Showing posts with label hack fb. Show all posts
Showing posts with label hack fb. Show all posts

Tuesday, 28 October 2014

Turn USB Drives Into Undetectable CyberWeapons

Once again USB has come up as a major threat to a vast number of users who use USB drives – including USB sticks and keyboards.
Security researchers have released a bunch of hacking tools that can be used to convert USB drive into silentmalwareinstaller.This vulnerability has come about to be known as "BadUSB", whose source code has been published by the researchers on the open source code hosting website Github, demanding manufacturers either to beef up protections for USB flash drive firmware and fix the problem or leave hundreds of millions of users vulnerable to the attack.
The code released by researchers
Adam Caudill and Brandon Wilson has capability to spread itself by hiding in the firmware meant to control the ways in which USB devices connect to computers. The hack utilizes the security flaw in the USB that allows an attacker to insert malicious code into their firmware.But Wait! What this means is that this critical vulnerability is now available online for hackers, cyber criminals and everybody to use so as to infect as many computers as they want.
SOURCE CODE AVAILABLE ONLINE TO EVERYBODY
In a talk at the Derbycon Hacker Conference in Louisville last week, the duo were able to reverse engineer the USB firmware, infect it with their own code, and essentially hijack the associated device. The researchers also underlined the danger of the Bad USB hack by going in-depth of the code.The security hole was first revealed by researchers from Berlin-based Security Research Labs (SRLabs in Germany)at the Black Hat security conference in LasVegas two months ago, and here you can watch the video of their presentation. The German researchers didn’t publish their source code because they thought it to be dangerous and too hard to patch.
The good news is that this vulnerability presents in only one USB manufacturer Phison electronics, a Taiwanese electronics company. But the bad side of it is that Phison USB sticks can infect any given device they are plugged into, and the company has not yet revealed who it manufactures USB sticks for. This is the fact it is still unclear as to how widespread the problem may be at the moment.A Phison USB stick can infect any type of computer, but it isn’t clear if its able to infect any other USB device that is plugged into them afterwards or not.
However, Phison controllers are found in a very large number of USB thumb drives available on the market.
Bad USB VULNERABILITY IS UNPATCHABLE
The flaw in USB basically modifies the firmware of USB devices, which can easily be done from inside the operating system, and hides the malware in USB devices in a way that it become almost impossible to detect it. The flaw goes worst when complete formatting or deleting the contents of a USB device wouldn't vanish the malicious code, since its embedded in the firmware.
IMPACT OF BadUSB ATTACK
Once compromised, the USB devices can reportedly:
*.enter keystrokes
*.alter files
*.affect Internet activity
*.infect other systems, as well, and then spread to additional USB devices
*.spoofs a network card and change the computer’s DNS setting to redirect traffic
*.emulates a keyboard and issue commands on behalf of the logged-in user,
for example to exfiltrate files or install malware
Get source code from here

Hack Facebook by cookie stealing

Facebook Authentication Cookies
The cookie which facebook uses to authenticate it's users is called"Datr", If an attacker can get hold of your authentication cookies, All he needs to do is to inject those cookies in his browser and he will gain access to your account.
This is how a facebook authentication cookie looks like:
Cookie:  datr=1276721606-b7f94f977295759399293c5b0767618dc02111ede159a827030fc;
How To Steal Facebook Session Cookies And Hijack An Account?
An attacker can use variety of methods in order to steal your facebook authentication cookies depending upon the network he is on, If an attacker is on a hub based network he would just sniff traffic with any packet sniffer and gain access to victims account.If an attacker is on a Switch based network he would use an ARP Poisoning request to capture authentication cookies, If an attacker is on a wireless network he just needs to use a simple tool called firesheep in order to capture authentication cookie and gain access to victims account.
In this example below I will be explaining how an attacker can capture your authentication cookies and hack your facebook account with wireshark.
Hack facebook account with wireshark.
Step 1 -First of all download wireshark from the official website and install it.
Step 2 -Next open up wireshark click on analyze and then click on interfaces.
Step 3 -Next choose the appropriate interface and click on start.
Step 4 -Continue sniffing for around 10 minutes.
Step 5 -After 10 minutes stop the packet sniffing by going to the capture menu and clicking on Stop.
Step 6 -Next set the filter tohttp.cookie contains “datr”at top left, This filter will search for all the http cookies with the name datr, And datr as we know is the name of the facebook authentication cookie.
Step 7 -Next right click on it and gotoCopy- Bytes - Printable Text only.
Step 8 -Next you’ll want to open up firefox. You’ll need both. Greasemonkey and the cookieinjector script. Now open up Facebook.com and make sure that you are not logged in.
Step 9-Press. Alt C. to bring up the cookie injector, Simply paste in the cookie value into it.
Step 10 -Now refresh your page and viola you are logged in to the victims facebook account.
Note:This Attack will only work if victim is on a http:// connection and even on https:// if end to end encryption is not enabled.

How to Recover Deleted Facebook Messages, Photos And Videos

How to Recover Deleted Facebook Messages and Other Data. It sounds very Useful & very interesting topic. You can nowget back your past removed facebook messages, pictures and video clips, from facebook database. you have to go by the steps that are not much hard to do. Some easy steps and you did it. If you've got any difficulty then don’t ignore to comment right below the tutorial.
Before recovering old removed facebook messages, images and video clips you must have follow these things. Just some easy and simple steps to follow that are provided below
*.You need to click hereto open general account settings of your facebook account.
*.Then find option at the end"Download a copy of your Facebook data" and click on it.
*.It will show you a message that backup data has been sent on your email address.
*.Soon after few time, you will geta mail confirmation that your data is ready. Now you need to click on the link provided by Facebook. (Keep in mind This is simply for protection).
*.Then, on next page you'll see, a Download Archive Button, click it and you'll be prompt to submit your password to carry on, That is a safety action by Facebook.
*.After submitting your facebook password, on another screen you'll be found your download link for the data will be mailed to your email id that you put to make your facebook account.
*.Now download the file. Unzip that file. and open the folder where you'll recover deleted facebook messages, pictures and Videos, as well as friend list.
All data are typically in.html format.and you'll be not able to use them usually.
Therefore, you'll have to double click on the file and choose your favorite web browser to open up the file, the file will open within your browser where you'll have accessibility to all of your data.Enjoy, Don’t forget to share this tutorial with your buddies, may using this tutorial they'll be able to get back their memorable messages, that might be removed by mistake. if you've got any problem,  Don’t forget to comment.

Popular Posts