[ALERT] ADVISORY ON COVID-19 ONLINE FRAUD

Submitted by irteam on Tue, 03/17/2020 - 02:26

Background:

The Covid-19 outbreak has shown a very drastic effect globally, with no exception to Brunei Darussalam. As the virus continues to spread, online platforms are now a key target for scammers to reach potential victims through "Phishing”, (e.g. fake online shopping sites and email) and "Smishing" (via text messages in which scammers normally offer free face masks, or even cures, vaccine and treatment for COVID-19).

Impact:

APCERT CYBER DRILL 2020 “BANKER DOUBLES DOWN ON MINER”

Submitted by irteam on Fri, 03/13/2020 - 01:21

APCERT CYBER DRILL 2020 “BANKER DOUBLES DOWN ON MINER”

The Asia Pacific Computer Emergency Response Team (APCERT) today has successfully completed its annual drill to test the response capability of leading Computer Security Incident Response Teams (CSIRT) within the Asia Pacific economies.

The theme of this year’s APCERT Drill is “Banker doubles down on Miner”. This exercise reflects real incidents and issues that exist on the Internet. The participants handled a case of a local business affected by malware infection which is triggered by data breach.

[ALERT] ANDROID MALWARE CAN STEAL GOOGLE AUTHENTICATOR 2FA CODES

Submitted by irteam on Thu, 03/12/2020 - 02:06


Background
Last month, a cybersecurity firm discovered that this malware can now steal 2FA codes from Google Authenticator app and doing a simple technique by screenshotting the Authenticator app's interface.

Android banking trojan namely "Cerberus" malware has the capability to steal One-Time Password (OTP) generated through Google Authenticator app that's used as 2FA for many online accounts.

Impact
•    Possible loss of sensitive information especially your bank account credentials