Abuse Statistic New Service Etc
2.2. Abuse Statistic
It is Incident Monitoring Report IMR, a joint monitoring activity that involve active constituents of ID-CERT by sending email copy of the incident complaint. No. Complaint Category Rating 1 Spam 51,78 2 Intellectual Property Right 24,14 85 3 Spam complaint 6,74 4 Network Incident Deface, DdoS attack, etc 6,61 5 SpoofingPhishing 4,67 6 Malware 4,57 7 Complaint respond 1,49 Spam: 86 Intellectual Property Rights: Spam complaint: 87 Network Incidents: 88 SpoofingPhishing: Malware: 89 Sample Phishing-Malware: Phishing-Malware case in government domain, with motives to target certain site, spread malware, create fake site phishing: 2014-09-26 11:10:21 CEST Upnil: unknown_html http:clg.utxao.bengk.go.id http:ebu.mhatr.bengk.go.id http:xjs.mhatr.bengkgo.id http:loadp.bengk.go.id Complaint respond: Potential Loss and Current Loss of Fraud reported in Indonesia: Total loss January - March 2014: USD4.832,00 and Rp2.250.000,00 3 countries complained their citizen as victim: Saudi, Singapore, and France. Item bought: wood, birth control devices which not standard and not in accordance with the agreement, bicycle, villahouse rent. Communication media: Via email 90 proceeded bank transfer hijack company email account2.3. New Service
Since March 2014, ID-CERT gives daily feed to DIKBUD Education and Cultural Ministry of cyber incident.2.4. Etc
ID-CERT has issued 2 Security Alerts in 2014: OpenSSL Heartbleed http:www.cert.or.idindex-beritaidberita47 At April 13, 2014, ID-CERT received information from a valid source of vulnerabilities that exist in the version of OpenSSL 1.0.1 to 1.0.1f which can reveal the users sensitive information to the attacker. The impact of this vulnerability is a remote, unauthenticated attacker may be able to take sensitive information, such as secret keys. By using sensitive information, an attacker may be able to decrypt, spoof, or perform man-in-the-middle attack on the network traffic that would otherwise be protected by the OpenSSL. solution: - applying updates - Disable support for OpenSSL heartbeat - Another recommendation is to recompile OpenSSL with DOPENSSL_NO_HEARTBEATS falg. Bash http:www.cert.or.idindex-beritaidberita50 Product: Bash Publisher: SUSE Operating System: SUSE ImpactAccess: execute code remote commands unauthenticated Unauthorized Access - from an existing account Solution: Patch upgrade3. Event
Parts
» Objectives and Scope of Activities
» APCERT Members APCERT Annual Report 2014
» Working Groups WG APCERT Website
» International Activities and Engagements
» BruCERT Establishment BruCERT Workforce BruCERT Constituents
» Encounter and infection rate trends
» Malicious websites Summary of BruCERT Honey Pot Project
» Establishment Workforce power Constituency
» Drills Meetings Presentations Publications – Cyber alerts, advisories and strategies
» Incident handling Reports Abuse Statistics Incident Trends
» Cyber Security Assurance initiatives Future projects
» Introduction Establishment Workforce power Constituency Contact Incident handling
» Internet Awareness 1. Malware Activities Website Security
» Mobile Awareness Conferences Achievements 1. Publications
» Introduction EC-CERT Services Achievements 1. Publications
» About ID-CERT Introduction APCERT Annual Report 2014
» Abuse Statistic New Service Etc
» Establishment Management and Staffs Constituencies and Stakeholders Main activities:
» Drills About JPCERTCC Establishment
» About KrCERTCC Introduction About MNCERTCC Introduction
» Statistics Activities Operations 1. Incident handling reports
» Drill Seminars Events organized co-organized 1. Competition
» Incident handling reports Abuse statistics
» Training Drills Seminars Publication. Sensors
» Activities About MOCERT Introduction
» Threats About MOCERT Introduction
» Incident trends About MOCERT Introduction
» Training Education Drills Seminars Presentations
» Future plan About MOCERT Introduction
» The Cyber999 Malware Research Centre MRC Constituency
» Cyber Drills Trainings Presentations Tools Developed Paper Publication
» MyCERT’s Activities Operation 1. Incident handling reports and abuse statistics Working Visits
» Memorandum of Understanding MoU New Partnership and Existing Cooperation
» Incident handling reports The Telecommunications Intercept Capability and Security Act TICSA
» Training Drills Publications About MOCERT Introduction
» Activity Summary About SingCERT Introduction
» Incident Handling Statistics About SingCERT Introduction
» Training Education Consultancy About SingCERT Introduction
» Seminars Workshops About SingCERT Introduction
» Publications Other Media Certification Membership MOUs
» Event Participation International Incident Coordination
» Future Plans Conclusion Activities Operations 1. Abuse statistics
» Security Vulnerability Announcement Spam Analysis Report Anti-Phishing Now
» MoU International Collaboration APCERT Annual Report 2014
» Establishment Workforce Power Mission and Constituency
» Incident Handling Government Information Sharing and Analysis Center Training
» Drills Conference Presentation Publication Incident Report
» International Organization Membership Participation to International Events MOU
Show more