Critical persistent xss vulnerabilities at IPAY : Myanmar Online payment Official Site
Critical persistent xss vulnerabilities at IPAY : Myanmar Online payment Official Site

This evening, I found a fascinated  big bill board “IPAY” http://www.ipay.com.mm at Thamine Junction, Yangon, Myanmar. Then, I said my friend “googl3group” about it, and said  “NO XSS, NO SQL Injection, NO RFI, NO LFI”! … Yeah, NO DATABASE too! he said… LOL… After a few minutes, “googl3group” send me a link to check XSS […]

Continue reading »
Critical SQL injection (vulnerability) in Wati’s Official Website URL : http://www.wationline.com/
Critical SQL injection (vulnerability) in Wati’s Official Website URL : http://www.wationline.com/

PlanetCreator reported another Critical SQL injection (vulnerability) on Wati’s Official Website URL : http://www.wationline.com/ SQL injection is a code injection technique that exploits a security vulnerability occurring in the database layer of an application. The vulnerability is present when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or […]

Continue reading »
Cyber Forensics Workshop in Myanmar
Cyber Forensics Workshop in Myanmar

I’m here to invite all of my cyber warriors! My friend U Aung Zaw Myint, Principal of M.S.T Computer Center , EC-Council’s Asia Pacific Academia Partner in Myanmar is going to launch Cyber Forensics Workshop soon. IT security is a scientific discipline that provides processes, methodologies, techniques, and required technologies for the design, implementation, deployment, […]

Continue reading »
Hacking New Year
Hacking New Year

You hack for the good of your own enjoyment, but “The more you hack, The more we get highly job opportunities in Security Fields” 🙂 hAcking N3w [email protected]

Continue reading »
Kiddies are trying to Dig to PlanetCreator by sending dummies Trojan?
Kiddies are trying to Dig to PlanetCreator by sending dummies Trojan?

Today, I got a direct email from [email protected] title with “‘bombing’ Breaking News @ Northern Chan State”. It’s zipped with WinRAR : named NamKham.rar. Inside … namkham bombrcs.doc The SCR file type is primarily associated with ‘Script’. In November 2007 the SCR file extension started to be used to transmit a Trojan. As a script […]

Continue reading »