Welcome to HellBound Hackers. The hands-on approach to computer security.
Learn how hackers break in, and how to keep them out.
Please register to benefit from extra features and our simulated security challenges.

Since alot of people have been complaining about Richo's JavaScript 16 mission, the brute force one, I decided I'd code up a PHP version of the function. Click read more for more details.

Happy new year fellow HBH members!

May 2009 be atlest as exciting as the previous year has been!

We here on HBH promise you all loads of improvements so stay tuned in for next release of features.

Newsletter news! The Newsletter will be send out somewhere in the next fourteen (14) days. I hope you can all take the time to subscribe for it. You can do this by clicking the "Subscribe" button in the right menu (under your buddy list). Also, make sure you filled out a valid e-mail address in your profile. Check this by clicking the "Edit Profile" link, again on the right.

While you are enjoying the seasonal snow and occasional terrorist attack, the staff of The Newsletter is making sure you have something interesting to read in the future. Round of applause for those heroes, HBH?

-Spy

Hiya HBH, Spyware here. I just wanted to tell you all that the HBH Newsletter project is alive once again. You can thank Cheese for giving me the green light for this project. I'll hope you guys will enjoy this parade.

"What is this parade you're talking about?" Good question. The newsletter will contain a variety of 75 char-width news items. We'll keep you updated on stuff happening on HBH. For example: in-depth article reviews, important threads you just have to check out, discussions, interviews, senseless violence and more! What we won't do: Articles, code submissions and those kind of things. There are other (and better) ways to publish these on HBH.

Click below to read more!

THE Home Office has quietly adopted a new plan to allow police across Britain routinely to hack into people’s personal computers without a warrant.

The move, which follows a decision by the European Union’s council of ministers in Brussels, has angered civil liberties groups and opposition MPs. They described it as a sinister extension of the surveillance state which drives “a coach and horses” through privacy laws.

The hacking is known as “remote searching”. It allows police or MI5 officers who may be hundreds of miles away to examine covertly the hard drive of someone’s PC at his home, office or hotel room.

After years of suing thousands of people for allegedly stealing music via the Internet, the recording industry is set to drop its legal assault as it searches for more effective ways to combat online music piracy.

The decision represents an abrupt shift of strategy for the industry, which has opened legal proceedings against about 35,000 people since 2003. Critics say the legal offensive ultimately did little to stem the tide of illegally downloaded music. And it created a public-relations disaster for the industry, whose lawsuits targeted, among others, several single mothers, a dead person and a 13-year-old girl.
[us album sales]

Click below to read more.

Developers have found a way to exploit vulnerabilities within the software's code to allow them to customise their PlayStation Home experience beyond the options provided by Sony.

PlayStation Home, a Second Life-like virtual world that providea PS3 users with a three-dimensional social gaming space in which to interact and communicate with other players, was launched on Dec 11.

One hack uses a combination of the Apache web server and DNS re-direction to allow users of PlayStation Home to watch their own movies on display screens within the game, and change text and music to whatever they choose.

Click below to read more.

A coalition of security-software companies, testing firms and information-technology publications issued on Monday two documents setting out guidelines for testing antivirus scanners and malware defenses.

The recently-formed group, known as the Anti-Malware Testing Standard Organization (AMTSO), published The Fundamental Principles of Testing and Best Practices for Dynamic Testing...

Fear the ellipsis! Click to read more.

Drug-benefits provider Express Scripts announced on Tuesday that it had established a large fund to reward people who provide information leading to the capture and prosecution of the online attackers that stole sensitive data from its servers and then attempted to extort money from the company and its customers.

The company announced last week that it had received a letter containing the personal information of 75 customers and a demand for money. Since then, the provider's members have received letters listing their personal information -- including names, dates of birth, Social Security numbers, and in some cases, their prescription information -- and a demand for money, the company said in a statement.

Wanna make a quick buck? Sell out your buddies! Click to read more.

Wireless networks that use a popular form of security known as Wi-Fi Protected Access (WPA) are vulnerable to an attack that could compromise certain communications in less than 15 minutes, two researchers plan to tell attendees next week at the PacSec 2008 conference in Tokyo.

Martin Beck and Erik Tews — two graduate students at technical universities in Germany — found a combination of techniques that allow an attacker to decrypt limited communications protected with the lesser of two WPA security protocols, known as the Temporal Key Integrity Protocol or TKIP.

Click below to read more.

Dozens of amateur and professional cryptographers signed up last week for the United States' first open competition to create a secure algorithm for generating hashes -- the digital fingerprints widely used in a variety of security functions.

The contest, run by the National Institute of Standards and Technology (NIST), seeks to find a strong replacement for the current family of hash functions, some of which have been shown to be cryptographically weaker than originally thought.

Click below to read more.