The Egyption hacker Virus_Hima hit again, he became famous in the latest months thanks the discovery of Adobe and Yahoo vulnerabilities. This hacker is an example, he supports the research and never tried to sell information on flaws discovered on the undergroud, he is a gray hat from which to learn, so it is for me! H
e is now on the news again but this time without any pastebin or leak plans. Yesterday I received a message from Virus_Hima that informed me that he has found an XSS vulnerability in the famous file sharing web site 2shared.com, he also confimerd me that once again he and cooperated with company developers to fix the flaw.Following the screen shots of the 2shared.com support replies that demonstrate the support of Virus_Hima and also the prompt resply of security team at 2shared.com.
What is the Impact of a xss vulnerability?
Malicious users may inject JavaScript, VBScript, HTML or Flash into a vulnerable application to fool a user in order to gather data from them. An attacker can steal the session cookie and take over the account, impersonating the user. It is also possible to modify the content of the page presented to the user.
Virus_Hima has helped Yahoo and Adobe before to fix the vulnerabilities that he found in their systems which mean he looks to be stable with the “Grey Hat” after taking off the “Black Hat”, reporting such vulnerabilities to the vendors will help protecting data of the customers who is using the service of those vendors.
I wish him a good luck with his business career … companies this guy is your man!
Pierluigi Paganini
Pierluigi Paganini Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.
