Browsed by
Category: hacking

The biggest hacks of 2016 – A year in hacking

The biggest hacks of 2016 – A year in hacking

In case you didn’t know, in amongst the celebrity deaths, and the unraveling of the NWO bandwagon, 2016 was also a bumper year for hackers. Some of the biggest and most audacious hacks in history took place in 2016, including the hacking of the US elections, and the Mirai botnet DDOS attack, which took down some of the biggest sites on the internet including Amazon, Facebook and Twitter.

There have been the largest hacks of personal information in history. Also in 2016. Names such as Yahoo, with billions of accounts compromised.

So here’s my little run-down.

2016 – A year in hacking.

Adultfriendfinder hack

5) Adultfriendfinder hack – November 14th, 2016

Friend Finder Network Inc is a company that operates a wide range of 18+ services and was hacked in November of 2016 for over 400 million accounts representing 20 years of customer data.

A list of sites verified and how many affected accounts and a brief description:

  • Adultfriendfinder.com
    339,774,493 users
    “World’s largest sex & swinger community”
  • Cams.com
    62,668,630 users
    “Where adults meet models for sex chat live through webcams”
  • Penthouse.com
    7,176,877 users
    Adult magazine akin to Playboy
  • Stripshow.com
    1,423,192 users
    Another 18+ webcam site
  • iCams.com
    1,135,731 users
    “Free Live Sex Cams”
  • Unknown domain
    35,372 users

Total: 412,214,295 affected users

Most of the passwords hacked from the Friendfinder network were stored either as plain text, or lightly encrypted, (in the SHA1 protocol).

Once the accounts were modified and the encrypted passwords hacked, they were made available for sale on the Darkweb.

Here’s a list of the passwords most commonly used:-

RankPasswordFrequency
1123456900,420
212345635,995
3123456789585,150
412345678145,867
51234567890133,414
61234567112,956
7password101,046
8qwerty86,050
9qwertyuiop43,755
1098765432140,627
1112312339,614
1211111138,848
13pussy37,938
14fuckme36,008
15asdfghjkl35,021
1600000034,631
17fuckyou34,498
18abc12334,080
190000033,796
201111133,263
215555531,524
225432131,278
2312345230,111
2465432129,624
25pwd123428,061
26zxcvbnm27,237
27iloveyou24,155
28qwert22,499
2966666621,629
30asdfg20,696
31012345678920,485
32azerty19,700
33098765432119,641
34france19,559
35abcd123419,056
36password118,677
37fffff18,461
3811223318,152
3969696918,150
4012332117,703
4112121217,302
42asdfgh16,400
43football16,080
441234567891016,054
45abcde15,789
46qwerty12315,286
471qaz2wsx14,885
4812312312314,691
49pakistan14,173
50aaaaa13,543

Source: Leaked source.

Read More Read More

(Visited 104 times, 1 visits today)
Russian Google and Reddit misdirects skewing Google Analytics

Russian Google and Reddit misdirects skewing Google Analytics

Russian hackers target Google and Reddit

With browser hacks sending thousands of Russian visitors to UK and US sites.

Take a look at this screen shot of my analytics dashboard for December

Google analytics hacked

This is a display of the ‘Location’ statistics for December for this site provided from Google analytics.

Google analytics hacked

Analysis

Country codes

As you can see result number 2 is clearly a hack.

It reads – Secret.ɢoogle.com You are invited! Enter only with this ticket URL. Copy it. Vote for Trump!

This is not a country code. It appeared in November in the run-up to the elections.

Read More Read More

(Visited 18 times, 1 visits today)
Cryptowall: Remove and delete encrypted files

Cryptowall: Remove and delete encrypted files

These are the steps I’m going to be taking to remove the Cryptowall Virus and restoring my files to their previous state.

At present, I have the following means at my disposal.

  • System restore – Including restore shadow volumes
  • Online backups – Onedrive/Google drive
  • Offline backups – Solid state drive backups

Using a combination of these, I intend to restore my files to their previous state.

Step 1: Remove Virus:

To get things rolling again, and make my computer safe to use. I’ve to rid myself of the Virus.

Boot-time scan for viruses

Boot-time Scan

Most anti-virus software worth their salt have this option.

Has to be a boot-time scan to unsure your operating system and the connected files are not affected.

For my computer, which has 220GB used on the hard drive, it took around 3 hours.

Malware Bytes Scan

Malware bytes seeks those pieces of not-yet-virus material.

If you want to prevent your computer from getting the infection again, you need to run this.

JRT Scan

Junkware Removal Tool, or JRT.

Similar to Malware bytes, it simply insures that files associated with dubious activities won’t infect your machine in the future.

You may get some false positives with this, so not everyone likes to use it…

These steps are essential to ensure you have a clean system.

Read More Read More

(Visited 12 times, 1 visits today)
Cryptowall takes over my computer

Cryptowall takes over my computer

So….. Turns out the NHS, Fedex and a number of other companies and organisations have been hit by this same Ransomwear virus.

According to Avast, (who I use), there have been infections in 99 countries in the last 2 days.

Apparently, the NHS are still using windows XP on their computers. A 12 year old operating system.

Windows stopped patching XP on April 8, 2014.

That means it’s a sitting duck for systems using XP.

On my cloudflare account, most attacks come from XP computers, simply because they are so easy to commandeer and bend to the wills of evil hackers.

How to fight ransomwear?

If you, like I, did a search on this, “how to fight ransomwear, get rid of it from your computer”, it turns up a number of companies claiming to be able to ‘fix’ your system for exorbitant amounts of money.

I’ve done my own guide to removing ransomwear from your computer.

It works pretty well.

It worked when I got randsomwear, and you can find it here. My guide to removing ransomwear from your computer.

Below.

Article.


Cryptowall, ever heard of it? I hadn’t until tonight…

…. Watching Lost this evening… I went to open up VLC player, and I noticed that it was taking a long time to start-up.

Opening Process Explorer, I saw the SVChost, (a common windows task), in explorer.exe taking up around 4% of CPU.

Thought nothing of it. I know SVChost runs in the background carrying out important tasks for the operating system.

Watched Lost, (Series 4 Episode 8, ‘The shape of things to come’), as I finished, this PNG was displaying on Windows picture preview.Crytowall Ransomwear

I’d not opened this file. It was telling me Cryptowall, whilst I was watching lost, had encrypted all the files on my computer using RSA-2048 encryption.

My Pictures Library now looks like this….

Read More Read More

(Visited 24 times, 1 visits today)
Google attacked my website! – Google Cloud Services DoS attack

Google attacked my website! – Google Cloud Services DoS attack

And it wasn’t the first time.

The second day in a row, michaeltyler.co.uk has been hit by a Denial of Service attack eminating from ‘Google Cloud Services‘.

Each time, in the early hours of the morning, I’m visited by the ‘Google Cloud Service‘ bot, which subsequently visits ever page on my site in quick succession.Google

It’s called an

Asymmetric attack

(In this this type of attack, Application Layer receives high-workload requests that consume server resources such as RAM.)

This places an unnaturally high demand on the servers CPU, slowing the server down, and if left, possibly blowing it up. To stop this happening, when the CPU gets warm, it automatically designates the source and shuts it down, putting the offending site on error.

Each time, I’ve been able to trace the source of the problem to Google Cloud Services.

Google Cloud Services caching sites for their owners, but it’s closing my site down, maliciously!

Tracking code

Usually when you sign on to some sort of BOT activity on your site, you’re asked to put a verification code on there, to confirm that it’s actually you requesting the traffic, not some rogue element wishing to take your website down.

You as the owner, actively sign-on to have your site crawled.

Read More Read More

(Visited 30 times, 1 visits today)
Youtube HaCk3d

Youtube HaCk3d

You tube hackedSurprise.

Went to go on youtube this afternoon, check for outlandish videos to pass the time. The site had been hacked.

(It’s nice to know they are running Plesk, which is what they use on my web server).

Muslimist

No doubt, my first thoughts turn to the Muslimists and the media furor surrounding their little movement.

Also, Kim Jong Un, who’s always in an angry state.

Maybe someone hit the wrong button. But it’s strange, the ‘favicon’ is still showing in the top right corner of the tab.

Mainstream

It’s only 6 o’clock in the morning here, (as you can see from the clock at the bottom right hand side of the screen), whether the mainstream will report on this remains to be seen.

Whatever the case, I can’t get on the site and have to find something else to entertain my sick mentality.

(Visited 8 times, 1 visits today)