6:27 AM  Shubham Yadav  No comments

As a web savvy person of the modern era, you probably believe you are aware of all the potential security threats that you might come across when surfing the web. You know better than to trust that PayPal e-mail telling you to log in in 24 hours or your account will be closed, and you don't randomly download or open e-mail attachments, so you think you have the game locked up. Well, phishers have another way to get to you and your sensitive personal information. It's called click jacking.The term "clickjacking" was coined by Jeremiah Grossman and Robert Hansen in 2008. The exploit is also known as UI redressing.

So Clickjacking is a vulnerability used by an attacker to collect an infected user's clicks. The attacker can force the user to do all sort of things from adjusting the user's computer settings to unwittingly sending the user to Web sites that might have malicious code.

On a clickjacked page, the attackers show a set of dummy buttons, then load another page over it in a transparent layer. The users think that they are clicking the visible buttons, while they are actually performing actions on the hidden page. The hidden page may be an authentic page, and therefore the attackers can trick users into performing actions which the users never intended. There is no way of tracing such actions later, as the user was genuinely authenticated on the other page.

How to Prevent from Clickjacking Attacks:-

Clickjacking, put simply, is when a button, image, video, or some form of embedded content on a website is overlaid by an invisible layer that sits on top of the site underneath it.

1. Upgrade Flash Player:-Clickjacking is invisible. If you have Flash installed and you click on the wrong link, you're vulnerable.

However, Adobe's latest version of Flash is ready for the bad guys. Adobe recommends first and foremost upgrading to the latest version of Adobe Flash Player . The free upgrade adds some safeguards that will ask you for permission before granting unauthorized access to your camera, microphone, or any other data through your Flash preferences.

2. Edit Your Flash Settings:-  There are certain permissions settings that give you the control over whether to give Flash applications access to your computer. Turn them off to ensure nobody has access to your Flash settings without your permission.

3. Block Scripts From the Browser:-You can depend on some browser anti-malware technology and add-ons to prevent Flash attacks before they are even loaded. For Firefox you install the No Script Plugin.

7:06 AM  Shubham Yadav  No comments

This guest post was written by Helen Christina.
Normal 0 false false false MicrosoftInternetExplorer4 /

9:55 AM  Shubham Yadav  No comments

Hello Friends,

After a lot of request from my readers. I will coming with this Gmail password hacking tutorial. So first of all you have to know about what is Phishing? and how this Phishing Page works?

What is Phishing?                                                                                                                  Phishing is a way of attempting to acquire sensitive information such as usernames, passwords and credit card details by a fake page. i.e. in the phishing we create the fake login page which is a clone of the original page. Phishing is used for criminal activities for stealing the Username, Password,Credits Card information, Personal information etc

How the Phishing Page Works?
When a user types a Username Password in the the text box of phishing page ,The info is sent to "mail.php" which acts as a password logger and redirects the page to the original address of gmail. so that the victim does not know that yoursite is a fake/Phishing site and gets his gmail.com password hacked.

This tutorial is only for Educational purpose don’t misuse it  www.hackillusion.com will Not Hold any responsibility.

Step 1:- At this step we need to Phishing page, Download the gmail phishing page From Here.

http://www.ziddu.com/download/14215450/gmail_phishing.rar.html

After Download Extract the Phishing package, in this package there are three files.

1. Gmail.html

10:01 AM  Shubham Yadav  No comments

Hello Friends,

This post was send to me by Rakesh Kumar(Ambala). If you also want to to send your post than Contact me on Contact Us Page.

With the sudden rise in the Internet usage across the globe over the past few years, there has also been a rise in the amount of online scams and frauds. Today most of the Internet users are unaware of the most prevailing online threats which pose a real challenge for their safe Internet usage. As a result, Online Security has become a questionable factor for the most Internet users. However it is still possible to effectively combat online insecurity provided that the users are well aware of the common scams and frauds and know how to protect themselves. A study shows that over 91% of the Internet users are unaware of the online scams and are worried about their security. Well if you are one among those 91% then here is a list of 10 tips to ensure your total online security.

Always install a good antivirus software and keep it up-to-date. Also install a good anti-spyware to keep your PC away from spywares. Click Here for a list of recommended anti-spyware softwares.

Always visit known and trusted websites. If you are about to visit an unknown website, ensure that you do not click on suspectable links and banners.

Perform a virus scan on the files/email attachments that you download before executing them.

Regularly Update your operating system and browser software. For a better security it is recommended that you surf the Internet through the latest version of your browser program.

Never share your password (email, bank logins etc.) with any one for any reason. Choose a strong password (A blend of alphanumeric

9:42 PM  Shubham Yadav  No comments

Google technologies are known for their extended beta test periods -- so much so that when the search giant actually ships a finished product it's front page news. But if beta represents the salad days for a Google project, its adult life can be considerably shorter and more brutal. Consider the fate of Google Gears. Launched just four years ago, Gears officially ground to a halt last week, soon to be replaced by equivalent technology from the HTML5 specification.

Gears arrived in early 2007 amid much enthusiasm among Web developers. Its goal was to provide a means for Web browsers to maintain state between sessions, bridging the gap between the traditional desktop computing paradigm and the nascent world of cloud computing. By maintaining copies of essential data on the client PC, Gears allowed Web-based applications to remain accessible even when the PC lacked Internet connectivity.

However, there will be no more new Gears releases. Gears will never be available for the latest wave of browsers, including the just-released Internet Explorer 9 and the upcoming Firefox 4. Even Google's own Chrome browser, which has shipped with Gears built-in since its inception, will be dropping support for the technology as of version 12, due later this year.

It's tempting to interpret Gears' demise as a failure for Google, but that wouldn't be quite right. Rather, the decision to discontinue Gears can be seen as a victory in Google's drive to promote open Web standards as an application platform, and it offers telling insight into the ongoing HTML standardization process.

Leading by example
In retrospect, Google has made no secret of its plan to retire Gears. It warned developers that Gears technology would eventually be deprecated as early as December 2010. But when you read between the lines of the media coverage of Gears throughout its life cycle, it quickly becomes clear that Gears had a terminal date almost since its inception.

In 2008, about a year after Gears was launched, I interviewed Dion Almaer, who at that time worked for Google Developer Programs. Even then, Almaer made no secret of the parallel development efforts underway at Google and the W3C's HTML5 working group. "You can take a look at the HTML5 proposal that's being actively edited at the moment, and you'll see that there's a database API like Gears has a database API," Almaer said. "We very much want this to be part of the Web for everybody to use."

In fact, Almaer made no distinction between the Google Gears technology and the specification being mulled at the W3C. "We've got Gears out there," Almaer said. "We've learned a lot from actually doing this work to get it working offline. So now we can go back to the standards groups, and we can share our experience, and we can work with them to get these standards that have actually been battle-tested."

background: #EFEFEF url(https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi4gOO5NcYSzeXGtnON6lQpcys6EOV-2qKPbBoXLUpZ3IzWlvY2F2mFTIGC8pcB4y05_Lrh6a0f-LsOOmptwDT25xo6QSpwf3zhTK4eXZ_CagyvitiqQTh8UYDWSsH4gkAewsJx_z5KwEY/s1600/background.png) left top repeat-x;color:#222222;font-family:Arial,Helvetica,Sans-serif;font-size:13px;margin:0px;padding:20px 0px 0px 0px;

10:07 AM  Shubham Yadav  No comments

Hello Friends,
I have to come for this post because of from last some day i received many emails from my readers all of them ask me to create phishing page for different-2 website like gmail, yahoomail, facebook, orkut, hotmail etc. So today I will share the phishing method, So that everyone will able to create phishing page as their requirements.
This tutorial is only for Educational purpose don’t misuse it  www.hackillusion.com will Not Hold any responsibility. If you are not aware with Phishing than read it first “What is Phishing and How it Works?”

Follow these steps for create phishing page for any website:-
Step 1:- First of all open the Website in your browser for which you want to create Phishing page.
Step 2:- After open of the website copy the source code of website by right click on page and save to any name with “.html” extension.
Step 3:- Now open notepad and paste the below code and change the “http://www.redirectwebsite.com” to the address which you want to redirect the user after entering of user name and password. Pass.txt is our database where the details are stores and save this file to any name with “.php” extension. Suppose we save it as hi.php.
1:

6:20 PM  Shubham Yadav  No comments

kers. It seems that a plan is ready for an untethered jailbreak, which is scheduled for release in the week to come.

Stefan Esser (

8:39 AM  Shubham Yadav  No comments

A computer virus is a small program written to alter the way a computer operates, without the permission or knowledge of the user.It can copy itself and infect a computer. So the Virus must meet two criteria:
It must execute itself. It often places its own code in the path of execution of another program. It must replicate itself. For example, it may replace other executable files with a copy of the virus infected file. Viruses can infect desktop computers and network servers alike.

6:11 AM  Shubham Yadav  No comments

A COUPLE of 16-year old hackers had their wicked way exploiting a security vulnerability recently that allowed one of them to steal and publish a PHP cloud hosting firm's proprietary source code on Twitter.

On his company's blog, PHP Fog founder and CEO Lucas Carlson described how an Australian called 'Eliot' and an American called 'John' embarked on a competition to see who could deface Carlson's website the fastest.

Carlson said that 'John' gave instructions to 'Eliot' to break into PHP Fog's shared hosting environment. The PHP Fog boss admitted he made it easy when he "unfortunately and stupidly" had an old copy of the company's code on the server that had PHP Fog's system passwords on it, which it had not deleted or changed. Oops.

'Eliot' posted the old codebase, PHP Fog's intellectual property, on Twitter. That must have been a lot of 140 character messages!

Carlson's blog post goes on to say that he shut down PHP Fog because of this malarky, booted 'Eliot' off the system and then rebooted the servers. Apparently annoyed, the hacker then proceeded to log into PHP Fog's Twitter account, blog and DNS manager, pointing phpfog.com to a website called "PHPFog sucks".

Later on, 'Eliot' allegedly tried to apologise in an Instant Message, saying, "I don't want any hard feelings between us, this originally started as a proof of concept to prove your platform was insecure. I guess I did that, but there are better ways I could have gone about it."

6:27 AM  Shubham Yadav  No comments

As a web savvy person of the modern era, you probably believe you are aware of all the potential security threats that you might come across when surfing the web. You know better than to trust that PayPal e-mail telling you to log in in 24 hours or your account will be closed, and you don't randomly download or open e-mail attachments, so you think you have the game locked up. Well, phishers have another way to get to you and your sensitive personal information. It's called click jacking.The term "clickjacking" was coined by Jeremiah Grossman and Robert Hansen in 2008. The exploit is also known as UI redressing.

So Clickjacking is a vulnerability used by an attacker to collect an infected user's clicks. The attacker can force the user to do all sort of things from adjusting the user's computer settings to unwittingly sending the user to Web sites that might have malicious code.

On a clickjacked page, the attackers show a set of dummy buttons, then load another page over it in a transparent layer. The users think that they are clicking the visible buttons, while they are actually performing actions on the hidden page. The hidden page may be an authentic page, and therefore the attackers can trick users into performing actions which the users never intended. There is no way of tracing such actions later, as the user was genuinely authenticated on the other page.

How to Prevent from Clickjacking Attacks:-

Clickjacking, put simply, is when a button, image, video, or some form of embedded content on a website is overlaid by an invisible layer that sits on top of the site underneath it.

1. Upgrade Flash Player:-Clickjacking is invisible. If you have Flash installed and you click on the wrong link, you're vulnerable.

However, Adobe's latest version of Flash is ready for the bad guys. Adobe recommends first and foremost upgrading to the latest version of Adobe Flash Player . The free upgrade adds some safeguards that will ask you for permission before granting unauthorized access to your camera, microphone, or any other data through your Flash preferences.

2. Edit Your Flash Settings:-  There are certain permissions settings that give you the control over whether to give Flash applications access to your computer. Turn them off to ensure nobody has access to your Flash settings without your permission.

3. Block Scripts From the Browser:-You can depend on some browser anti-malware technology and add-ons to prevent Flash attacks before they are even loaded. For Firefox you install the No Script Plugin.

6:31 AM  Shubham Yadav  No comments

INTERNET PORTAL Yahoo has launched an instant search engine beta called Search Direct that will rival Google Instant.

The search engine will show results as users type in search terms, dynamically updating as soon as letters or words are changed. Yahoo is promising "direct answers" and "direct results" through its updated search engine, which it says will deliver a fast and simple search experience.

Search Direct will come with a number of features similar to those offered by Google. Trending searches will be displayed, which will be updated every 10 minutes. Search previews are available to see if the results are appropriate.

Yahoo also promises to display additional content at the top of searches for sports, news and finance, utilising its existing news, forecast and stock exchange services. In the future it plans to add more to this in the form of popular music and local listings.

Initially the public beta will only be available in the US, but Yahoo plans to expand its reach later this year.

5:21 AM  Shubham Yadav  No comments

Cross‐site request forgery  is a class of attack that affects web based applications with a predictable structure for invocation. This class of attack has in some form been known about and exploited since before the turn of the millennium. It is also known as CSRF or XSRF. Unlike cross-site scripting (XSS), which exploits the trust a user has for a particular site, CSRF exploits the trust that a site has in a user's browser.

CSRF flaws exist in web applications with a predictable action structure and which use cookies, browser authentication or client side certificates to authenticate users. The basic idea of CSRF is simple: an attacker tricks the user into performing an action of the attacker’s choosing by directing the victim’s actions on the target application with a link or other content. This is easiest to understand in the example of a HTTP GET.

Reflected vs. Stored CSRF

Similarly to Cross‐site scripting (XSS) vulnerabilities, CSRF vulnerabilities can be divided into two major categories: stored and reflected.

A stored CSRF vulnerability is one where the attacker can use the application itself to provide the victim the exploit link or other content which directs the victim’s browser back into the application, and causes attacker controlled actions to be executed as the victim. Stored CSRF vulnerabilities are more likely to succeed, since the user who receives the exploit content is almost certainly currently authenticated to perform actions. Stored CSRF vulnerabilities also have a more obvious trail, which may lead back to the attacker.

In a reflected CSRF vulnerability the attacker uses a system outside the application to expose the victim to the exploit link or content. This can be done using a blog, an email message, an instant message, a message board posting, or even a flyer posted in a public place with an URL that a victim types in. Reflected CSRF attacks will frequently fail, as users may not be currently logged into the target system when the exploits are tried. The trail from a reflected CSRF attack may be under the control of the attacker, however, and could be deleted once the exploit was completed.

8:28 AM  Shubham Yadav  No comments

Like all the time we are sharing another Facebook spam which will automatically like a video when you click on it. This spam is something which will make you like a Video and share it on your Facebook wall without your consent. Which is like a spam.The scam basically is about an Italian journalist; Marika Fruscio showing her breasts on Italian TV!.

More over like any other spam, this title of video which is adult in nature, will make you click the video and again as soon as you will click on video, it will reload and video will be shared on your wall.

A quick search on Facebook shows that the scam is definitely enticing because tons of people are clicking on it already. Rest assured you aren’t getting to look at any videos showing breasts, so please don’t click on it.

12:29 AM  Shubham Yadav  No comments

There is good news and bad news in this year’s X-Force 2010 Trend and Risk Report from IBM. The good news is that it seems that spam and phishing attacks are leveling off. Also, mobile devices have not been compromised in any big way, yet. The bad news is that IT security threats are getting increasingly sophisticated and targeted.
Based on intelligence gathered through research of public vulnerability disclosures, and the monitoring and analysis of more than 150,000 security events per second during every day of 2010, the observations from the IBM X-Force Research team finds that more than 8,000 new IT security vulnerabilities were documented, a 27 percent rise from 2009. Public exploit releases were also up 21 percent from 2009 to 2010. This data points to an expanding threat landscape in which sophisticated attacks are being launched against increasingly complex computing environments.
There seems to be a declining interest in spamming. IBM reports the historically high growth in spam volume leveled off by the end of 2010. This indicates that spammers may be seeing less value from increasing the volume of spam, and instead are focused on making sure it is bypassing filters. Spam volumes peaked, and then leveled off — In 2010, spam volumes increased dramatically, reaching their highest levels in history. However, the growth in volume leveled off by the end of the year. In fact, by year’s end, spammers seemed to go on vacation, with a 70 percent decline in traffic volumes occurring just before Christmas and returning early in the new year.

12:31 AM  Shubham Yadav  No comments

A former teenage hacker who once served time for an online stock-trading scheme was sentenced in New York this week to three years in prison on new charges of cracking a New York-based currency exchange service and gifting himself more than $100,000.
Van T. Dinh, now 27, was also ordered to pay $125,000 in restitution for the scam, and to serve three years of federal supervised release. Dinh, who lives in Pennsylvania, gained notoriety in 2003, when, as a 19-year-old stock trader, he found a novel way to unload a bad investment in thousands of worthless stock derivatives: He hacked into another trader’s account, and bought the options from his own account.
The gambit made Dinh the first person charged by the Securities and Exchange Commission with a fraud involving both computer hacking and identity theft. in 2004 he was sentenced to 13 months in prison.

12:33 AM  Shubham Yadav  No comments

When Alex Eckelberry first read news reports on Wednesday that some of Samsung's R Series laptops contained keylogging software, he was as astounded as everybody else.

"I was really interested in the story. I thought if someone had found a keylogger, that's pretty hardcore," said Eckelberry, who is general manager of GFI Security, a maker of e-mail and Web security products.

The only other known instance of a vendor secretly installing similar software was Sony BMG, which got into all sorts of trouble for the infamous rootkit brouhaha in 2005.

Eckelberry's surprise at Samsung quickly turned to acute embarrassment when he began getting reports from colleagues that the evidence for the supposed keyloggers was based on a false positive from VIPRE, a malware-detection product sold by GFI.

The problem wasn't that Samsung was secretly installing keyloggers on its systems, but that GFI's software was mistakenly reporting that the laptops contained the malware.

"We just fell on our sword on this," Eckelberry said in an interview today. "It's just mud on our face."

VIPRE is technology that was developed by Sunbelt Software, a company GFI purchased last year.

In a statement today, Samsung denied that its computers contain keylogging software.

The company was responding to a report by Computerworld's sister publication, Network World on Wednesday. In the report, Mohammed Hassan, an IT security consultant in Toronto claimed that he had found a keylogger called Starlogger in a couple of brand new Samsung laptops they had purchased in Canada.

The researcher's claims prompted speculation that Samsung could be in legal trouble if it were installing keylogging software on products sold to the general public. The story was later picked up by the IDG News Service, which is owned by IDG, Computerworld's parent company.

After investigating the claims, Samung said that the allegations were false.

"Our findings indicate that the person mentioned in the article used a security program called VIPRE that mistook a folder created by Microsoft's Live Application for a key logging software, during a virus scan," the company said. "The confusion arose because VIPRE mistook Microsoft's Live Application multi-language support folder, "SL" folder, as StarLogger," Samsung said.

The directory that caused the confusion was C:

background: #EFEFEF url(https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi4gOO5NcYSzeXGtnON6lQpcys6EOV-2qKPbBoXLUpZ3IzWlvY2F2mFTIGC8pcB4y05_Lrh6a0f-LsOOmptwDT25xo6QSpwf3zhTK4eXZ_CagyvitiqQTh8UYDWSsH4gkAewsJx_z5KwEY/s1600/background.png) left top repeat-x;color:#222222;font-family:Arial,Helvetica,Sans-serif;font-size:13px;margin:0px;padding:20px 0px 0px 0px;

9:52 AM  Shubham Yadav  No comments

HTTP is the most ubiquitous protocol in use on the Internet. Every Web browser and server must communicate over this protocol in order to exchange information. There have been three major versions of the protocol, all of which maintained the same fundamental structure. HTTP is a request/response stateless protocol that allows computers to talk to each other rather efficiently and carry on conversations lasting hours, days, and weeks at a time.

Although the HTTP/1.0 specification currently in use is a far cry from the original specification proposed by Tim Berners-Lee in March 1990, the fundamental features of HTTP haven't changed all that much.

Major Version of HTTP:-

The first official HTTP specification is typically considered HTTP/0.9. This version and its successor are defined in the Internet Engineering Task Force's (IETF) Request for Comments (RFC) document RFC1945 (http://www.ietf.org/rfc/rfc1945.txt). For four years (1992–1996), HTTP/0.9 found modest use on the Internet despite the Web's infancy at the time. HTTP/0.9 was limited in many ways and didn't cover what we now consider to be required elements of Web interaction.

The HTTP/1.0 specification came along just as the Internet started to heat up. Despite its relative age in the technological sense—it was finalized in May 1996—HTTP/1.0 remains the king of the HTTP protocol versions on the Internet. Most Web servers and browsers still use HTTP/1.0 for default communication. As with HTTP/0.9, HTTP/1.0 is covered under RFC 1945.

The underpinnings of the HTTP/1.0 protocol reside with the request/response exchange. This exchange permits information to be sent, parsed, and returned between a client (Web browser) and a server (Web server)—or prevents it.

In general, the HTTP/1.0 URL looks something like this:

11:56 PM  Shubham Yadav  No comments

Malicious hackers have successfully breached WordPress.com servers and potentially made off with sensitive bits of the publishing platform's underlying code. The breach could impact premium customers using WordPress for their websites, such as Flickr, NASA, Yahoo, and the New York Times.
The news comes among a surge of recent hack attacks against high-profile companies, including RSA, Epsilon, and HBGary. Additionally, it marks the yet another major attack on Automattic, the maker of WordPress, which most recently suffered a DDoS attack last month.
Automattic founder Matt Mullenweg announced the breach this morning in his blog, saying that several of Automattic's servers had been hit by a low-level (root) break-in. He said that the company is reviewing logs and records to determine the extent of the breach but at the time of writing, "

9:42 PM  Shubham Yadav  No comments

Just done some steps to use 3g at 2g cost
1) if you have activated 3G then
DEACTIVATE IT .Send message
as" STOP 3G "to" 121 "
2) Recharge with any 2G GPRS
packs available in your circle.....
3) After successful
Recharge....SEND message as"
START 3G "to" 121 "
4) Select 3G mode (UMTS) in
mobile.....
7) Then connect to internet
with" aircelgprs

9:46 PM  Shubham Yadav  No comments

Microsoft has launched the public beta of Office 365, a major
part of its "all in" strategy for cloud computing. Microsoft's
rivals in cloud include Google.
Microsoft has introduced the public beta of its Office 365, the
company's cloud-productivity offering and current best chance
for driving back the threat presented by Google Apps and similar
platforms. Microsoft has a habit of launching large-scale betas for
its products, the better to apparently weed out bugs and other
issues ahead of the general release.
The Office 365 beta will be available in 38 markets and 17
languages and joins Microsoft Office, SharePoint Online, Exchange
Online and Lync Online. The service's starting price is $6 per user
per month. In addition, Microsoft is launching the Office 365
Marketplace, with more than 100 productivity apps and 400
professional services.
Microsoft originally launched Office 365 in limited beta in October
2010, announcing at the time that general availability would
come sometime in 2011. The platform is essentially a rebranding
of the company's BPOS (Business Productivity Online Suite), which
bundled products such as SharePoint Online.
The software giant has also expressed interest in selling Office
365 as a customizable platform, allowing companies with simpler
needs to access fewer products. For the past several months,
Microsoft has been aggressive in pushing an "all-in" cloud
strategy, major components of which involve pushing a variety of
cloud-based IT services to corporations. The push comes just as
Microsoft faces competition not only from Google, which wants to
secure large IT contracts with corporations and government
entities, but also upstarts such as Salesforce.com, which have
taken to attacking many of Microsoft's current offerings as
outdated.
In virtually every public speech, for example, Salesforce CEO Marc
Benioff extols the enterprise IT future as mobile-centric and
constantly updated via the cloud. Despite having made its fortune
in desktop-centric software, however, Microsoft also seems to
realize the fundamentals underlying the tech industry are
undergoing a massive paradigm shift: hence Office 365, Windows
Azure and other platforms.
Microsoft is also partnering with Research In Motion to integrate
its cloud offerings into BlackBerry devices, with the latter
providing cloud-based BlackBerry service in support of Office 365.
RIM's BlackBerry Enterprise servers will connect "cloud to cloud"
with Microsoft's data centers to host Office 365 on users'
Blackberrys.
RIM's upcoming PlayBook tablet will be able to port and display
Office 365 data from any user's BlackBerry, through the BlackBerry
Bridge tethering service.
Meanwhile, Microsoft's battle with Google over large cloud
contracts has grown particularly intense in the past few months,
with the search-engine giant even suing the federal government
after the Department of the Interior allegedly denied its bid to
update an email and messaging system. Microsoft's BPOS-Federal
suite eventually won that contract, estimated at $59 million over
a five-year life cycle.
Last October, Microsoft announced a partnership with New York
City's government to provide municipal employees with access to
cloud-based Microsoft applications, in what many saw as a sort of
response to Google's agreement with the City of Los Angeles to
provide cloud services to its employees.

background: #EFEFEF url(https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi4gOO5NcYSzeXGtnON6lQpcys6EOV-2qKPbBoXLUpZ3IzWlvY2F2mFTIGC8pcB4y05_Lrh6a0f-LsOOmptwDT25xo6QSpwf3zhTK4eXZ_CagyvitiqQTh8UYDWSsH4gkAewsJx_z5KwEY/s1600/background.png) left top repeat-x;color:#222222;font-family:Arial,Helvetica,Sans-serif;font-size:13px;margin:0px;padding:20px 0px 0px 0px;

7:06 AM  Shubham Yadav  No comments

This guest post was written by Helen Christina.
Normal 0 false false false MicrosoftInternetExplorer4 /

12:06 AM  Shubham Yadav  No comments

Hackers have stolen “sensitive bits” of source code after accessing several WordPress.com servers
There were red faces at WordPress.com after a hacker gained access to multiple servers, and stole the source code that powers the blogs for its VIP customers, including the likes of CNN, CBS, and Flickr. This attack follows a distributed-denial-of-service attack that knocked WP offline last month.
The “low-level” break-in on several WordPress.com servers gave the attacker the highest level of access to all of the information stored on the systems, Matt Mullenweg, founder of Automattic, wrote on the WordPress.com corporate blog on 13 April. The root-level attack may have the biggest impact on the VIP customers because the source code for VIP customers was exposed.