text file and get's his hands on the victims credentials.

Unpatched Apache Flaw Allows The Attacker To Access Protected Directories

Security researcher Prutha Parikh discovers yet another reverse proxy vulnerability with Apache, The vulnerability was discovered as she was trying to write the signature for the older CVE-2011-4317 vulnerability. According to the security researcher an attacker can manage to access the internal network if the vulnerability is successful exploited.

Adobe Photoshop CS5 Mac Serial Numbers [Download]

Adobe Photoshop CS5 is the latest version of photoshop.Adobe Photoshop CS5 is the industry-standard image editing software, used worldwide by professional photographers and designers who want to perfect their digital images, but due to its high price a very few number of people can afford it.
Recently we covered about Adobe Photoshop CS5 Serial Numbers , However lots of readers requested Adobe Photoshop CS5 Mac Serial Numbers, Therefore we are writing this post and providing you working Adobe Photoshop CS5 Mac Serial Numbers.

How To Find Vulnerabilities in PHP Applications - PHP Vulnerability Hunter

PHP Vulnerability Hunter is an advanced automated whitebox fuzz testing tool that can elicit a wide range of exploitable faults in PHP web applications. Since most of the webapplications now a days are on PHP, therefore PHP applications have been one of the major target of hackers, PHP Vulnerability scanner is the same tool that helped detect most of the web application vulnerabilities listed on the advisories page.

Vote For RHA And Win A Free Copy Of Facebook Hacking Course - Contest

Today, RHA blog has been nominated in best technology blogs International  on PakistanBlogAwards, PakistanBlogAwards is a contest which is held every year b/w bloggers of Pakistan, It was first held in the year 2010. What's special about this blog award is that this contest is being held by Google CIO Pakistan.

iPhone Exploitation With Metasploit

Lots of people think that Metasploit can only be used for exploiting a computer OS, However the recent video from Charlie Miller, shows how easy it is to use Metasploit to exploit an iPhone and gain access To it.
Whenever an App is uploaded to the app store it is checked and scanned for malware and then it's served to the users. Charlie Discovered a flaw which helped him to bypass the code signing of Apple's app store and open up a meterpreter session on his metasploit.

DUQU Trojan On The Loose

On the 1st of September this year a new computer worm was discovered by the Laboratory of Cryptography and System Security of the Budapest University of Technology and Economics in Hungary. This worm was named DUQU under the pretenses that it creates files with the prefix "~DQ".

Stuxnet Explained Under 5 Minutes

Stuxnet was one of the most popular and most sophisticated worm ever discovered by security experts and malware researchers, The Stuxnet uses up to 4 Unpatched zero days in windows kernel and includes many tricks to avoid being detected by any of the antivirus, Stuxnet is mostly coded in C, C++, again very unusual for a malware to be coded in different languages.

Apache Server 2.34 Vulnerable To DOS Attacks

After the huge success of Apache Killer, yet another tool has been actively spotted in the wild, It's an exploit written by Egyptian hacker named Xenon, The exploit is written in perl and can be easily modified for better results. According to the author this exploit is enough to compromise the availability of whole server with a single computer.

Computerized Prison doors Can Be Hacked With Stuxnet Worm

Computer researchers John Strauchs, Tiffany Rad and Teague Newman have recently discovered a way to hack into computerized prison doors without any difficulty. It just took security researchers very few amount of equipment and a baseband workspace.

THC SSL DDOS Leaves SSL Sites Vulnerable

When a SSL connection is established the server requires 15 times more power than the client, As a result of which sites with SSL can be knocked off easily due to the flaw in the protocol itself. German hacker's group THC has recently released a tool named SSL-DDOS which can be used to compromise the availbity of websites using secure connections.

Join RafayHackingArticles On Google Plus!

We are really excited to tell you that RafayHackingArticles has finally arrived on Google Plus, Google Plus is one of the recently launched social networking website of google, It has gained vast amount of popularity in short span of time. Google Plus has recently introduced Fan page feature just like facebook. So we thought to create a fan page for RHA so our readers can follow our blog on Google Plus.

Join RafayHackingArticles On Google Plus

Help Us Grow Our community by sharing our page with your friends.

Add RHA in your Circle Now !

PayPal Phishing Scam Spotted In The Wild

A new Phishing attack has bombed email addresses of many PayPal. The email begins with a sense of urgency that compels the user to check and check again whether the email sent is actually a scam or not according to the naked security. It asks the user to follow the instructions exactly as written.

Rafay Baloch is an Independent security researcher, Internet marketer, Entrepreneur and a SEO consultant, He is the founder of RHA blog and multiple other blogs. Rafay got famous after finding a Remote Code Execution bug inside PayPal for which PayPal awarded him a sum of 10,000$ Read More..

Join In!

RHA © 2013. All Rights Reserved.