Two lakh Facebook accounts from Bangalore hacked, profile pics put on porn sites
Bangalore: Over two lakh city Facebook users woke up to a social media embarrassment yesterday morning as their accounts had been hacked and weblinks to their morphed pornographic pictures sent as feeds to friends and family.
According to global media reports, more than 60 lakh Facebook accounts were hacked since Sunday night. Social networking analysts have claimed that officially more than 2 lakh Bangalore Facebook accounts were hacked.
The cybercrime department has received many calls and complaints regarding the mass hacking. They have started preliminary investigations in a few cases too.
All Porn and gore
A resident of Koramangala logged on to her Facebook account yesterday morning from a cyber cafe, only to get the shock of her life. “My mother, brother and 19 friends of mine had rebuked me after reading my status message.
It had a link to a website, and on clicking I saw my face morphed and pasted onto the body of a porn star. My name and details were also available on the website. I called the police, but they directed me to the cybercrime police station,” said Kamini Varma (name changed).
Kamini’s last post said that she was quitting the popular social networking site after being embarrassed amongst their friends. There were around 50 other posts on Facebook that stated the users are quitting the social networking site forever after being embarrassed before friends and family.
“The website is no longer safe. My friend had posted a link to a news report claiming to have been published in a popular newspaper on my page on Sunday. Since the title said ‘Party till the wee hours’ I got excited and clicked on it but nothing appeared. The next day I logged on to find that everything had changed.
My female friends alleged that I had stolen photos from their account and sold it to porn sites. Others had called me a ‘porn addict’ and many others left abusive messages. I immediately deactivated my account,” said Shivam Shah, student (name changed).
Following this huge incident, many social media experts huddled up and debated if this would lead to the eventual downfall of Facebook now.
“Orkut fell in the same fashion. As much as Orkut officials claimed that Facebook had beaten it in popularity, many reports nail the fact that consistent hacking on the social networking site for over six months (before Facebook became popular) had led to its immediate downfall and eventual social death.
Facebook seems to be headed in the same direction, unless there is some sort of immediate and strict measures taken by Facebook,” said Suhas Giri, a city-based popular social media expert.
Meanwhile, Facebook put up a set of guidelines for users who had either been hacked, or heard of such incidents. The official Facebook Security blog post said, “Security and safety are at the core of Facebook.
We have entire teams dedicated to building tools that give people even more control over their account, and specifically the way they access their information. In fact, many of our most talented engineers are working exclusively on creating a secure environment on Facebook.”
Analysts further asserted that in spite of such incidents, users seldom bother taking the security measures seriously, until being personally victimised.
Thousands of users like Kamini and Shivam have decided to shun the habit of talking wall-to- wall and return to the good-old practice of talking to people face-to-face.
Top 3 spam links that helped hack accounts
‘Bangalore police: Party till the wee hours, 11.30 PM ban lifted’. Clicking on this link leads you to a page with a photo of a popular pub in town, with a caption questioning the user ‘You really think this could happen?’ After clicking on the link, the user’s account is hacked and sends out a series of unstoppable torrents of XXX porn to all of the user’s friends. Over 12,000 Bangaloreans reportedly fell for this spam.
‘Date a stripper in Bangalore’. Clicking on this link automatically transfers all the photos from the user’s account and posts them on a porn website. The link to this porn website is then set as the user’s FB status message and posted on newsfeeds of all the user’s friends. Over 500 Bangaloreans fell for this spam.
Popular Sandalwood actress raped and murdered Social media analysts suspect that this was a prank link created by a small group of users, following the fad of series of spam links posted through the course of the day. The link leads a user to various soft porn videos from South Indian movies, posted on www.youtube.com. Over 2,500 Bangaloreans fell for this spam.
# innocenthacker
how Much i miss you .. =[[
Have you ever bothered to realize
how much you mean to me?
I care so much for you inside
and miss you so deeply.
I sometimes sit for hours
Just to hear from you
And when you never come on
I’m unsure what to do
I lay awake in bed sometimes
With you stuck in my head
Sometimes I question your love for me
Or that your with someone else instead
Sometimes I walk at night
Just to gaze at a lonely star
Sometimes I fall to tears
Because you are so far
And every now and then
When I do speak to you
I always get worried
Incase you say we’re threw
And do you ever wonder
Just what I’m doing to
And do you know
Just how much I think of you
Because if tomorrow doesn’t come
And I haven’t spoke to you
How will you ever know?
Just how much I love you
Hacking- A Story Of Its Journey
The day, since the word “HACKING” has been coined by John Nash, there has been uncounted and unmeasured e-incidents happened in the world of computing. In broader sense, Hacking is considered as intentionally gaining un-authorized access to a computer system.
(1960-1970)- a hacker is a clever and creative programmer; not destructive—- > harmless
(1970-1990)- hacking starts to become negative; breaking into large computer systems e.g. Govt agencies; spreading viruses; stealing/changing information. also phone phreaking (using phone systems illegally)
(1990-today)- Hackers exploit the vulnerability of the Internet; very destructive; disruptive; involving organised crime; increased risk for e-commerce.
Now using hacking, even the complete details and all data from a computer or even cellphone be hacked without the knowledge of a person. Information related to bank details, social media account, email account, secret material everything can now be hacked or even deleted. As technology is developing, new methodologies like Backtrack OS, Metasploit framework, CyberGate and Darkcomet RAT etc. are adapted for hacking. So keeping yourself safe from getting affected into such hacking trap is indeed a tough task.
Here is a basic story of HACKING—-
Securing Your Website
Use Open Source Script Unless you know what you are doing or have a well versed development team in your payroll, it is a great idea to use open source scripts. Open source scripts like WordPress, Drupal, Joomla, Magento etc. are feature rich, powerful and are backed by thousands of coders for update & support.
This avoids websites falling prey to hackers & spammers due to poorly written code. Instead of building from scratch, you can use the existing scripts and modify them to your liking.Commercial scripts from reputed companies can also be deployed if they issue updates & patches regularly.
Update Constantly New features or not, upgrade to newer versions of scripts as soon as they are released. Point upgrades mostly fix bugs in the script and are asimportant as a full version upgrade. If you are not sure whether the new update will break your customization, ask in the support forums and do not wait till you get your customization to be fixed before applying an update.
Use Strong Password Passwords like “loveydovey123”, “unicornlover” are definitely not cute and it is absolutely reckless to even consider using them. Your password does not have to reflect your “inner persona”* as they are supposed to keep things safe.
Use a combination of alphabets, numbers and special characters and make sure they are atleast 10 characters long. Apps like Lastpass , KeePass etc. can help you generate strong passwords and to store them as well.
Secure Admin Email Address Keep the admin email address used to login to your webserver, CMS, database etc. away from the public eye. Use a totally different address in your contact page. This will help from not being scammed by a phising email disguised to have been sent by your hosting company or domain registrar.
Add a Database Prefix If you are using a CMS, blog or forum script, change the default database table prefix. For example in case of WordPress, the default database tableprefix is “wp”. So if a brilliant hacker finds a way to extract data from a database, default table prefixes will leave you a sitting duck.
Password Protect The Database It is not a mandatory requirement in a lot of scripts to enter a database password and leaving them empty willstill get the script installed. An empty password is a criminal waste of an additional layer of security. Database password do not slow down the website when querying the database, so there is absolutely no reason not tohave one.
Delete The Installation Folder Once the installation is done there is no use for the installer folder in the day to day operations of a website. It isvery much possible for a hacker to runthe installer once again, empty the database and take control of the website & its content. Ideally it is strongly advised to delete the folder once the installation is complete, but if you know your way around the web server, you can also opt to rename the folder.
Change File and Folder Permissions Some scripts require full read & write access while installation. This can achieved by using the 777 code on vital folders like config , admin etc. Revert the file permissions back to their original code, say 755 or 644. A file or folder with full read write code gives easy access to inject malicious code in your website.
Use Secured FTP Access If your webserver or ISP support SFTP access, jump at the opportunity and upload files to your server in fully encrypted glory. Nobody can sniff what you are uploading or downloading to & from the webserver.
Restrict Root Access Be it may FTP or Database, never give root access to everyone willy nilly. Restrict access to certain non system folders in the case of FTP uploads by people other than the system administrator.
Ensure the presence of .htaccess file .htaccess files are often used to specify the security restrictions for the particular directory, and make sure you have not deleted it by accident or if it is there in the first place.
Add robots.txt filerobots.txt gives special instructions to search engine spiders as to which folders are to be indexed and which ones are not. Folders with documents, images etc can be kept under wraps from being indexed and displayed in public web searches.
Use security pluginsMature platforms always have plugins to extend the core functionality of the script. Look for plugins that add an extra layer of security and install them. For example, WP Security Scan plugin checks if most of the steps I have mentioned above have been implemented properly in a WordPress installation.
Read leading Tech BlogsKeep yourself updated on the latest vulnerabilities, bugs and attacks on the Internet. There will be a time delay before the patches are issued and this information will help you protect your website or to temporarily take it offline if there is a very serious threat. Wired’s Threat Level and Kreb’s on Security are good places to begin.
Stay away from Nulled Scripts & ThemesPiracy of commercial scripts and paid themes is the easiest among all other forms of piracy. Smaller file sizes, absence of version specific keygen, cumbersome Daemons, DLL patches & cr@cks make it a cake walk to pirate a script rather than a software or PC Game.
However, unlike pirated desktop software where a hidden malware is removed by the Anti Virus software, there is no way you can escape the backdoor added to the codebase. Even for a seasoned programmer, it is impossible to go through thousands of lines of code to check if the script is free of backboors.
A nulled script or theme with a backdoor ensures that the hacker peddling it in the first place has gotten himself a free server to spam people with mails promising to enhance things that cannot be enhanced. If you are lucky, your website might not used for anti government propaganda or for distributing child pornography. Unless you so love orange jumpsuits or better yet, would love to go on an all expenses paid trip to a certain facility in Cuba, stay away from nulled scripts. Nulled scripts hurt the pirate worse than the developer
Say You Love Me Too.. !
I must be crazy now
Maybe I dream too much
But when I think of you
I long to feel your touch
Please Say You Love Me Too …..
To whisper in your ear
Words that are old as time
Words only you would hear
If only you were mine
Please Say You Love Me Too …
I wish I could go back to the very first day I saw you
Should’ve made my move when you looked in my eyes
’cause by now I know that you’d feel the way that I do
And I’d whisper these words as you’d lie here by my side
Please Say You Love Me Too …..
I love you,please say
You love me too, these three words
They could change our lives forever
And I promise you that we will always be together
Till the end of time
Please Say You Love Me Too …..
So today, I finally find the courage deep inside
Just to walk right up to your door
But my body can’t move when I finally get to it
Just like a thousand times before
Please Say You Love Me Too ….
Then without a word he handed me this letter
Read I hope this finds the way into your heart, it said
Please Say You Love Me Too …….
I love you, please say
You love me too, these three words
They could change our lives forever
And I promise you that we will always be together
Till the end of time
Please Say You Love Me Too ..
Well maybe i, I need a little love yeah
And maybe i, I need a little care
And maybe i, maybe you, maybe you, maybe you
Oh you need somebody just to hold you
If you do, just reach out and I’ll be there
Please Say You Love Me Too …
I love you, please say
You love me too
Please say you love me too
Till the end of time
These three words
They could change our lives forever
And I promise you that we will always be together
Please Say You Love Me Too …
Oh, I love you
Please say you love me too
Please please
Say you love me too
Till the end of time
My baby
Together, together, forever
Till the end of time
I love you
I will be your light
Shining bright
Shining through your eyes
My baby
with love
Please Say You Love Me Too . ,,,
Recent Comments