Dumping Domain Password Hashes Using Metasploit (ntds_hashextract.rb) “The ntds_hashextract.rb script is a standalone tool that can be used to quickly and efficiently extract Active Directory user account password hashes from the exported datatable of an NTDS.dit database. As it turns

Popular websites leaking system status information, private data and even passwords Security researchers have discovered that thousands of popular websites are putting their users’ data at risk by leaking internal status information. Most of the sites are only leaking enough

Wi-Fi chips in phones, tablets, vulnerable to DoS attack Security researchers at Core Security have identified a denial-of-service (DoS) vulnerability in the firmware for Wi-Fi chips installed in several smartphones, tablets, laptops, and even a car. The vulnerability is present

Businesses take 7 months to detect intruders “Corporations are taking an average of seven months to detect system breaches despite most having access to forensic information in their logs, Verizon has warned. According to Bryan Sartin, vice president of Verizon’s

Skype worm spreads, using LOL trick to infect unwary users Skype users are warned to be on their guard, regarding malicious instant messages that have been sent through the service, designed to infect Windows computers. http://nakedsecurity.sophos.com/2012/10/08/skype-worm-spreads/ New TDL4 strain very