PayPal Users Hit with Account Limited Phishing Scam

Recently, Gmail users were targeted with a phishing scam, and now it’s time for PayPal since it is undoubtedly one of the most used online payment systems in the world making it a perfect target for cyber criminals. Eset, a cyber security firm, has discovered a phishing scam targeting PayPal users to steal their login credentials.

In this scam, cybercriminals are sending fake emails tricking users into believing that their PayPal account has been limited due to “some unusual activity” which can be resolved only through contacting the official PayPal by clicking on the link embedded in the email. However, the bad grammar and syntax used in the email are enough to expose that the email was sent by crooks, not the PayPal security team.

Upon clicking on the login tab and filling the login bars with their PayPal email and passwords users are taken on a website which has nothing to do with PayPal yet an official looking PayPal warning page is displayed explaining to users how their account was put on restriction and instructing them that in order to claim their account back they need to click on the “Continue” tab.

his means the scammers are not only after your PayPal but something more. This is where the scam initiates its final attack by taking users on to another official PayPal looking page and asks for their full address, city, state, zip/postal code, country, phone number, mother’s maiden name, date of birth and social security number (SSN).

Since PayPal never asks users for their SSN number this is another example how unsuspecting users should identify a scam. The reason cyber criminals are after user’s family and financial details could be to conduct a large-scale identity scam using their credentials or to carry another scam on another network.

Although this scam uses a fake email to steal PayPal login, it is indeed a fact that twice in the past scammers used government emails for similar scams. Also, currently there are several other scams targeting PayPal users including “Confirm new security question scam, suspicious activity scam, payment made without permission scam and changes to legal agreement scam.

If you have an account on PayPal, it is advisable to log in to your PayPal account by entering the web address into your browser’s address bar or via an official PayPal app. The PayPal website has a verified green signature as shown in the screenshot below

PayPal users are also often hit by smishing scams where cyber criminals send phishing links in text messages. Either way, to protect yourself from such scams never download any file or click any link sent by an unknown sender and check Hackread’s exclusive report explaining how one can identify and protect themselves from phishing scams.

Deleted browsing history on safari may not actually be deleted

Elcomsoft is a Moscow based firm that creates forensics software said it was possible [Pdf] to retrieve your deleted browser history beyond a year. Elcomsoft CEO Vladimir Katalov stumbled upon this while he was testing out his new hacking tool to view his safari history on his iPhone. He discovered that Apple was storing consumer data in a secret cloud service from iCloud called “Tombstone.” Data was not being deleted from this service for the ease of syncing separate devices.

When Vladimir used their phone breaker software to extract his browser history, he noticed that deleted data up to a year old was still recorded. In the interview with Forbes, Katalov claimed “We have found that they stay in the cloud, probably forever,”  records that were deleted from both Mac and iPhone interestingly were termed as “cleared” rather than “deleted” in Safari. These claims were verified by an IOS expert brought in by Forbes.

1.5M Unpatched WordPress Sites Hacked

Experts say that the attackers have taken a liking to content-injection vulnerability that is disclosed last week which is patched in WordPress 4.7.2. It has been exploited to used to deface 1.5M sites so far.

This issue has evolved into “one of the known worst WordPress related vulnerabilities to come up in some time,” researchers at WordFence, a Seattle-based firm that makes WordPress security plugins, said on Thursday.

WordPress has silently patched this issue. An unauthenticated privilege escalation vulnerability in the REST API endpoint, which is when it pushed version 4.7.2 on Jan. 26. A core developer with in the CMS said the following week that they waited to disclose this vulnerability to ensure that millions of more sites could deploy this update. WordPress has a feature which automatically updates the CMS on the majority number of sites, but some users choose not to use it and test updates before applying them.

Mark Maunder, the WordFence’s Chief Executive Officer, said that researchers have seen the biggest spike in attacks on this Tuesday when the company has blocked roughly 13,000 attacks from campaigns which are 20 and different.

The reason for the influx, Maunder said, is because at the beginning of the week attackers refined their attacks to bypass a rule that WordFence and other companies had implemented. While WordFence was quick to engineer a new rule to prevent the bypass, attackers were still able to succeed in infecting a slew of sites–more than 800,000 over a 48-hour period from Tuesday to Wednesday–he said.

In some instances, hackers are competing to compromise sites that haven’t yet applied the fix. WordFence researchers claim they’ve come across some sites where multiple hackers attempt to take credit on multiple pages for hacking them. The defacing and re-defacing will likely continue until those sites apply the 4.7.2 fix, Maunder says.

After Targeting Linux, Mirai Botnet Is Here To Hack Your Windows Devices

Short Bytes: The infamous Mirai botnet malware has finally entered the world of Microsoft Windows. An antivirus firm recently discovered a new variant of Mirai, which is now named Trojan.Mirai.1. The trojan uses Windows devices to increase Mirai’s botnet army by infecting Linux-based IoT devices. Notably, Mirai was the chief player in some of the biggest DDoS attacks witnessed last year.

Last year was full of reports of hacking attacks that were performed with the army of Mirai botnets, which was the very first popular IoT malware. Hackers took control of the devices using their default username and passwords, and used them to carry out one of the biggest ever DDoS attacks.

While Mirai botnet (Mirai.Linux) originally infected Linux-based IoT devices, the security researchers have now been able to detect a new version of Mirai that infects Windows computers.

How does Mirai botnet’s Windows version work?

Mirai botnet’s Windows version was exposed by Dr. Web Antivirus. Named Trojan.Mirai.1, this malware for Microsoft Windows is written in C++ programming language. The malware is designed to scan TCP ports in order to execute commands and distribute the malware.After the attack is launched, Trojan.Mirai.1 connects to its C&C (command and control) server and downloads the configuration file for extracting the list of IP addresses. This is followed by the scanning of ports and launch of different flags.

If it’s successful in establishing a connection with the attacked node via any protocol, it executes a sequence of commands. This trojan can also execute on remote machines that make use of IPC (inter-process communication) technology.

Moreover, if the target computer has Microsoft SQL Server, Trojan.Mirai.1 acts with administrative privileges and performs many malicious tasks.

How does Mirai’s Windows version spread?

Let’s suppose Windows version of Mirai infects a new device and the target turns out to be running Linux. In that case, a series of commands are run and a new Mirai botnet is created.

If Windows Mirai infects another Windows device, it leaves a copy on that device and continues further.

While the exact consequences of this development can’t be predicted at the moment, but its arrival on Windows might inspire hackers to try out new things.

Bonus: Useless But Awesome Robots

Facebook Will Soon Pay You Money For Your Videos, Trying To Become “Next YouTube”

Short Bytes: Facebook is all set to ditch the cloak of a social media company and turn itself fully into a media company. Its investments in videos will be further pushed in near future. During Facebook’s Q4 earning announcement, Zuckerberg told that Facebook is planning to start sharing its ad revenue with content creators. This strategy will attract more content creators to Facebook.

Facebook has defied the predictions made by economists and revealed that its growth isn’t going to stop anytime soon. On Wednesday, the company said that its revenue grew 51% in 2016’s fourth quarter. Zuckerberg’s company was also able to convert 52 cent of every dollar into operating profit. But, before Facebook’s growth stumbles, what’s next?

Last year, Facebook made big bets on video by pushing live videos like crazy. This year things won’t slow down. Instead, the company is expected to invest more money to create its new moneymaking machine. Zuckerberg himself considers video a mega trend.

“That’s why we’re going to keep putting video first across our family of apps and making it easier for people to capture and share video in new ways,” he said.

Recently, The Wall Street Journal reported that Facebook is developing a video app for Apple TV and other boxes. This rumor hasn’t been confirmed yet. But, it’s evident that Facebook isn’t hesitant to further push videos.

The company will soon pay video makers up front and ad revenue sharing. After this, the company is expected to put videos more aggressively in people’s News Feed. Facebook’s model will be more like YouTube, which will enable it to gather more video creators.

The company plans to share its video revenue with the content creators and lure them to keep contributing videos. Along the similar lines, Facebook has also added a new video tab in its phone app.

It looks like Facebook is all set to make another big jump and ditch the label of a traditional social networking company. With its increased participation in fulfilling people’s news-related needs, it has already turned itself into a media company, a stature that will be further strengthened with the help of its big bets in the video.

Did you find this move by Facebook interesting? Don’t forget to share your views and feedback.

Also Read: Facebook Just Launched A New Open Source Tool For Recovering Passwords Easily

Get 100% UNLIMITED Instagram Followers instantly for FREE

Currently, you can get viral and be celebrated in an instant with Free Instagram in just a few minutes without doing any follow back.

Getting Instagram Followers might be very hard in the ass especially when you have to follow back who you followed this is a 1:1 part. Someone will follow you and you must follow back to count he/she as a follower if not you won’t get a follower. This system is a social exchange that is frequent on social websites.

Follow this link to get 20k Instagram followers without following back using  Instagram followers generator hack :

The way I am going to show you is a professionnel method, you will get a targeted Instagram Followers withoutfollowing back. Yes, you do not need to follow others else just to have followers on your own. This online app will not let you download anything plus it is totaly  FREE! Everybody can use this, it’s free anyway.

You choose the quantity of followers you want to generate and don’t worry about following back anybody. Since if you want to have 20,000 Instagram followers you can’t follow those 20,000 back. This is simply free and really instantly thing to do. Note that you do not need to download app it’s online to get more followers.
Now you can get more instagram followers without cheating or without paying anything.

Anyone Wants To Earn money Online

Job is only through Internet.Work From Home Part Time Jobs.Youu can Earn $50-$100/-daily.These are genuine Data Entry Jobs & Internet Jobs.No Investment Required.Only Serious enquires please.If u want to Earn money Online Visit this website http://www.earnparttimejobs.com/members/index.php?id=5772898.. 
You Just need to register..
For more details or Jobs Message me 

EncFS: An Encrypted Filesystem In User Space

EncFS: an Encrypted Filesystem for FUSE

EncFS provides an encrypted filesystem in user-space. It runs in userspace, using the FUSE library for the filesystem interface. EncFS is open source software, licensed under the LGPL.

EncFS is now over 10 years old (first release in 2003). It was written because older NFS and kernel-based encrypted filesystems such as CFS had not kept pace with Linux development.

EncFS encrypts individual files, by translating all requests for the virtual EncFS filesystem into the equivalent encrypted operations on the raw filesystem.

Status

Over the last 10 years, a number of good alternatives have grown up. Computing power has increased to the point where it is reasonable to encrypt the entire filesystem of personal computers (and even mobile phones!). On Linux, ecryptfs provides a nice dynamically mountable encrypted home directory.

EncFS has been dormant for a while. It is cleaning up in order to try and provide a better base for a version 2, but whether EncFS flowers again depends upon community interest. In order to make it easier for anyone to contribute, it is moving a new home on Github.

Unique Features

EncFS has a few features still not found anywhere else (as of Dec 2014) that may be interesting to you.

Reverse mode

encfs --reverse provides an encrypted view of an unencrypted folder. This enables encrypted remote backups using standard tools like rsync.

Fast on classical HDDs

EncFS is typically much faster than ecryptfs for stat()-heavy workloads when the backing device is a classical hard disk. This is because ecryptfs has to to read each file header to determine the file size - EncFS does not. This is one additional seek for each stat. See PERFORMANCE.md for detailed benchmarks on HDD, SSD and ramdisk.

Download EncFS

Nathan: Android Emulator for Mobile Security Testing Tool

Nathan: Android Emulator for Mobile Security Testing Tool

Nathan is a 5.1.1 SDK 22 AOSP Android emulator customized to perform mobile security assessment.

Supported architectures:

• x86
• arm (soon)

The emulator is equipped with the Xposed Framework and the following pre-installed modules:

• SSLUnpinning, to bypass SSL Certificate pinning.
• Inspeckage, to perform the dynamic analysis of an application.
• RootCloak, to bypass root detection.

The following tools are already installed:

• #SuperSU: Superuser access management tool
• Drozer: Comprehensive security and attack framework for Android

Features

• Only python 2.7.x required
• Hooking ready with Xposed
• Pre-installed tools for application analysis
• Fully customizable
• Snapshot and restore of user data

Installation

Download Nathan core scripts from git:

$ git clone https://github.com/mseclab/nathan/
$ cd nathan

Init Nathan for the first time (for downloading firmware files)

$ ./nathan.py init 

If a proxy is required to download files, the parameter -dp is available :

$ ./nathan.py init -dp 127.0.0.1:3128

The init command downloads all the files required to run use Nathan Emulator.

Usage

To start Nathan:

$ ./nathan.py start

To redirect the traffic through a proxy (es. http://127.0.0.1:3128), the parameter -p can be used:

$ ./nathan.py start -p http://127.0.0.1:3128

To create a snapshot of current user image data with a label (current in this case):

$ ./nathan.py snapshot -sl current 

To restore the emulator to the snapshot with label current:

$ ./nathan.py restoTo get a list of available snapshots to restore:

$ ./nathan.py restore --ll  

Every time the emulator is started, a temporary copy of system image is created and each changes made to system data is lost when the emulator is powered off.

To keep permanent the changes, the command freeze is available:

$ ./nathan.py freeze  

To push files from a folder to a running Nathan emulator, the command push is available:

$ ./nathan.py push -f folder  

The complete list of command is:

usage: nathan.py [-h] [-v] [-a ARCH]
{init,start,snapshot,restore,freeze,push} ...

Optional arguments:
  -h, --help            show this help message and exit
  -v, --verbose         Show emulator/kernel logs
  -a ARCH, --arch ARCH  Select architecture (arm/x86) - Default = x86

Command to run:
         {init,start,snapshot,restore,freeze,push}
    init                Download and init Nathan emulator
    start               Start Nathan emulator
    snapshot            Create userdata image snapshot
    restore             Restore userdata image snapshot
    freeze              Freeze temporary system image
    push                Push files to Nathan emulator 

The parameter -h for each command shows specific options.

Download

10 Best YouTube Channels To Learn Programming & Coding

If you love technology then you should do programming.  Well, it’s all upon you. Programming is the era of technology and all the operating system, apps and games are designed and  running on coding or programming.

Want to learn programming or coding online without spending a single buck. Today, we’re here with 10 YouTube channels that will worth subscribe to learn coding and programming.

10 Best Youtube Channels For programming And Coding

1. TheNewBoston

This channel has more than 4,000+ videos in different languages with more than a million of subscribers. A guy named Bucky Roberts behind this channel. They offer many courses like python web crawler, JavaFX Java GUI Design Tutorials, computer networking and more. If you want to learn programming – just go for it.

2. Derek Banas

This channel is popular for explaining the concept of programming language in a single video. Among the content, you will find videos like to understand the concept of javascript in just 30 minutes, learn any programming language in a single video. Derek has uploaded more than 745 videos and has more than 450, 000 subscribers. You can find here videos on PHP, MySQL, Java and more.

3. Learn Code.academy

This is the best place to get web designing related videos. If you want to learn web designing, then this channel worth to follow. They offer a wide range of courses like HTML, CSS, JavaScript, Server administration, Deployment Strategies and more.

4. Treehouse

Treehouse is the official YouTube channel from “Treehouse.com.” Treehouse offers videos on numerous topics like PHP, C++, Python, CSS, JavaScript and much more. Treehouse has over 400+ videos and more than 117,000 subscribers.

5. ProgrammingKnowledge

This channel has a variety of videos for a new programmer or a practicing programmer. The channel provides an Android tutorial for beginners to Python, Java and C++ tutorials. There are over 1000 videos and more than 218, 000 subscribers. This channel along with ‘codebind’ blog where you can get all codes.

6. CSS Tricks

This YouTube channel owned by CSSTricks.com and run by Chris Coyier. This channel shows screencasts mainly about web design related topics, including CSS, SVG and more. You can find mainly tutorial about JavaScript, CSS, and WordPress.

7. Adam Khoury

Adam Khoury runs YouTube channel and “Devlopphp” named blog as well. This channel would be very useful, if you want to learn HTML, CSS, JavaScript, PHP, SQL and much more. This channel has more than 140,000 subscribers.

8. Tuts+ Web Design

Tuts+ has a wide range of videos on topics like Bootstrap, the layout in Photoshop, building a responsive layout, making theme for Tumblr and much more.

9. Coder’s Guide

This YouTube channel provides a wide range of tutorial videos on HTML, CSS, JavaScript, PHP, Java, VisualBasic and much more.

10. Code Geek

CodeGeek is based upon basically on coding and web development. They offer tutorials related to AngularJS, NodeJS, JavaScript, NodeJS Frameworks, PHP, Python, NoSQL, Couchbase, SQL Server. Code Geek has around 90,000 subscribers.

Why You Should Connect Your PC To TV?, The Ultimate Tweaks

If there is anything in this world that is the easiest to do, plugging cables into ports has definitely got to be the one. It takes almost no effort to do this. Of late, you may want to rethink the idea of connecting your PC to your so much loved TV. You can do this with just an HDMI cable and after that, you will be able to access lots of media service, streaming sites and PC games right on your TV

You see, much as streaming boxes are quite dope and convenient. Your Roku, Chromecast, Fire TV or Apple TV including many others in this category won’t give you the quality and variety that a PC can grant you. With a PC you will access web pages, lots of apps and of course PC games in abundance.

If you doubt what I have just said above, then at-least let me share with you why you should connect your PC to your TV. You will eventually find it really cool.

• Bypass limitations of streaming to TVs; as we all know, some service providers prevent you from streaming some content to TVs and instead, they allow it on PCs. A case in point is Hulu, which offers a variety of shows for free streaming on PCs. I guess TVs aren’t that lucky then. Nevertheless, just plug a PC into your TV and access all of that content.
• Play PC games; with a PC, you will forget about playing same old games that came with your Roku or the monotonous games that exist on your Fire TV.
• Use any service; with product differentiation in the mix, there arises a situation where different devices support different apps. You can notice this with the Apple TV on which you can watch iTunes content, but can’t do the same with amazon prime videos. However, with your PC, you will play everything in a web browser and also through desktop apps like iTunes. Do you gauge the difference now?
• Stream videos and music from websites; regardless of it being a music streaming platform, TV show site which streams shows via flash player but lacks an app, or just any streaming site, it can stream on your TV. Just imagine watching all of the content you ever wanted without any limits.
• Play local video files; with pc of-course, you can download and play local video files just with a click. So you shouldn’t depress yourself worrying about limited media codec compatibility or even thinking of having to copy your videos to a USB stick and connecting to your streaming box. This will all be easy to do with PC.

All the aforementioned, can be enjoyed by connecting your TV to PC using an HDMI cable. It’s so easy to do, just connect an HDMI cable to the HDMI-out port on your PC and the HDMI-in port on your TV. Laptops especially, offer more convenience. However, some of them do not have a full size HDMI port and therefore in a such a case you may need an adapter. Some computers and TVs are old and so may not facilitate HDMI but will support VGA or something.

For this case, a wireless mouse and keyboard using Bluetooth or a USB receiver will offer the convenience. With ease, you will control the interface from the comfort of your couch. You can even plug a xbox controller or any other controller into the PC and have fun just like on your regular gaming console.

In general, the PC can never let you down, you will never be held up by limitations anymore. You will bypass all the stupid limitations that your streaming box levies on you and have access to many other great things. All this, with just your PC.

#hackers I want to tell some experience to the peoples about how to start with ethical hacking?

Most of the people message me that how to Hack :) 
They are confused and miss leaded by various post regarding kali linux (Good platform for hackers)
Step 1 - Read about Ports and how machine use it to communicate 
Step 2- Read All about TCP/IP protocols and find how you can manipulate them 
Step 3 - Have some Programming Background With c,Python
 Now YOu are ready To Understand Hacking Concepts
Step 4- most important step use your creativity to enter/break security features as per goal (Many People Miss this step )
NOW YOU CAN CALL YOURSELF AS A HACKER !
Thanks !! cheers
For more Info Contact Us

Free Android Development Course – Become a Developer in 15 Hours

I know you’re thinking about to change this world. And become financially independence. Right? If yes you’re reading a right article for travel towards  your goal. Maybe you already know in this post what i am going to cover. Hence before i talk about Android Development Course. First of all i need to talk about important information in app industry.

Android is a world changer.  Do you think how this world has changed by android?. So this is the time to let the cat out of the bag.

History of Android

Google is the creator of android probably you’re think like this. If you’re thinking like this that is not your fault. Because android has grownup in the market after google’s acquisition. Actually Andy Rubin and Rich Miner have created this awesome mobile operating system. Also it is working on Linux kernel.

HTC Dream

HTC Dream was the first smart phone which is working on android os. Android has become a baby of google in later July 2005. And the cost of acquisition is less than $50 million. Today android is running on over 1.4 billion devices. So in this case we have many more possibilities than ios app user base.

Over 60% of App Downloads Counted From Following 5 Countries.

1. USA – 33.8%
2. India – 9.5%
3. Japan – 9.1%
4. China – 7.7%
5. Indonesia – 4.6%

Popular Categories in App Downloads – Gaming Apps Bring 64% of Downloads

1. Games – 64.0%
2. Communication – 11.3%
3. Telecom – 6.8%
4. Entertainment – 4.0%
5. eCommerce – 2.7%
6. Business & Productivity – 2.6%
7. Mobile Content & Others – 1.8%
8. Social – 1.1%
9. Consumer Packaged – 1.1%
10. Travel – 0.9%
11. Retail – 0.5%
12. Health & Fitness – 0.4%
13. Sports – 0.4%
14. Education – 0.3%

And above report were analyzed by Inmobi which is an app marketing agency. Also you can grab that App Insight Report at the end of this post.

Why i want to take this android development course?

This is not my question. Maybe this your question. I hope you understood the above reports of app industry.  In addition please take a look at this android app developer salary report from glassdoor.com.

Therefore based on the above report you’ll become financially independence by taking this course.

Android Development Course Will Change Your Life When You Become App Developer

Mr.John Purcell is the author of this android development course. Also he is the author of the famous java course on internet. By the way i am one of his student. He always talk everything clearly. Consequently i have understand everything much deeply. Furthermore there’s no doubt to enroll on his courses.

Finally this course is going to cover from ground to advanced features in android. Most noteworthy concept in this course is you’ll be good in java at the same time. You’ll become a great android developer if you concentrate on particular lesson. And if you have to practice on concepts much as you can at the same time. As a result you’ll become a great app developer in this fastest growing industry.

Therefore enroll on android development course here. Also grab the app insight report too.