Waspada Malware Covidlock

  • Sabtu, 21 Mar 2020
  • Penulis: Pusopskamsinas

Isu wabah Covid-19 dimanfaatkan oleh threat actor dengan menyebarkan aplikasi terkait utilitas Covid-19 namun telah ditambahkan fungsi malicious.

Selengkapnya

Imbauan Keamanan CVE 2020 10189

  • Rabu, 18 Mar 2020
  • Penulis: Pusopskamsinas BSSN

Zoho memperbaiki No-Auth RCE Zero-Day di ManageEngine Desktop Central

Selengkapnya

HIMBAUAN KEAMANAN TERKAIT ADV200005 KERENTANAN PADA SMB 3.1.1 (SMBV3)

  • Rabu, 11 Mar 2020
  • Penulis: Pusopskamsinas

Pada tanggal 10 Maret 2020, Microsoft mengumumkan bahwa kerentanan ditemukan pada Microsoft Server Message Block 3.1.1 (SMBv3). Kerentanan ini diumumkan sebagai ADV200005. Kerentanan ini apabila berha

Selengkapnya

Let’s Encrypt Mencabut 3 juta Sertifikat Penggunanya Karena Bug pada Kode CAA

  • Jumat, 06 Mar 2020
  • Penulis: Pusopskamsinas

Let’s Encrypt, sebuah organisasi otoritas sertifikasi (certificate authority / CA) non-profit baru saja mengumumkan pada 27 Februari 2020 lalu bahwa mereka telah memproduksi 1 milyar sertifikat.

Selengkapnya

Alert (TA17-132A)

  • Minggu, 14 May 2017
  • Penulis: -

According to numerous open-source reports, a widespread ransomware campaign is affecting various organizations with reports of tens of thousands of infections in as many as 74 countries, including the United States, United Kingdom, Spain, Russia, Taiwan, France, and Japan. The software can run in as many as 27 different languages. The latest version of this ransomware variant, known as WannaCry, WCry, or Wanna Decryptor, was discovered the morning of May 12, 2017, by an independent security researcher and has spread rapidly over several hours, with initial reports beginning around 4:00 AM EDT, May 12, 2017. Open-source reporting indicates a requested ransom of .1781 bitcoins, roughly $300 U.S. This Alert is the result of efforts between the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC) and the Federal Bureau of Investigation (FBI) to highlight known cyber threats. DHS and the FBI continue to pursue related information of threats to federal, state, and local government systems and as such, further releases of technical information may be forthcoming.

Selengkapnya

Locky Is Back Asking For Unpaid Debts

  • Senin, 01 Aug 2016
  • Penulis: Sudeep Singh, Jonell Baltazar, Joonho Sa, Threat Research Blog (FireEye)

On June 21, 2016, FireEye’s Dynamic Threat Intelligence (DTI) identified an increase in JavaScript contained within spam emails. FireEye analysts determined the increase was the result of a new Locky ransomware spam campaign. ...

Selengkapnya

How I Cracked a Keylogger and Ended Up in Someone's Inbox

  • Senin, 01 Aug 2016
  • Penulis: Rodel Mendrez, SpiderLabs Blog (Trustwave)

It all started from a spam campaign. Figure 1 shows a campaign we picked up recently from our spam traps with a suspicious document file attachment. ...

Selengkapnya

GootKit: Bobbing and Weaving to Avoid Prying Eyes

  • Senin, 01 Aug 2016
  • Penulis: Limor Kessem, Security Intelligence (IBM Blog)

Discovered in the wild in the summer of 2014, GootKit is believed to be a privately held cybercrime tool that is not sold to other criminals in underground forums and is operated by a closed gang. ....

Selengkapnya

Facebook malware: tag me if you can

  • Senin, 01 Aug 2016
  • Penulis: Ido Naor, SecureList (Kaspersky Lab Blog)

On the morning of 26th June, news of a phishing campaign hit the Israeli media. Thousands of Facebook users complained that they had been infected by a virus through their accounts after they received a message from a Facebook friend claiming they had mentioned them in a comment. ....

Selengkapnya

Espionage toolkit targeting Central and Eastern Europe uncovered

  • Senin, 01 Aug 2016
  • Penulis: Tomáš Gardo?, WeLiveSecurity (ESET Blog)

Over the course of the last year, ESET has detected and analyzed several instances of malware used for targeted espionage – dubbed SBDH toolkit. Using powerful filters, various methods of communication with its operators and an interesting persistence technique, it aims to exfiltrate selected files from governmental and public institutions, which are mostly focused on economic growth and cooperation in Central and Eastern Europe."

Selengkapnya

Pemantauan Trafik Internet Nasional

Laporan pemantauan trafik internet nasional dengan menampilkan laporan trafik mingguan, trafik bulanan dan trafik tahunan.

Peringatan Ancaman Keamanan & Kerentanan Sistem

Kumpulan arikel tentang peringatan dini ancaman keamanan dan kerentanan sistem.

Security News

Kumpulan berita tentang keamanan siber atau IT.

Laporan Insiden

Id-SIRTII/CC menerima pelaporan insiden dari publik untuk kemudian dilakukan koordinasi kepada pihak-pihak yang berkepentingan.