Friday, May 18, 2012

XSS on the Official Website of Tom Cruise

Rwandan Hackers found non-persistent XSS Vulnerability on the Official Website of Famous Hollywood Actor Tom Cruise
VULNERABLE LINK:  click   HERE 

Thursday, May 17, 2012

Yegobprod hacked by Rwandan Hackers

                                                Yegobprod.com vulnerable to sql injection
we found a sql injection in yegobprod website.
for reasons of safety,we'll not publish the database complete


Target:http://www.yegobprod.com/
Host IP:213.186.33.4
Web Server:Apache/2.2.X (OVH)
Powered-by:PHP/5.2.17
DB Server:MySQL error based
Resp. Time(avg):1949 ms
Sql Version:5.0.90-log
Current DB:yegobproyego
Host Name:mysql5-17.bdb.ha.ovh.net
Installation dir:/usr/

Table Name Columns
bak_banner
bak_bannerclient
bak_bannertrack
bak_categories
bak_components
bak_contact_details
bak_content
bak_content_frontpage
bak_content_rating
bak_core_acl_aro
bak_core_acl_aro_groups
bak_core_acl_aro_map
bak_core_acl_aro_sections
bak_core_acl_groups_aro_map
bak_core_log_items
bak_core_log_searches
bak_groups
bak_menu
bak_menu_types
bak_messages
bak_messages_cfg
bak_migration_backlinks
bak_modules
bak_modules_menu
bak_newsfeeds
bak_plugins
bak_poll_data
bak_poll_date
bak_poll_menu
bak_polls
bak_rokcandy
bak_sections
bak_session
bak_stats_agents
bak_templates_menu
bak_users
bak_vm_auth_group
bak_vm_auth_user_group
bak_vm_auth_user_vendor
bak_vm_cart
bak_vm_category
bak_vm_category_xref
bak_vm_country
bak_vm_coupons
bak_vm_creditcard
bak_vm_csv
bak_vm_currency
bak_vm_export
bak_vm_function
bak_vm_manufacturer
bak_vm_manufacturer_category
bak_vm_module
bak_vm_order_history
bak_vm_order_item
bak_vm_order_payment
bak_vm_order_status
bak_vm_order_user_info
bak_vm_orders
bak_vm_payment_method
bak_vm_product
bak_vm_product_attribute
bak_vm_product_attribute_sku
bak_vm_product_category_xref
bak_vm_product_discount
bak_vm_product_download
bak_vm_product_files
bak_vm_product_mf_xref
bak_vm_product_price
bak_vm_product_product_type_xref
bak_vm_product_relations
bak_vm_product_reviews
bak_vm_product_type
bak_vm_product_type_parameter
bak_vm_product_votes
bak_vm_shipping_carrier
bak_vm_shipping_label
bak_vm_shipping_rate
bak_vm_shopper_group
bak_vm_shopper_vendor_xref
bak_vm_state
bak_vm_tax_rate
bak_vm_user_info
bak_vm_userfield
bak_vm_userfield_values
bak_vm_vendor
bak_vm_vendor_category
bak_vm_waiting_list
bak_vm_zone_shipping
bak_weblinks
jos_acepolls_options
jos_acepolls_polls
jos_acepolls_votes
jos_banner
jos_bannerclient
jos_bannertrack
jos_bowob
jos_categories
jos_components
jos_contact_details
jos_content
jos_content_frontpage
jos_content_rating
jos_core_acl_aro
jos_core_acl_aro_groups
jos_core_acl_aro_map
jos_core_acl_aro_sections
jos_core_acl_groups_aro_map
jos_core_log_items
jos_core_log_searches
jos_fbchat
jos_fbchat_status
jos_flippingbook_books
jos_flippingbook_categories
jos_flippingbook_config
jos_flippingbook_pages
jos_groups
jos_hwdpsalbum_category
jos_hwdpsalbums
jos_hwdpscategories
jos_hwdpsfavorites
jos_hwdpsflagged_albums
jos_hwdpsflagged_groups
jos_hwdpsflagged_photos
jos_hwdpsgroup_membership
jos_hwdpsgroup_photos
jos_hwdpsgroups
jos_hwdpsgs
jos_hwdpslogs_archive
jos_hwdpslogs_favours
jos_hwdpslogs_views
jos_hwdpslogs_votes
jos_hwdpsphoto_category
jos_hwdpsphotos
jos_hwdpsplugin
jos_hwdpsrating
jos_jce_groups
jos_jce_plugins
jos_jcomments
jos_jcomments_custom_bbcodes
jos_jcomments_reports
jos_jcomments_settings
jos_jcomments_subscriptions
jos_jcomments_version
jos_jcomments_votes
jos_je_poll
jos_je_poll_data
jos_je_poll_date
jos_je_pollcategory
jos_je_pollcomment
jos_je_pollsetting
jos_jxtc_albumplayer
jos_jxtc_albumplayer_item
jos_kide
jos_kide_bans
jos_kide_iconos
jos_kide_info
jos_kide_privados
jos_kide_sesion
jos_menu
jos_menu_types
jos_messages
jos_messages_cfg
jos_migration_backlinks
jos_modules
jos_modules_menu
jos_mydyngallery
jos_mydyngallery_notation
jos_mydyngallery_option
jos_newsfeeds
jos_plugins
jos_poll_data
jos_poll_date
jos_poll_menu
jos_polls
jos_pollsxt
jos_pollsxt_options
jos_pollsxt_questions
jos_pollxt_config
jos_pollxt_data
jos_pollxt_menu
jos_pollxt_plugins
jos_pyt_linkmenu
jos_pyt_playlists
jos_redirect
jos_sections
jos_session
jos_shoutbox
jos_stats_agents
jos_templates_menu
jos_unmp3_list
jos_unmp3_settings
jos_users
jos_vvcounter_logs
jos_weblinks
kt_boss_banner
kt_boss_bannerclient
kt_boss_bannertrack
kt_boss_categories
kt_boss_components
kt_boss_contact_details
kt_boss_content
kt_boss_content_frontpage
kt_boss_content_rating
kt_boss_core_acl_aro
kt_boss_core_acl_aro_groups
kt_boss_core_acl_aro_map
kt_boss_core_acl_aro_sections
kt_boss_core_acl_groups_aro_map
kt_boss_core_log_items
kt_boss_core_log_searches
kt_boss_groups
kt_boss_menu
kt_boss_menu_types
kt_boss_messages
kt_boss_messages_cfg
kt_boss_migration_backlinks
kt_boss_modules
kt_boss_modules_menu
kt_boss_newsfeeds
kt_boss_plugins
kt_boss_poll_data
kt_boss_poll_date
kt_boss_poll_menu
kt_boss_polls
kt_boss_sections
kt_boss_session
kt_boss_stats_agents
kt_boss_templates_menu
kt_boss_users
kt_boss_weblinks

Sunday, May 13, 2012

Nigerian Airspace Management Agency database leaked

Nigerian Airspace Management Agency hacked by Rwandan Hackers
we leaked the Database in a pastebin note
DATABASE HACKED : http://pastebin.com/zUhPPPSe

ADMIN PANEL

Ministry of Finance Zimbabwe website hacked #opzimbabwe

Why we hacked Ministry of Finace ?

Corruption in Zimbabwe has become endemic within its political, private and civil sectors.[1] Zimbabwe ranks joint 154th out of 182 countries in the 2011 Transparency International Corruption Perceptions Index, ranking it alongside Kenya, Laos and Papua New Guinea and more corrupt than Nigeria and Uganda. On a scale of 0 (highly corrupt) to 10 (very clean), the Corruption Perceptions Index marked Zimbabwe 2.2. This marks an increase in corruption since 1999, when the country ranked 4.1.[2]

The findings of a 2011 survey commissioned by Transparency International Zimbabwe found that Zimbabwean citizens regarded the public sector as the most corrupt sector in the country. In this survey respondents favoured the police as being most corrupt followed by political parties, parliament/legislature, public officials/civil servants and the judiciary.[3] In 2008, a Transparency International director announced that Zimbabwe loses US$5 million to corruption every day.

DATABASE HACKED:http://pastebin.com/6ms6wbuy

Tuesday, May 8, 2012

Nigerian Army hacked by Rwandan Hackers #OPNIGERIA



Rwadan Hackers have hacked into :
=Nigerian Army E-Application Portal
www.nigerianarmyms.org
=Nigerian Army Command Secondary Schools: command secondary 
www.commandsecondaryschools.net
DATABASE LEAKED LINK : http://pastebin.com/BmCuV5Pi
Admin panel of Nigerian Army Command Secondary Schools: command secondary
 MESSAGE :
The Democratic Socialist Movement, I condemn the violence of Boko Haram. This organisation has absolutely nothing to offer the workers and poor of Nigeria other than deeper religious and ethnic violence. Violence and extortion by state forces and between rival corrupt politicians is also common.

For Socialists, the answer to communal, ethnic, religious division and violence lies in mass movements which can unify the working class and poor in a struggle against their common enemies, in this case the corrupt elite and the big business which literally steal the vast wealth that exists in Nigeria: just 1% of the population taking 95% of the oil wealth, while over 80% of the population lives in poverty.

January’s general strike, the biggest ever in Nigeria, was not just against the fuel price hike but increasingly called for regime change. That is exactly what is needed in Nigeria, a struggle for a government of working people and poor that can use the tremendous resources that exist in the interests of the majority and point the way forward beyond division."

Rwandan Hacker support nigerian Hacktisit

Accesskenya Group hacked by Rwandan hackers


Why we have hacked their  system?
it is to prove that their new system is vulnerable.

Access Kenya Group has announced deployment of a new email authentication system aimed at securing client emails as well as enabling them (clients) use the service while abroad (roaming).

The system, Soft Mail Transfer Protocol Authentication (SMTP AUTH), is touted as the most secure authentication system and the company says it’s a necessary deployment in the wake of increased internet security concerns worldwide.
Access Kenya Systems Engineer Sam Oduor said the SMTP AUTH system guarantees email security thence enabling clients to safeguard their information on through the AccessKenya network.

“Communication on this authentication system comes through a secure socket layer. This improves customer privacy since conversations cannot be intercepted,” said Oduor.

DATABASE OF ACCESSKENYA GROUP : http://pastebin.com/kX2Q1KBx

Sunday, May 6, 2012

University of Botswana database leaked !! #OPBOTSWANA

Why we hack university of botwana :
Student Strikes at University of Botswana
Recent student strikes at the University of Botswana, although generally small and peaceful, have resulted in the University of Botswana to cancel regular classes from Wednesday, January 25 through Friday, January 27. Last Friday, a group of University students presented a petition to the Vice Chancellor of the University of Botswana. The petition includes several issues that the students would like to have addressed, including staffing and instructional problems at the new medical school, reinstatement of supplementary exams, reinstatement of the inter-varsity games, and the re-opening of a student bar. University of Botswana officials have been working directly with the representatives of the student group since last Friday and hope to resolve these issues this week.

The Resident Director at the CIEE Study Center in Gaborone, Mr. Batsirai Chidzodzo, has been in regular contact with the CIEE students this week to discuss this strike. All of the students are fine, and the campus continues to be safe. Although the regular University of Botswana courses have been cancelled for the remainder of this week, all CIEE courses, including the CIEE Setswana Language and Culture Practicum, the Seminar on Living and Learning, and the CIEE public health courses, will be held as scheduled this week. These courses will be held in a seminar room in the library on campus. Our Resident Director has been in regular contact with university officials and will keep students informed of any changes this week.

While we are hopeful that the current strike will be resolved this week, we have already started to make arrangements for off-campus classrooms and student accommodations. The University of Botswana is one of the most stable universities in Africa, and the leadership has generally been very good at resolving student and faculty strike issues quickly in previous years. The University campus remains open, and students have access to campus facilities.
Stay tuned for additional updates as new information becomes available.

DATABASE OF UNIVERSITY OF BOTSWANA

Target: http://www.ub.bw/
Host IP:168.167.8.1
Web Server:Apache/1.3.37 (Unix) PHP/5.2.8 JRun/4.0 mod_ssl/2.8.28 OpenSSL/0.9.8e
DB Server:MySQL error based
Resp. Time(avg): 8356 ms
Current User:webadmin@letlowa.ub.bw
Sql Version: 5.0.51-log
Current DB:ub_cms
System User: webadmin@letlowa.ub.bw
Host Name:letlowa
Installation dir:/opt/csw/mysql5/
DB User & Pass:root:5c42f6195bd93698:localhost
        root:*605A9A272BF59FE166F769C3536B032DD66858F6:letlowa
        root:*605A9A272BF59FE166F769C3536B032DD66858F6:127.0.0.1
        webadmin:5c42f6195bd93698:localhost
        webadmin:*B3AD4B00674739CBE6300BA8A38EBB04C6A1526A:%
        root:*B3AD4B00674739CBE6300BA8A38EBB04C6A1526A:%
        ubssra:70eac3216aaffe5a:%
        ubssra:70eac3216aaffe5a:localhost
        ubssra:70eac3216aaffe5a:letlowa
        csrse:*03FDB97B8BFEEF078A687723B62BB8914A3A8E12:%
        csrse:2f721a6e7689353b:localhost
        alumni:*F1A65EC1AB41A74EC4697EB423C12166DCF4CABC:%
        alumni:1b2485e433d61bef:localhost
        morupisi:*D7543B9D041A0E1816CF78C083A276D88AB3DECF:%
        morupisi:*D7543B9D041A0E1816CF78C083A276D88AB3DECF:localhost
        mysql_admin:*111A25AAE14369CF343E89F45CB9108E4759CE1F:%
Data Bases:     information_schema
        AMS
        DS_Forums
        HR_forums
        cont_restore
        csrse
        drupal
        drupal13
        drupal6
        drupal7
        drupal_cc
        drupal_fcs
        drupal_horizon
        drupal_lib
        drupal_library
        drupal_placement
        drupal_ub_upenn
        essentials
        floodpulse
        horizon
        jobsearch
        joomla
        mysql
        ocs
        oiep2007
        ojs
        ord2006
        ub2006
        ub_cms

Thursday, May 3, 2012

Uganda Management Institute hacked by Rwandan Hackers

Rwandan Hackers have breached the site of Uganda Management Institute (www.umi.ac.ug)
and leaked the database .
Uganda Management Institute (UMI) is a government- owned national center for training, research and consultancy in the field of management and administration in Uganda.[1] It is one of the eight public universities and degree-awarding institutions in the country
DEFACED PAGE:http://www.umi.ac.ug/news2.php?g=News
 DATABASE:http://pastebin.com/48U4dDkz
                                                          
                                                                      ADMIN PANEL 
                                     

Tuesday, May 1, 2012

TIGO RWANDA and INDEPENDENT INSTITUTE OF LAY ADVENTISTS OF KIGALI Hacked by S.V Crew

Tigo Rwanda have been hacked by S.V CREW.
S.V CREW it's a group of turkish hackers.
We scan the website of tigo and we found several vulnerability like sql injection and xss
TIGO mirror : http://zone-h.com/mirror/id/17526390
They hack also the website of INDEPENDENT INSTITUTE OF LAY ADVENTISTS OF KIGALI
                                              
 The website is down for maintance
INILAK mirror : http://zone-h.com/mirror/id/17526395