- Julian Assange was arrested in London in relation to Wikileaks releasing classified documents - Hacking group Anonymous launched cyberattacks on organizations that cut ties with Wikileaks like Mastercard, Paypal, and Visa - A Pakistani company used Wikileaks in an advertising campaign promoting sanitary pads - A 419 scam email was spreading offering to convert "black coated dollar to white dollar" through chemical treatments

1. NewsBytesDecember 30, 2010NULL - MUMBAI CHAPTER

2. WIKILEAKS …. Operation: PaybackJulius Assange arrested in LondonSelf appointed group Anonymous, 4chan are leading the attack against all who have “offended” wikileaksTwitter posts lead users to download “Low Orbit Ion Cannon” to enable user machine to contribute to the attacks (voluntary botnet participation) Websites of Mastercard, Paypal, Swedish Prosecutor, Visa attackedFax Machines included as targets

3. WIKILEAKS …. Cheapo AdvertPakistani Sanitary pad manufacturer ad campaign….. wikileaks, butterfly doesn’t

4. 419 Scam …. New variantFlag this messageRe: PROFESSIONAL IN CONVERTING BLACK COATED DOLLAR TO WHITE DOLLAR!!Wednesday, December 8, 2010 10:31 AMFrom:"Oath De-face Clinic London" <smtp@wanadoo.fr>Add sender to ContactsTo:arinze_alhaji@orange.fr St. Nicholas Place, Princes Dock Liverpool, L3 0AAOath Deface Clinic United KingdomRegistered No 9877112Email:oathdefaceclinic@oath.comCustomers Service Hours:Monday to SaturdayTel:00447010721786 Fax:00447112675001OATH DEFACE CLINIC UNITED KINGDOMGreetings!!!WE ARE SPECIALIZED IN CHEMISTRY FOR ANTI-BREEZE BANK NOTES,WE ALSO DO CHEMICALS MELTING AND RECOVERING OF ALL TYPE OF BAD MONEY FROM BLACK TO WHITEWe are manufacturer and seller of all sort of chemicals which includesS.S.D SOLUTION, SUPER AUTOMATIC SOLUTION, VECTROL PASTE andTEBI-MANETIC SOLUTION, We have different types of chemicals that can perfectly clean out your deface/black/stacked and dirty currency or bank notes.If you have made a kind of currency making business that your money is stacked we can help you clean the money we have helped a lot of peopleall over the world in this matter we will clean your money on percentage basisIf you really want us to help you in this matter you must understand the rules and get back to us if you are okay with itWe provide chemicals for anti-breeze bank notes currencies such as us. Dollar, Euro, Pound, and many local currencies.Please contact us to discuss how we might help youEmail:oathdefaceclinic@oath.comTelephone:00447010721786Fax:00447112675001Thanks for your collaboration.Dr Temple Mill CEO

5. 419 Scam ….Dec 28 : Ex-DGP Karnataka falls for lottery scam... He got a lottery mail and paid 15k. Was asked to pay another 15k which he thought was fishy… and reported this to his boss who told him to stay off ! (http://timesofindia.indiatimes.com/city/bangalore/ex/DGP-falls-prey-to-cyber-fraud/articleshow/7174837.cms)

6. GOOGLE ….Google working on search before you search ... Google's Mayer says company is working on giving search results before question askedGoogle employee axed over 10% raise leak ... Reported attempt to keep employees loyal comes as rivalries with Microsoft, Facebook intensify. Google kicked out this person who leaked the information.

7. Open Source …. Apache Software Foundation resigns from Java community… due to “Oracle’s undue control of Java”

8. Malicious Ads…. Dec 10, 2010 : Drive by ads being carried by Google and Microsoft ad networks.http://www.itnews.com/advertising/26253/google-microsoft-ad-networks-briefly-hit-malware?source=ITNEWSNLE_nlt_itndaily_2010-12-13Similar stuff had happened last year when NY Times carried malware serving ads on their main page

9. Win a Prize…. Submit your 2010 Web Hacking Techniques http://jeremiahgrossman.blogspot.com/2010/11/calling-all-security-researchers-submit.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+JeremiahGrossman+%28Jeremiah+Grossman%29Prizes:OWASP conference passAutographed booksBlackHat USA 2011 pass

10. GSM Hack…. Breaking GSM With a $15 Phone at the Chaos Computer Club (CCC) Congress here Tuesday, a pair of researchers demonstrated a start-to-finish means of eavesdropping on encrypted GSM cellphone calls and text messages, using only four sub-$15 telephones as network “sniffers,” a laptop computer and a variety of open source software.http://www.wired.com/threatlevel/2010/12/breaking-gsm-with-a-15-phone-plus-smarts/Simplest Phones Open to ‘SMS of Death’Chaos Computer Club Congress here, German researchers showed how vulnerabilities in some the simplest, but most common phones in the world http://www.wired.com/threatlevel/2010/12/simplest-phones-open-to-%E2%80%9Csms-of-death%E2%80%9D/

11. Chip and PIN Hack…. Cambridge boffins rebuff banking industry take down request… Computer scientists from Cambridge University have rebuffed attempts by a banking association to persuade them to take down a thesis covering the shortcomings of Chip-and-PIN as a payment verification method.http://www.theregister.co.uk/2010/12/29/chip_and_pin_take_down_rebuffed/The Smart Card Detective (SCD)… The SCD is a card-size device that can intercept, monitor and modify the data of an EMV transaction (EMV is the protocol used in Europe for smartcard payments). This device and the associated software are the result of my MPhil project. The main goal of the SCD was to offer a trusted display for anyone using credit cards, to avoid scams such as tampered terminals which show an amount on their screen but debit the card another (usually larger) amount.http://www.cl.cam.ac.uk/~osc22/scd/

12. Snippets…. Gawker tech boss admits site security was crap …. 'We lost your trust and don't deserve it back' http://www.theregister.co.uk/2010/12/18/gawker_hack_aftermath/Hacker warning over internet-connected HDTVs …. Something's wrong with one of them, but we won't tell you which or whosehttp://www.theregister.co.uk/2010/12/16/nettv_hacker_warning/Social Engineering: NBI: Chinese syndicate using banking system for fraud… The Chinese syndicate that has collected P6 billion in six months of operations in the Philippines operates elsewhere in Southeast Asia apart from China, an NBI official said Wednesday. … they called up the victims telling them they were under investigation etc and got them to mail their ATM cards or informationhttp://www.manilastandardtoday.com/insideNews.htm?f=2010/december/30/news2.isx&amp;d=2010/december/30

13. Botnets …. Latest botnet rankings: Rustock still mother of them all…. Dec 07, 2010 - Spam levels – hit by recent botnet takedown efforts – have begun to return to their previous noxiously high levels.http://www.theregister.co.uk/2010/12/07/botnet_spam_survey_messagelabs/Average global spam rate was 89.1 per cent, an increase of 1.4 percentage points on 2009Global spam rates peaked at 92.2 per cent in AugustBotnets in general accounted for 88.2 per cent of all spam for 2010 as a whole.The total number of botnets worldwide is between 3.5 and 5.4 millionTakedown and the closure of spam affiliate, Spamit, in early October 2010 resulted in spam levels sliding by 11 percentage points to 77 %. However by end-2010, total number of active bots are back to roughly the same numbers as at the start of the year

14. Botnets …. Rustock is the Big Daddy of botnets - spam output doubled over the year to 44 billion spam emails per day. It is reckoned to have compromised at least a million (zombie) hosts. Grum and Cutwail are the second and third largest botnetsNumber of different strains of malware in these blocked email grew by a factor of 100 in the year to reach 339.673 for 2010. The change reflects the increased industrialisation of malware production, according to the MessagelLabs. Symantec reckons even more sophisticated approaches are in the pipeline with controls hidden in plain view, using steganography, likely to emerge – perhaps within images or music files distributed through file sharing or social networking websites. The tactic will allow botherders to "surreptitiously issue instructions to their botnets without relying on an ISP to host their infrastructure" and thus limit the chances that they will be discovered

15. Notices …. There is a lesson here for all who are learning hacking skills and all who are ‘ethical’ hackers. Do not think you can just enter and exit anyone’s system because if (God forbid) you are caught - you will be just a common criminal with a big sentence. In jail it will not matter if you were a topper or whatever…

16. Notices …. All logos and brand names belong to their respective owners and we do not claim any relationship or association, implied or otherwise, with them.Use of any materials by virtue of relationships and associations, if any, are mentioned explicitly. We have taken care to attribute all sources for external materials used in this presentation and regret any omission. If you, as the source owner, or as viewer, find any reason to dispute the use of these materials kindly communicate the same to us using the contact link on our website www.null.co.inAny omissions, in terms of attribution, may be due to an error on our part and the lack of reference is not intentional.