Japanese Game maker Club Nintendo's 24,000 accounts Hacked
Japanese video game maker Nintendo recently revealed that one of its
main fan sites Club Nintendo got hacked and Out of 15.5 million login
attempts in
brute-force
process, almost 24,000 user accounts have been hijacked early last month.
Nintendo said it first became aware of the illicit logins on Tuesday
evening after a large number of access errors on the site. However the
security team believe that the hackers obtained the logins and
passwords
from an outside resource.
The fan site, Club Nintendo, allows
3DS and Wii owners, as well as other fans of Nintendo games and hardware
to answer survey questions and register their products. Members can do
all this in exchange for “coins” or points. These can later be traded
for other goods or services on the site. The site is open to users from
all over the world, about four million of which are located in Japan.
These accounts contain secure data of users’ real names, addresses, phone numbers and email information. "
There were scattered illicit attempts to login since June 9, but we became aware of the issue after the mass attempt on July 2
," company said.
Last week, Nintendo informed the
public that it had suspended accounts that were accessed illegally and
sent emails to the proper owners asking them to reset their passwords.
Nintendo clarified that the cyber
attack were concentrated in Japan only which has about four million
registered members in the fan site Club Nintendo.
Other game companies recently hit by security problems include
Ubisoft
, which last week warned that customer user names, e-mail addresses
and cryptographically hashed passwords were illegally accessed from an
account database that had been breached.
Do you have questions, comments, or suggestions? Feel free to post a comment!
Get Regular Updates, Its FREE!
Read More
Microsoft enables China to spy on Skype users via keyword triggers
University of New Mexico student Jeffrey Knockel claims to have revealed an encrypted list of 1,100+ keywords within China's Skype client, TOM-Skype. This list, containing words like "BBC" and phrases like "Democratic Unionist Party", are suspected to be used for monitoring TOM-Skype users.
When a TOM-Skype user sends chat messages containing "suspicious" language found within the program's periodically updated keyword list, Knockel's research indicates an alert is sent to TOM-Skype's servers containing the sender's account name, message timestamp and detected word(s).
The list was uncovered after Knockel had been monitoring suspicious communications between TOM-Skype and its Chinese servers. The collection of words was encrypted, but Knockel was able to employ some clever analytical techniques and reverse-engineering, which eventually lead to its uncovering.
The two-year long research project found only evidence of text-based chat monitoring. A similar mechanism used for voice communications was not found, although that doesn't preclude other vectors of surveillance.
According to Reporters Without Borders, numerous journalists and activists have had their Skype communications intercepted. As a result, privacy and anti-censorship advocates have chided Microsoft for not being more transparent about TOM-Skype and its dealings with China.
If you're going to do business in China, you have to play by their rules. In this case, Microsoft has ostensibly made concessions to appease Chinese authorities, granting the company access to the most populous market on Earth.
"As a Chinese company, we adhere to rules and regulations in China where we operate our businesses." TOM-Skype said in 2008.
The practice though, although possibly a demand of Chinese policy, is likely to make Western idealists cringe. However, it should be noted that Western democracies aren't necessarily above these kinds of techniques themselves.
Knockel has published the growing list of questionable keywords online. The words are in Chinese, but running them through a translator reveals a plethora of seemingly politically-focused language.
Do you have questions, comments, or suggestions? Feel free to post a comment!
Get Regular Updates, Its FREE!
Read More
Hidden NEWBIE SYSTEM (Make 50$ Every Day)
Would you like to have an extra few 50$ each day?
Find out the little-known Secrets of high school students who make money online.
Find out the little-known Secrets of high school students who make money online.
This system is not a mystery, not a time consuming process to figure out, and can make you money whether you are in high school, college, or even ropped out.
If you are tired of flipping burgers or being that overly nice customer service guy, then with this money-making method you can tell your Fat Bald boss Fuck off.
No matter what your hobbies are or what you like to do, you will see how sitting on the internet, which is probably what you are doing now, will bring you $$$
No matter what your hobbies are or what you like to do, you will see how sitting on the internet, which is probably what you are doing now, will bring you $$$
Password: WEENIE
Do you have questions, comments, or suggestions? Feel free to post a comment!
Get Regular Updates, Its FREE!
Read More
3 Online Backup Providers to Save Your Work
Have you ever sat in front of your computer that just failed wondering if you’ll ever see your work again? Maybe it was a day before a deadline?
I have, it’s one of the worst feeling ever. You have to start from scratch, and rewrite everything.
The only worse feeling is when you’ve lose precious family photos and videos.
This is why backups are so important. A while back backing up meant saving everything to an external hard drive, but these days there’s a new industry emerging called online backups. These companies automatically sync your files to their servers, making sure you have them if anything happens to your physical machine.
There have been over 50 of these companies launching recently, so I’ve decided to list the top 3 companies here. The services vary in the features that they have, the price, and of course how many GB you can back up.
ZipCloud
Zipcloud is a company in the UK who are built primarily for macs, but their software works on all platforms. They are built with the motto of simplicity, so they are extremely easy to use.
This does mean that power user features will be missing, but for any home user it is great. You can get unlimited space if you need it, but their basic package is 75GB of space.
The price for unlimited GB is only $2 more per month if you pay upfront, so that’s pretty awesome. You can read a review about them here: http://www.bestbackups.com/blog/75/zipcloud/
Carbonite
You might have seen some carbonite adverts around the internet, they’ve spent a lot of money on marketing to get the brand out there. They offer packages that you have to pay for per year, and they offer unlimited space, but do limit how many machines you can back up. So for example, for just 1 device is cost $59 per year for unlimited space.
Their software unfortunately is not as good for mac and linux users, so they work best on windows. Check out their review here: http://www.bestbackups.com/blog/81/carbonite/
SugarSync
Sugarsync do not offer unlimited space, but they have a maximum package of 250GB which is plenty for most people.
They also have the advantage of being able to back up as many devices as you want, including your phones. You can check out a review about them here: http://www.bestbackups.com/blog/77/sugarsync/
Do you have questions, comments, or suggestions? Feel free to post a comment!
Get Regular Updates, Its FREE!
Read More
Another Java Zero-day vulnerability being exploited in the wild
Do you still have Java installed? There is a bad news for you ! FireEye has detected yet another Java zero-day vulnerability being exploited in attacks in the wild.
The vulnerability targets browsers that have the latest version of the Java plugin installed Java v1.6 Update 41 and Java v1.7 Update 15 and FireEye warned that the vulnerability is being exploited to install a remote-access trojan dubbed McRat, researchers from security firm.
"Not like other popular Java vulnerabilities in which security manager can be disabled easily, this vulnerability leads to arbitrary memory read and write in JVM process,"
"After triggering the vulnerability, exploit is looking for the memory which holds JVM internal data structure like if security manager is enabled or not, and then overwrites the chunk of memory as zero."
The exploit is reportedly different from the one used to attack Facebook, Twitter, Apple, and several other companies last month.
It is not known if this particular Java vulnerability is on Windows only or on Linux and Mac OS X, too. However, McRat is a Windows Trojan so the in-the-wild attacks are specifically targeting Windows users.
If you don't want any chance of being infected, the best thing to do is uninstall Java altogether.
Do you have questions, comments, or suggestions? Feel free to post a comment!
The vulnerability targets browsers that have the latest version of the Java plugin installed Java v1.6 Update 41 and Java v1.7 Update 15 and FireEye warned that the vulnerability is being exploited to install a remote-access trojan dubbed McRat, researchers from security firm.
"Not like other popular Java vulnerabilities in which security manager can be disabled easily, this vulnerability leads to arbitrary memory read and write in JVM process,"
"After triggering the vulnerability, exploit is looking for the memory which holds JVM internal data structure like if security manager is enabled or not, and then overwrites the chunk of memory as zero."
The exploit is reportedly different from the one used to attack Facebook, Twitter, Apple, and several other companies last month.
It is not known if this particular Java vulnerability is on Windows only or on Linux and Mac OS X, too. However, McRat is a Windows Trojan so the in-the-wild attacks are specifically targeting Windows users.
If you don't want any chance of being infected, the best thing to do is uninstall Java altogether.
Do you have questions, comments, or suggestions? Feel free to post a comment!
Get Regular Updates, Its FREE!
Read More
Evernote Hacked, Hackers steal Usernames and Passwords
Evernote , a suite of software and services designed for notetaking and archiving - announced that Evernote network has been breached by hackers and urged users to reset their passwords.
The company claimed they found no evidence that any of the content stored in Evernote was accessed, changed or lost. They also said they have no evidence that payment details of Evernote Premium or Evernote Business customers was accessed.
But the hackers gained access to Evernote user details including email addresses, usernames, encrypted passwords with salt. The company didn't mention which encryption algorithm was used to encrypt the password.
"While our password encryption measures are robust, we are taking additional steps to ensure that your personal data remains secure." wrote in the official blog post. " This means that, in an abundance of caution, we are requiring all users to reset their Evernote account passwords."
Do you have questions, comments, or suggestions? Feel free to post a comment!
Get Regular Updates, Its FREE!
Read More