Resurrection Of The Evil Miner

  • Senin, 27 Jun 2016
  • Penulis: Dr. Fahim Abbasi, Dr. Farrukh Shahzad, Umair Ali Zafar, Safwan Khan and Hasib Latif, Threat Research

At FireEye Labs, we recently detected the resurgence of a coin mining campaign with a novel and unconventional infection vector in the form of an iFRAME (inline frame) – an HTML document embedded inside another HTML document on a web page that allows users to get content from another separate source and display it within the main web page – embedded in a PE binary (Portable Executable Binary, or .exe). .....

Selengkapnya

RansomWeb Attacks Are Five Times More Common in 2016

  • Kamis, 23 Jun 2016
  • Penulis: Catalin Cimpanu, Softpedia

RansomWeb attacks are happening five times more frequently in 2016, compared to 2015, security firm High-Tech Bridge is reporting, based on activity seen on its security products in the past six months. ....

Selengkapnya

'It's High Noon': Blizzard authentication servers fall offline

  • Kamis, 23 Jun 2016
  • Penulis: Steve Ragan, Salted Hash - Top Security News (CSO Blog)

Early Monday morning, gaming giant Blizzard had server issues, which led to authentication lockouts for gamers attempting to access Overwatch, Hearth Stone, World of Warcraft, Diablo, Heroes of the Stone, and more. .....

Selengkapnya

Black-Hat uses SQL injection to your site to boost their SEO ranking

  • Kamis, 23 Jun 2016
  • Penulis: SC Magazine

Instead of stealing your data, a criminal-run bot-net is using SQL injection to insert hidden links to boost the SEO of their own dodgey sites. .....

Selengkapnya

VB2015 paper: DDoS Trojan: A Malicious Concept that Conquered the ELF Format

  • Kamis, 23 Jun 2016
  • Penulis: Virus Bulletin

Recently, a new trend has emerged in non-Windows DDoS attacks. Malware has evolved into complex and relatively sophisticated pieces of code, employing compression, advanced encryption and even rootkit capabilities. Machines running systems supporting the ELF format are targeted – meaning that anything from desktops and servers to IoT devices such as routers or digital video recorders (DVRs) are at risk. ....

Selengkapnya

Lurk Banker Trojan: Exclusively for Russia

  • Rabu, 22 Jun 2016
  • Penulis: Alexey Shulmin and Mikhail Prokhorenko, SecureList (Kaspersky Lab Blog)

"One piece of advice that often appears in closed message boards used by Russian cybercriminals is “Don’t work with RU”. This is a kind of instruction given by more experienced Russian criminals to the younger generation. It can be interpreted as: “don’t steal money from people in Russia, don’t infect their machines, don’t use compatriots to launder money.”

Selengkapnya

Buggy Russian Ransomware Inadvertently Allows Free Decryption

  • Rabu, 22 Jun 2016
  • Penulis: Rommel Abraham D Joven, Security Research (Fortinet Blog)

Fortinet recently encountered a new ransomware variant that targets a Russian-speaking audience. The file is hosted on a Russian file hosting site, and is likely propagated via drive-by download. It encrypts files and appends the extension with crypt38. ....

Selengkapnya

Banking Trojans as a Service—Theft Made Easy in Brazil

  • Rabu, 22 Jun 2016
  • Penulis: Trend Micro, TrendLabs Security Intelligence Blog

As a known banking Trojan center, it’s not surprising when Brazil’s cybercriminals launch what could be considered “banking Trojans as a service.” In this particular case, a skilled cybercriminal started offering a fully functional banking Trojan and its associated infrastructure for rent, to be used by less-skilled crooks. ....

Selengkapnya

New Sofacy Attacks Against US Government Agency

  • Rabu, 22 Jun 2016
  • Penulis: Robert Falcone and Bryan Lee, Unit 42 (Paloalto blog)

The Sofacy group, also known as APT28, is a well-known threat group that frequently conducts cyber espionage campaigns. Recently, Unit 42 identified a spear phishing e-mail from the Sofacy group that targeted the United States government. The e-mail was sent from a potentially compromised account belonging to the Ministry of Foreign Affairs of another government entity and carried the Carberp variant of the Sofacy Trojan. ....

Selengkapnya

Say No to Ransomware With These Trend Micro Free Tools

  • Rabu, 08 Jun 2016
  • Penulis: TrendLabs Security Intelligence Blog (Trend Micro)

Trend Micro has released free tools—Trend Micro Crypto-Ransomware File Decryptor Tool and Trend Micro Lock Screen Ransomware Tool–to help users and organizations fight back against the dangers that ransomware pose. ....

Selengkapnya

Pemantauan Trafik Internet Nasional

Laporan pemantauan trafik internet nasional dengan menampilkan laporan trafik mingguan, trafik bulanan dan trafik tahunan.

Peringatan Ancaman Keamanan & Kerentanan Sistem

Kumpulan arikel tentang peringatan dini ancaman keamanan dan kerentanan sistem.

Security News

Kumpulan berita tentang keamanan siber atau IT.

Laporan Insiden

Id-SIRTII/CC menerima pelaporan insiden dari publik untuk kemudian dilakukan koordinasi kepada pihak-pihak yang berkepentingan.