Security Solutions for Beast attack against SSL/TLS Vulnerability

Juliano Rizzo and Thai Duong presented a new attack on Transport Layer Security (TLS) at the Ekoparty security conference in Buenos Aires, Argentina. The researchers found that encryption, which should protect us, when we connect to some sites over HTTPS, may be compromised. The researchers say that their code is called BEAST (Browser Exploit Against SSL / TLS) prove to the world that any cryptographic protocol designed to TLS 1.1, is vulnerable and can be quite easily deciphered. Researchers try to decode the authentication cookies used to login to your account PayPal, within 10 minutes, far faster than anyone expected. If successful, the faith of Internet users in one of the pillars of online safety is fully dissipated.BEAST is different from the many published attacks against HTTPS, - said Dwan. - While other attacks are focused on property, authenticity SSL, BEAST Attacks privacy protocol. As far as we know, BEAST implements first attack, which actually decodes requests HTTPS.

Cisco provide some solutions related to this attack on blog. Protocols TLS 1.1 and 1.2 do not have a similar vulnerability, Additionally, TLS versions 1.1 (RFC 4346) and 1.2 (RFC 5246) are not affected by this issue. In TLS version 1.1 the implicit Initialization Vector (IV) was replaced with an explicit IV. Also, Datagram Transport Layer Security (DTLS) protocol versions 1.0 and 1.2 are not affected (DTLS is defined in RFC 4347). But these versions of the protocols are not supported any sites or some other popular browsers, and therefore the most popular sites currently are vulnerable. Almost all Web servers at the moment use SSL 3.0 or TLS 1.0. Of all the browsers support TLS 1.2 are only Opera, beginning with the tenth version, and Internet Explorer 8 on Windows 7 and above. Neither Mozilla Firefox, or Google Chrome TLS 1.1/1.2 is not currently supported.

Another thing to highlight is that OpenSSL implemented a feature where they send an “empty TLS record” immediately before they send a message. This empty TLS record causes a change in the CBC state where people consider it to give the message “a new IV” that the attacker can’t predict. This feature in OpenSSL is disabled with the “SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS” option and it’s also included in the “SSL_OP_ALL” option. In OpenSSL versions 0.9.6d and later, the protocol-level mitigation is enabled by default, thus making it not vulnerable to the BEAST attack.For applications that use OpenSSL, this “empty-record” trick can be enabled as a workaround. For a more permanent solution, the adoption of TLS 1.1/1.2 is what’s needed.

Nickm from the Tor Project does a good job introducing the basics on his blog for people who don’t know all the technical details about the TLS protocols and CBC.

VA-House_Deluxe_-_The_New_Season_2011.2-2CD

Part1     Part2     Part3

Tracklist

101-tv_rock_and_hook_n_sling_feat._rudy_-_diamonds_in_the_sky_original_mix-mst.mp3
102-kings_of_tomorrow_-_finally_sandy_rivera_and_simon_mattsons_2011_remix-mst.mp3
103-tom_novy_-_your_body_2011_lissat_and_voltaxx_remix-mst.mp3
104-matt_caseli_and_danny_freakazoid_-_raise_your_hands_original_mix-mst.mp3
105-roger_sanchez_feat._mobin_masters_and_mc_flipside_-_worldwide_bobby_burns_remix-mst.mp3
106-tim_mason_-_the_moment_steve_angello_edit-mst.mp3
107-axwell_-_heart_is_king_dbn_remix-mst.mp3
108-alesso_-_nillionaire_original_mix-mst.mp3
109-arno_cost_-_lise_original_mix-mst.mp3
110-jesse_voorn_feat._greysun_-__new_life_original_mix-mst.mp3
111-johnny_buss_and_daniel_von_b_feat._j-sun_-_do_you_feel_the_same_hard_rock_sofa_mix-mst.mp3
112-michael_gray_feat._rae_and_danism_-_you_will_remember_main_mix-mst.mp3
113-tristan_garner_and_gregori_klosmann_-_bounce_original_mix-mst.mp3
201-nouveau_yorican_-_chiuso_chocolate_puma_remix-mst.mp3
202-copyright_feat._shovell_-_kama_yeah_roul_and_doors_remix-mst.mp3
203-e-smoove_feat._latanza_waters_-_beautiful_soul_revival_remix-mst.mp3
204-ruben_alvarez_and_yves_murasca_feat._gran_purismo_-_all_the_same_ymra_club_mix-mst.mp3
205-warren_clarke_-_everybody_main_mix-mst.mp3
206-loui_and_scibi_feat._jacob_a._-_around_original_mix-mst.mp3
207-tikki_tembo_feat._kyla_sexton_-_ride_original_vocal_mix-mst.mp3
208-roy_davis_jr._feat._j._noize_and_kaye_fox_-_enjoy_the_ride_james_talk_and_ridney_mix-mst.mp3
209-benjamin_franklin_feat._chappell_-_its_on_ruben_alvarez_remix-mst.mp3
210-felix_navarro_-_tanya_original_mix-mst.mp3
211-kaelig_feat._jayhem_-_bring_back_central_avenue_classic_remix-mst.mp3
212-brockman_and_basti_m_-_turn_me_on_dohr_and_mangold_remix-mst.mp3
213-dbn_and_matty_menck_feat._rosie_henshaw_-_redemption_original_mix-mst.mp3
000-va-house_deluxe_-_the_new_season_2011.2-2cd-2011-mst.sfv
000-va-house_deluxe_-_the_new_season_2011.2-2cd-2011-mst.nfo
000-va-house_deluxe_-_the_new_season_2011.2-2cd-2011-cover-mst.jpg

Hacking & penetration testing over Powerlines

Defcon 19 Pentesting over Powerlines from David Kennedy on Vimeo.

Description: When performing penetration tests on the internal network in conjunction with physical pentests your always concerned about being located. Let's remove that barrier and perform your penitents over power lines and never be detected. In this presentation we'll cover how you can perform full
penetration tests over the power lines and hack into home automation systems. Home automation has been gaining momentum not only in small homes but in large companies and organizations. There's a huge variety of solutions out there both open-source and "proprietary" that provide these solutions to your homes and businesses. Home automation gives us several things for example, full-fledge 85mbps networks, security systems, lights, windows, HVAC, doors, and cameras and they are all generally done through the power lines or through short-wave wireless communications. So let's break it.... During this presentation we'll be going over the non-existence of security over these devices, show proof of concept demonstrations on hacking these devices, and while we're at it, demonstrate how to disable all security mechanisms that use the different protocols like X10.

Dave Kennedy (ReL1K) is a Director of Information Security for a Fortune 1000 company and the founder of DerbyCon. David is a penetration tester that likes to write code, break things, and develop exploits. Dave is on the Back|Track and Exploit-Database development team and the co-host of the Social-Engineer podcast and started the first Offensive-Security Ohio Chapter. David continues to contribute to a variety of open-source projects. David had the privilege in speaking at some of the nations largest conferences on a number of occasions including BlackHat, Defcon and Shmoocon. David is the creator of the Social-Engineer Toolkit (SET), Fast-Track, modules/attacks for Metasploit, and has released a number of public exploits. David heavily co-authored the Metasploit Unleashed course available online and has a number of security related white-papers in the field of exploitation. David is the author of the book "Metasploit: A Penetration Testers Guide". Lastly, David worked for three letter agencies during his U.S Marine career in the intelligence field specializing in red teaming and computer forensics.

Adobe Photoshop Lightroom v3.5 MacOSX Incl Keymaker

Description:
Adobe Photoshop Lightroom 3 software helps you bring out the best in your photographs, whether you’re perfecting one image, searching for ten, processing hundreds, or organizing thousands.Create incredible images that move your audience. Experiment fearlessly with state-of-the-art nondestructive editing tools. Easily manage all your images. And showcase your work in elegant print layouts, slide shows, and web galleries, as well as on  popular photo-sharing sites. All from within one fast, intuitive application.
Version 3.5:
The Adobe Photoshop Lightroom 3.5 update includes these enhancements:

• Additional camera support for over 20 new camera models including the Nikon Coolpix P7100, Olympus E-PL3 and Sony SLT-A77
• Corrections for issues introduced in previous versions of Lightroom 3

Download

NOVA S39E02 Surviving the Tsunami HDTV XviD

 

Download

The earthquake that hit the northern coast of Japan on
March 11, 2011, was recorded at magnitude 9.0, the worst ever recorded in Japan. It generated an unprecedented tsunami, obliterating coastal villages and towns in a matter of minutes. In some areas, the tsunami climbed above 100 feet in height and traveled miles inland. Amazingly, amateur and professional photographers captured it all on video, including remarkable tales of human survival, as ordinary citizens became heroes in a drama they never could have imagined. As the waves rush in, a daughter struggles to help her elderly mother ascend their rooftop to safety; a man climbs onto an overpass just as the wave overtakes his car. These never-before-seen stories are captured in video and retold after the fact by the survivors who reveal what they were thinking as they made their life-saving decisions. Their stories provide lessons for how we should all act in the face of life-threatening disasters.

VA - Tubes 2011 Vol.2 (2011)

Part1     Part2     Part3

Tracklist :

Disc 1/2

01 Inna Modja - French Cancan 3:36
02 Dj Antoine vs Timati Ft. Kalenna - Welcome To St. Tropez 3:15
03 David Guetta Ft. Flo Rida & Nicki Minaj - Where Them Girls At 3:15
04 Britney Spears - I Wanna Go 3:30
05 Elisa Tovati & Tom Dice - Il Nous Faut 3:06
06 The Black Eyed Peas - Dont Stop The Party 6:08
07 Sak Noel - Loca People 3:36
08 Muttonheads Ft. Eden Martin - Trust You Again 3:26
09 Colonel Reyel Ft. Krys - Dis-Moi Oui 4:00
10 Selah Sue - Raggamuffin 2:39
11 Pzk Ft. Dogg Soso - Chuis Bo 3:30
12 Corneille - Le Jour apres La Fin Du Monde 3:32
13 Keenv - Prince Charmant 3:17
14 Shakira Ft. Pitbull - Rabiosa 2:50
15 Shym - Tourne 3:29
16 Remady Ft. Manu-L - The Way We Are 2:59
17 Oh Land - Sun Of A Gun 3:25
18 Aylin Prandi - 24000 Baci 2:08
19 Melissa Nkonda - Nouveaux Horizons 3:12
20 Antoine Clamaran & David Esse Ft. Lulu Hughes - A Deeper Love 3:32

Disc 2/2

01 Moussier Tombola - Logobitombo 3:30
02 Slai - Autour De Toi 3:28
03 Magic System - La Danse Des Magiciens 3:51
04 Sisi K. Ft. Bb Model - Elle Danse Sexy 2:37
05 Jessy Matador Ft. King Kuduro & Bra Zil - Galera 2:57
06 Les Jumo Ft. Mohombi - Sexy 3:07
07 Celis - Je Tai Choisie 3:18
08 Big Ali Ft. Shana P. - Distress 3:28
09 Gums Ft. Elephant Man - In My Life 3:06
10 Chris Brown - She Aint You 4:07
11 Zoe Badwi - Freefallin 3:14
12 Gilles Luka - I Can Believe 3:33
13 Anton Wick Ft. Evelyn Thomas - Thats It 3:19
14 Dim Chris & Amanda Wilson - You Found Me 3:07
15 Loona - Vamos A La Playa 2:57
16 Alexandra Stan - Get Back Asap 3:28
17 Junior Caldera - Blasphemy 3:22
18 Zac Harry - Heal Me 3:17
19 Katy Isterika - Electric Violin 2:47
20 Radio Killer - Lonely Heart 3:29

Evidence – Cats and Dogs (iTunes Deluxe Version)-2011

Download

Track List:

01. The Liner Notes feat. Aloe Blacc
02. Strangers
03. The Red Carpet feat. Raekwon & Ras Kass
04. It Wasn t Me
05. I Don t Need Love
06. You
07. God Bless That Man
08. Fame feat. Roc Marciano & Prodigy
09. James Hendrix (StepBrothers)
10. Late For The Sky feat. Slug & Aesop Rock
11. Crash
12. Where You Come From? feat. Rakaa, Lil Fame & Termanology
13. To Be Continued…
14. Falling Down
15. Well Runs Dry f/Krondon
16. The Epilogue
01. The Liner Notes (feat. Aloe Blacc)
02. Strangers
03. The Red Carpet (feat. Raekwon & Ras Kass)
04. It Wasn’t Me
05. I Don’t Need Love
06. You
07. God Bless That Man (Interlude)
08. Fame (feat. Roc Marciano & Prodigy)
09. James Hendrix (Evidence & The Alchemist as Step Brothers )
10. Late For The Sky (feat. Slug & Aesop Rock)
11. Crash
12. Where You Come From? (feat. Rakaa, Lil’ Fame & Termanology)
13. …
14. To Be Continued…
15. Falling Down
16. Well Runs Dry (feat. Krondon)
17.The Epilogue
18. Sleep Deprivation (Bonus track)
19. Good Times (Bonus Track)

Slim Thug Presents-Boss Hogg Outlawz-Outlaw Wayz-2011

Download

Tracklisting:
1. Intro 1:58
2. Outlaw Wayz 4:45
3. Crazy 4:00
4. Turn My Knock Up 3:54
5. Slow Down Here 3:31
6. Swimming In Money 4:21
7. Hogg In Da Game 3:47
8. Gangsta 4:24
9. Get High 4:35
10. Movie 3:43
11. Skin 4:33
12. Like Us 5:26
13. Big Bucks 4:12
14. Be Back 3:12
15. Over 4:11
16. Im Tired 4:14
17. Comin Around 5:35
18. Remain A G 5:14

51 2011 BRRiP XViD AC-3

Part1      Part2      Part3

Plot: 51 chronicles what happens after political pressure from the American public forces the Air Force to provide a few well-known reporters with limited access to the most secretive base on the planet: Area 51. When one of the base’s hidden ‘long term visitors’ exploits this unprecedented visit as a chance to liberate himself and his fellow alien captives, Area 51 turns from a secure government base to a horrifying destination of terror.

VA_-_90s_Party__Mixed_by_DJ_Ben_Azoulay-2011

Part1       Part2

Department of Homeland Security Releases Cyber Security Evaluation Tool (CSET)

The Cyber Security Evaluation Tool (CSET) is a Department of Homeland Security (DHS) product that assists organizations in protecting their key national cyber assets. It was developed under the direction of the DHS National Cyber Security Division (NCSD) by cybersecurity experts and with assistance from the National Institute of Standards and Technology. This tool provides users with a systematic and repeatable approach for assessing the security posture of their cyber systems and networks. It includes both high-level and detailed questions related to all industrial control and IT systems. The tool is available for download, and the program also offers training and support at no cost to organizations engaged in administering networks that control facilities identified as being crucial to both the nation's economy and national security.

CSET is a desktop software tool that guides users through a step-by-step process to assess their control system and information technology network security practices against recognized industry standards. The output from CSET is a prioritized list of recommendations for improving the cybersecurity posture of the organization's enterprise and industrial control cyber systems. The tool derives the recommendations from a database of cybersecurity standards, guidelines, and practices. Each recommendation is linked to a set of actions that can be applied to enhance cybersecurity controls.

CSET has been designed for easy installation and use on a stand-alone laptop or workstation. It incorporates a variety of available standards from organizations such as National Institute of Standards and Technology (NIST), North American Electric Reliability Corporation (NERC), International Organization for Standardization (ISO), U.S. Department of Defense (DoD), and others. When the tool user selects one or more of the standards, CSET will open a set of questions to be answered. The answers to these questions will be compared against a selected security assurance level, and a detailed report will be generated to show areas for potential improvement. CSET provides an excellent means to perform a self-assessment of the security posture of your control system environment.

Key Benefits

• CSET contributes to an organization's risk management and decision-making process
• Raises awareness and facilitates discussion on cybersecurity within the organization
• Highlights vulnerabilities in the organization's systems and provides recommendations on ways to address the vulnerability
• Identifies areas of strength and best practices being followed in the organization
• Provides a method to systematically compare and monitor improvement in the cyber systems
• Provides a common industry-wide tool for assessing cyber systems

Download CSET

[Source]

Daryl_Hall-Laughing_Down_Crying-2011

Download

Track List:
01. Laughing Down Crying 4:13
02. Talking To You (Is Like Talking To Myself) 4:26
03. Lifetime Of Love 3:49
04. Eyes For You (Ain’t No Doubt About It) 5:35
05. Save Me 4:17
06. Message To Ya 4:17
07. Wrong Side Of History (So Cold) 3:47
08. Get Out Of The Way 5:01
09. Crash And Burn 4:46
10. Problem With You (Bone’s Last Ride) 4:38

VA-Top_100_Favourite_Classical_Chillout_Tunes-6CD-2011

 

Part1   Part2    Part3     Part4    Part5      Part6     Part7

Tracklist

101-debussy-clair_de_lune-kopie.mp3102-grieg-solveighs_song-kopie.mp3103-satie-gymnopedie_no1-kopie.mp3104-faure-apres_un_reve-kopie.mp3105-tchaikovsky-waltz_of_the_flowers_(the_nutcracker)-kopie.mp3106-mozart-piano_concerto_no21_in_c_elvira_madigan-kopie.mp3107-franck-panis_angelicus-kopie.mp3108-grieg-nocturne_(lyric_suite)-kopie.mp3109-liszt-waldesrauschen-kopie.mp3110-tchaikovsky-autumn_song-kopie.mp3111-liadov-waltz-kopie.mp3112-vivaldi-the_four_seasons_winter_-_ii_largo-kopie.mp3113-mendelssohn-venetian_gondola_song-kopie.mp3114-tchaikovsky-melodie-kopie.mp3115-debussy-arabesque_no1-kopie.mp3116-chopin-nocturne_in_e_flat_op9_no2-kopie.mp3117-mozart-voi_che_sapete_(le_nozze_di_figaro)-kopie.mp3118-faure-in_paradisum_(requiem)-kopie.mp3119-js_bach-jesu_meine_freude-kopie.mp3201-satie-gnossienne_no5-kopie.mp3202-tchaikovsky-song_of_the_lark-kopie.mp3203-brahms-symphony_no3_in_f_-_iii_poco_allegretto-kopie.mp3204-marcello-adagio-kopie.mp3205-chopin-prelude_in_d_flat_op28_no15_raindrop-kopie.mp3206-handel-harp_concerto_-_iii_allegro_moderato-kopie.mp3207-dvorak-waldesruhe-kopie.mp3208-mendelssohn-song_without_words_in_e_op_19_no1-kopie.mp3209-chopin-nocturne_in_b_flat_minor_op9_no1-kopie.mp3210-schubert-impromptu_in_a_flat_op142_no2-kopie.mp3211-brahms-intermezzo_in_b_flat_minor_op117_no2-kopie.mp3212-schumann-des_abends_(fantasiestuecke_op12)-kopie.mp3213-debussy-reverie-kopie.mp3214-pergolesi-stabat_mater_dolorosa-kopie.mp3215-mozart-laudate_dominum_(vespers_k339)-kopie.mp3216-bruckner-locus_iste-kopie.mp3301-vivaldi-the_four_seasons_spring_-_i_allegro-kopie.mp3302-saint-saens-the_swan-kopie.mp3303-brahms-intermezzo_in_e_flat_op117_no1-kopie.mp3304-js_bach-air_(suite_no3_in_d)-kopie.mp3305-mozart-unaura_amorosa_o_la_saria_da_ridere_(cos_fan_tutte)-kopie.mp3306-grieg-morning_(peer_gynt)-kopie.mp3307-tchaikovsky-waltz_(serenade_for_strings)-kopie.mp3308-delibes-flower_duet_(lakme)-kopie.mp3309-faure-sicilienne-kopie.mp3310-schumann-5_stuecke_im_volkston_-_ii_langsam-kopie.mp3311-liszt-liebestraum_no3-kopie.mp3312-mozart-requiem_aeternam_(requiem)-kopie.mp3313-vivaldi-the_four_seasons_summer_-_iii_presto-kopie.mp3314-brahms-lullaby-kopie.mp3315-bizet-habanera_(carmen)-kopie.mp3316-grieg-aases_death_(peer_gynt)-kopie.mp3317-boccherini-menuet-kopie.mp3401-schumann-traeumerei-kopie.mp3402-delibes-notturno_(coppelia)-kopie.mp3403-dvorak-humoreske-kopie.mp3404-mozart-piano_concerto_no23_in_a_k_488_-_ii_andante-kopie.mp3405-massenet-meditation_(thas)-kopie.mp3406-vivaldi-the_four_seasons_autumn_-_iii_allegro-kopie.mp3407-paganini-cantabile-kopie.mp3408-liszt-consolation-kopie.mp3409-mozart-ave_verum_corpus-kopie.mp3410-tchaikovsky-barcarolle-kopie.mp3411-js_bach-brandenburg_concerto_no4_-_ii_andante-kopie.mp3412-beethoven-fuer_elise-kopie.mp3413-grieg-an_den_fruehling-kopie.mp3414-telemann-air_(tafelmusik)-kopie.mp3415-mozart-canzonetta_sullaria_che_soave_zeffiretto_(le_nozze_di_figaro)-kopie.mp3416-faure-berceuse-kopie.mp3417-mendelssohn-symphony_no4_in_a_op90_italian-kopie.mp3418-mussorgsky-the_old_castle_(pictures_at_an_exhibition)-kopie.mp3419-beethoven-piano_sonata_no14_in_c_sharp_minor_moonlight_-_i_adagio_sostenuto-kopie.mp3501-faure-cantique_de_jean_racine-kopie.mp3502-brahms-ave_maria-kopie.mp3503-handel-hallelujah_(messiah)-kopie.mp3504-mendelssohn-duetto_in_a_flat_op38_no6_(lieder_ohne_worte)-kopie.mp3505-dvorak-slavonic_dance_in_e_minor_op72_no26-kopie.mp3506-bizet-intermezzo_(larlesienne_suite)-kopie.mp3507-chopin-piano_concerto_no2_in_f_minor_op21_-_ii_larghetto-kopie.mp3508-js_bach-o_haupt_voll_blut_und_wunden_(matthaeus-passion)-kopie.mp3509-scarlatti-sonata_in_b_minor_k_87-kopie.mp3510-brahms-intermezzo_in_a_op118_no2-kopie.mp3511-dittersdorf-harpsichord_concerto_in_a_-_ii_adagio-kopie.mp3512-mendelssohn-song_without_words_in_d_op85-kopie.mp3513-schubert-an_die_musik-kopie.mp3514-mozart-serenade_no10_in_b_flat_gran_partita_-_iii_adagio-kopie.mp3601-beethoven-piano_sonata_no8_in_c_minor_pathetique_-_ii_adagio_cantabile-kopie.mp3602-tchaikovsky-violin_concerto_in_d_op35_-_ii_andante-kopie.mp3603-chopin-berceuse_in_d_flat_op57-kopie.mp3604-mozart-piano_concerto_no27_in_b_flat_k_595_-_ii_larghetto-kopie.mp3605-schumann-arabesque_op_18-kopie.mp3606-mendelssohn-piano_trio_no1_in_d_minor_op49-kopie.mp3607-mozart-la_ci_darem_la_mano_(don_giovanni)-kopie.mp3608-tchaikovsky-scene_(swan_lake)-kopie.mp3609-purcell-when_i_am_laid_in_earth_(dido_and_aeneas)-kopie.mp3610-mahler-urlicht_(symphony_no2_resurrection)-kopie.mp3611-faure-legie_op24-kopie.mp3612-purcell-hear_my_prayer_o_lord-kopie.mp3613-lotti-crucifixus-kopie.mp3614-mozart-clarinet_concerto_in_a_k_622_-_ii_adagio-kopie.mp3615-janacek-the_madonna_of_frydeck-kopie.mp3

J. Cole Cole World – The Sideline Story (iTunes Version)-2011

Download on Multiupload

Track List:

01 Intro
02 Dollar and a Dream III
03 Can’t Get Enough (feat. Trey Song)
04 Lights Please
05 Interlude
06 Sideline Story
07 Mr. Nice Watch (feat. Jay-Z)
08 Cole World
09 In the Morning (feat. Drake)
10 Lost Ones
11 Nobody’s Perfect (feat. Missy Elliott)
12 Never Told
13 Rise and Shine
14 God’s Gift
15 Breakdown
16 Work Out
17 Who Dat (Bonus Track)
18 Daddy’s Little Girl (Bonus Track)

Regular Show S03E01-E02 x264

 

Regular Show is an American animated television series created by J. G. Quintel. The series was originally developed as a short for Cartoon Network’s unaired Cartoonstitute show.

 Download

Mysql.com hacked, serving BlackHole exploit malware

Mysql.com hacked, serving BlackHole exploit malware

MySQL.com website is currently hacked and compromised with a JavaScript malware (and serving malware to anyone visiting it). The mysql.com website is injected with a script that generates an iFrame that redirects the visitors to http://truruhfhqnviaosdpruejeslsuy.cx.cc/main.php, where the BlackHole exploit pack is hosted.

"It exploits the visitor's browsing platform (the browser, the browser plugins like Adobe Flash, Adobe PDF, etc, Java, ...), and upon successful exploitation, permanently installs a piece of malware into the visitor's machine, without the visitor's knowledge," say the researchers. "The visitor doesn't need to click or agree to anything; simply visiting mysql.com with a vulnerable browsing platform will result in an infection."

It is, of course, impossible to say who the attackers are. The domain reached through the iFrame is registered to one Christopher J Klein from Miami and is located in Berlin, Germany. The domain serving the exploit and the malware is located in Stockholm, Sweden.The administrators of the mysql.com domain are being contacted, but the site is still up and compromised, say the researchers.
[Source]

Ani-Shell v1.4 Released With Python - Bind Shell , Anti-Crawler Feature and MD5 Cracker

Ani-Shell is a simple PHP shell with some unique features like Mass Mailer , A simple Web-Server Fuzzer , a DDoser , A MD5 hash Cracker , Python and PHP Bind-Shells , Anti-Crawler Features etc! This shell has immense capabilities and have been written with some coding standards in mind for better editing and customization!
New Features :-

• MD5 Hash Cracker
• Python Bind-Shell
• Anti-Crawler Function
• Shell Support for some Older Servers
• Better CSS
• Whole New Logo

Ani-Shell Project Page : http://sourceforge.net/projects/ani-shell/
Ani-Shell Homepage : http://ani-shell.sourceforge.net/
Default login : lionaneesh
Default password : lionaneesh

Facebook track your cookies even after logout !

According to Australian technologist Nik Cubrilovic: 'Logging out of Facebook is not enough.' He added, Even after you are logged out, Facebook is able to track your browser's page every time you visit a website. He wrote in his blog 'With my browser logged out of Facebook, whenever I visit any page with a Facebook like button, or share button, or any other widget, the information, including my account ID, is still being sent to Facebook.'

After explaining the cookies behavior he also suggested a way to fix the tracking problem: 'The only solution to Facebook not knowing who you are is to delete all Facebook cookies.'

The Dead Files S01E01 Evil in Erieville HDTV XviD

The new one-hour series pairs a hard-nosed detective, who looks at the physical evidence, with a gifted psychic communicator, who has her well established sixth sense to work with. They explore each crime scene on their own, and only join together at the end to compare notes and together discover some shocking results.

 

In the series premiere, a haunted farmhouse in rural New York is investigated by retired homicide detective Steve DiSchiavi and psychic communicator Amy Allan. They examine the sites individually, and after coming to their own conclusions, compare their findings.

 Download

FIFA 12 CLONEDVD

fdgd

Description:
FIFA Soccer 12 brings to the pitch the game-changing new Player Impact Engine, a physics engine built to deliver real-world physicality in every interaction on the pitch. Revolutionary gameplay innovations inspired by the real-world of soccer make FIFA Soccer 12 deeper and more engaging. All-new Precision Dribbling delivers a higher fidelity of touch on the ball for attacking players, while Tactical Defending fundamentally changes the approach to defending by placing equal importance on positioning, intercepting passes and tackling. Plus, CPU players have been infused with Pro Player Intelligence, the next generation of player intelligence and performance. Stay tuned for more features to be announced in the coming months.

Features:

Tactical Defending – Fundamental changes to the approach of defending places equal importance on positioning, intercepting passes and tackling at the right moment. Tactics and timing are crucial.
Precision Dribbling – Enjoy new ways to take on opponents, more time on the ball, and complete control of the pace of the game. Utilize close dribble touches in tight spaces, on the wings, and to fend off opponents.
Online Friendlies – Play your friends in 10 game seasons and prove who is the best. Earn the most points each season to hoist the trophy, and then start all over again the next season to try to defend your title.
FIFA Ultimate Team – Now available for the first time at launch and on disc! Build your Ultimate Team from the best football stars in the massive FIFA Ultimate Team online community.
Complete Authenticity – Over 500 officially licensed clubs and more than 15,000 players.
All-New Career Mode – Now driven by the same drama, storylines and emotion as the real world game, users will face more decisions and factors than ever before. Evaluation logic has been improved to reflect a player?s true value, and the excitement of Transfer Deadline day has been expanded.
EA SPORTS Football Club – For the first time ever, everything within FIFA 12, is measured in a meaningful way. Earn experience points and level up to build your status. Gamers will relive crucial real-world football events through regular challenges so that FIFA 12 will look, feel and play like the real-world season.
Player Impact Engine – The new physics engine is built to deliver real-world physicality in every interaction on the pitch. Experience an infinite variety of outcomes in every contact. Players feel more resilient on the ball, push and pull during the fight for possession, preserving their natural momentum.

 Part1     Part2     Part3      Part4      Part5      Part6      Part7      Part8

Part9    Part10    Part11    Part12     Part13     Part14     Part15     Part16

Iron.Man.2011.S01E09.A.Duel.of.Iron.HDTV.XviD

Download

Wolverine.2011.S01E09.Hell.Road.HDTV.XviD

 

Download

How to get the new facebook time line profile !!

A useful but probably unintended side effect of the new Timeline profile, is that it allows you to very easily see who unfriended you on Facebook over the past few years. All credit to Matt Stopera for the screenshots below. And we’ll mention this video again with instructions on how to enable Timeline for your profile.
1) Select a year in the sidebar (TIP: Start with the year you joined Facebook and work your way to 2011)



2) Look for the Friends box that shows how many new friends you made



3) Click on the number of new friends
4) Those with an “Add Friend” button next to them are the people who unfriended you (or where unfriended by you)




5) Feel bad all day wondering why X unfriended you back in 2007.

FBI Arrests two Suspected LulzSec and Anonymous Hackers

Search warrants were also being executed in New Jersey, Minnesota and Montana. The FBI  arrested two alleged members of the hacking collectives LulzSec and Anonymous on Thursday morning in San Francisco and Phoenix, According to Fox news. The suspected hacker arrested in California is homeless and alleged to have been involved in the hacking of Santa Cruz County government websites.


The person arrested in Arizona is a student at a technical university and allegedly participated in the widely publicized hack against Sony. Both groups have been targeted by the FBI and international law enforcement agencies in recent months.

Meanwhile, the FBI arrested an alleged Anonymous member in San Francisco. The man, who is reported to be homeless, is said to have been involved in internet attacks against Santa Cruz County government websites.Just because a man is homeless, of course, doesn't mean that he can't get an internet connection. Coffee houses, cafes, libraries, etc can all offer cheap or free internet access - and because the computer being used can be a shared device, it may be harder to identify who might have been responsible for an attack compared to a PC at a home.
The arrests shouldn't surprise anyone. They made two errors:
Mistake #1: They brough too much attention to themselves.
It is said that John Gotti, the mafia boss, brought so much attention to himself that he became a natural, high profile target for law enforcement. As Amichai Shulman, our CTO, stated before, the Lulzsec, the hackers "were extremely unfocused in their goal and gained attention mainly due to the relative intensity of their activity and lack of other good media topics." They brought too much attention to themselves and you could expect law enforcement to find them. If you look at hacking historically, over the past 20 years many of the high-profile attacks or those that involve serious losses to governments or commercial companies have ended up with law enforcement finding the perpetrators eventually, such as Albert Gonzalez.

Mistake #2: They didn't cover up their tracks.
Let's review some of the Lulzsec chat logs from a few months ago. One snippet, in reference to discussions Lulzsec was having with the media, shows how the hackers themselves admit they gave away too much informaiton:
Topiary - Sabu and I got a bit carried away and gave LulzSec away a bit
As Imperva's Tal Be'ery said in this USA Today article, "When you're running this kind of operation for a long time, especially with not very concrete plans, you're bound to make mistakes." The mistakes Lulzsec and Anonymous made during their hacking spree left an electronic trail with enough foot prints to product today's arrests.

Prison Diaries S01E01 HDTV XviD

TLC shares the full story behind some the women who are incarcerated in America’s prisons in the all-new six-episode series “PRISON DIARIES”, premiering Thursday September 19 at 10/9c. Featuring first-person interviews with the convicted women, their victims and families, and the people who brought the crimes to justice, each story offers an exclusive and harrowing journey inside the female criminal mind.

The first episode, “Confessions from Death Row,” features Emilia Carr, one of the estimated 63 women on death row in the US, convicted for the brutal killing of her romantic rival; and Patricia Ignacio, sentenced to 15 years for 2nd degree murder.

Download

VA-Ibiza_Night_Dancefloor-2011

 Download

01.Dual Minds – Boogie (Extended Mix) [05:10]
02.Herion & Alleston Vs. Dynatronic Feat. Donna Alma Rouge – Noth [05:45]
03.Luca Ruco Feat. Sherrita – Just Believe (Alex Barattini Remix) [06:21]
04.Komback – Impression (Roby Montano & Mark Mastersoul Rmx Exten [05:05]
05.Marco Burani & Desire Mcneish – Sex in the Music (Extended Mix [05:13]
06.Fabio Mek Feat. Barbara Evans – Lotta Lovin’ (Dani B. & Dark A [05:23]
07.Giuseppe Battaglia – in My Soul (House Extended Mix) (G. Batta [04:54]
08.Heart of Space – Save Me (Club Mix) [05:45]
09.Karmin Shiff Feat. Juliana Pasini & Kryz Santa – Ole Olα (I’m [06:28]
10.Morris Corti & Eugenio Lamedica – Party with Me (Original Exte [05:33]
11.Logical Dreamers Feat. Inusa Dawuda – Bla Bla Bla (Original Mi [04:38]
12.Twins of House – Somebody (Club Mix) [04:57]
13.Ricky Salerno – Tell Me You Want Me (Original Ricky Salerno Ex [04:53]
14.DJ Koma Feat. Jvale – I Love Music (DJ Seph Remix) [04:11]
15.Valerio M DJ & Luca Sala Ft. Pregio & Sduke – Fin Dove Arriva [03:45]