Tag: INDONESIA

Attacker: chinafansTarget: https://barehtai-sao.go.th/0x.txtSource: http://www.zone-h.org/mirror/id/41316392

Attacker: Atengg377Target: ejournal.poltekpel-sorong.ac.i…Source: https://zone-xsec.com/mirror/id/703514

Attacker: Atengg377Target: lppm.unilu.ac.id/0wn3d.txtSource: https://zone-xsec.com/mirror/id/703513

Attacker: Atengg377Target: fia.unilu.ac.id/0wn3d.txtSource: https://zone-xsec.com/mirror/id/703512

Attacker: Atengg377Target: unilu.ac.id/0wn3d.txtSource: https://zone-xsec.com/mirror/id/703507

Cybersecurity Attack Analysis Report on Government Websites Overview of Cyber Attacks

In recent months, several government websites have fallen victim to hacking incidents, specifically through a type of attack known as web defacement.…

Read More
Cybersecurity News Review, Week 4 (2025)
This week’s cybersecurity overview includes critical vulnerabilities in various software and hardware, exploits of chained vulnerabilities, record-high DDoS attacks, and a notable ransomware surge, particularly impacting education and utilities. The article emphasizes the necessity for improved security measures across affected sectors. Affected: 7-Zip, Asus, Ivanti Cloud Service Appliances, Cisco, Cambium Networks, ABB, UK Education Sector, PowerSchool, US Utilities, Russia, Iran

Keypoints :

7-Zip has a critical vulnerability (CVE-2025–0411) that allows code execution by bypassing the Mark of the Web security feature.…
Read More

Attacker: MrBrew1337Target: https://pt-kaltara.go.idSource: http://www.zone-h.org/mirror/id/41316190

Attacker: ./OutsidersTarget: rdm.mtsn1banyumas.sch.id/wle.t…Source: https://zone-xsec.com/mirror/id/703475

Attacker: ./OutsidersTarget: ppdb.mtsn1banyumas.sch.id/wle….Source: https://zone-xsec.com/mirror/id/703474

Attacker: ./OutsidersTarget: elearning.mtsn1banyumas.sch.id…Source: https://zone-xsec.com/mirror/id/703473

Attacker: ./OutsidersTarget: mtsn1banyumas.sch.id/wle.txtSource: https://zone-xsec.com/mirror/id/703472

Attacker: fitwilliamx12Target: kmews.drmc.gov.et/12.htmlSource: https://zone-xsec.com/mirror/id/703465

Attacker: MrBrew1337Target: antrian.pt-kaltara.go.idSource: https://zone-xsec.com/mirror/id/703464

Attacker: MrBrew1337Target: eseksi.pt-kaltara.go.idSource: https://zone-xsec.com/mirror/id/703463

Attacker: MrBrew1337Target: pt-kaltara.go.idSource: https://zone-xsec.com/mirror/id/703462

Attacker: Cynn7Target: lomsak.go.th/headimg/0x.htmlSource: https://zone-xsec.com/mirror/id/703460

Attacker: M4K10 R0YTarget: bayanadraga.khe.gov.mn/upload/…Source: https://zone-xsec.com/mirror/id/703458

Attacker: M4K10 R0YTarget: www.mlsp.gov.mn/home01/mlspgov…Source:…

Read More

Attacker: ./FreedomXploitTarget: esign.baritotimurkab.go.id/upl…Source: https://zone-xsec.com/mirror/id/703408

Attacker: KecotXplTarget: mtsn1mesuji.sch.idSource: https://zone-xsec.com/mirror/id/703400

Attacker: Mayat1337Target: smknbalimandara.sch.idSource: https://zone-xsec.com/mirror/id/703399

Attacker: Mayat1337Target: tkr.smknbalimandara.sch.idSource: https://zone-xsec.com/mirror/id/703398

Attacker: Mayat1337Target: tefa.smknbalimandara.sch.idSource: https://zone-xsec.com/mirror/id/703397

Attacker: Mayat1337Target: sas.smknbalimandara.sch.idSource: https://zone-xsec.com/mirror/id/703396

Attacker: Mayat1337Target: alumni.smknbalimandara.sch.idSource: https://zone-xsec.com/mirror/id/703395

Attacker: Mayat1337Target: akademik.smknbalimandara.sch.i…Source: https://zone-xsec.com/mirror/id/703394

Attacker: Mayat1337Target: ppdb.smknbalimandara.sch.idSource: https://zone-xsec.com/mirror/id/703393

Attacker: GelntTarget: jmc.gov.bd/spectre.htmlSource: https://zone-xsec.com/mirror/id/703386

Cybersecurity Attack Analysis Report: Website Defacement of Government Sectors Introduction

This report analyzes recent cyberattacks focusing on website defacement affecting government entities across various countries.…

Read More
CYFIRMA Secures Strategic Investment From MDI Ventures to Bolster Cybersecurity in Southeast Asia
Summary: CYFIRMA, a cybersecurity firm based in Singapore, has secured a strategic investment from MDI Ventures to expand its operations in Southeast Asia, particularly in Indonesia. This funding will enhance CYFIRMA’s research and development efforts to create advanced cybersecurity solutions amid rising cyber threats. The investment aims to broaden CYFIRMA’s offerings and improve its service capabilities for clients globally.…
Read More

In recent months, Indonesia has emerged as a significant hotspot in the global cybersecurity landscape, as cybercriminals exploit vulnerabilities in Internet of Things (IoT) devices to launch large-scale distributed denial-of-service (DDoS) attacks. A new variant of the infamous Mirai botnet, dubbed Murdoc Botnet, has been actively targeting IoT devices, including AVTECH IP cameras and Huawei HG532 routers, with Indonesia being one of the most affected countries.…

Read More

Attacker: SABUNMANDI CYBER TEAMTarget: https://msmeclinics.gov.ng/hack.txtSource: http://www.zone-h.org/mirror/id/41315746

Attacker: Cynn7Target: gizi.fkm.unsri.ac.id/x7.htmlSource: https://zone-xsec.com/mirror/id/703218

Attacker: Inside Alone7Target: izis.edu.mn/read.htmlSource: https://zone-xsec.com/mirror/id/703217

Attacker: Akame-x48Target: al-istiqlal.sch.id/48.htmSource: https://zone-xsec.com/mirror/id/703216

Attacker: FAKESITETarget: buliabazarcollege.edu.bd/stemp…Source: https://zone-xsec.com/mirror/id/703186

Cybersecurity Attack Analysis Report: Government Website Defacements Introduction

In recent months, a series of cybersecurity attacks have resulted in the defacement of various government websites across different countries.…

Read More
Mirai Botnet Launches Record 5.6 Tbps DDoS Attack with 13,000+ IoT Devices
Summary: Cloudflare reported the largest DDoS attack to date, peaking at 5.6 Tbps, which targeted an unnamed ISP in Eastern Asia on October 29, 2024. The attack, originating from a Mirai-variant botnet, lasted only 80 seconds and involved over 13,000 IoT devices. Cloudflare also noted a significant increase in DDoS attacks in 2024, with a 53% rise compared to the previous year.…
Read More
Mirai Botnet Spinoffs Unleash Global Wave of DDoS Attacks
Summary: Recent spinoffs of the Mirai botnet are causing a surge in distributed denial-of-service (DDoS) attacks worldwide, particularly targeting IoT devices. The Murdoc botnet, which exploits vulnerabilities in specific devices, and another botnet combining Mirai and Bashlite malware, are both contributing to this ongoing threat. Researchers emphasize the importance of robust defenses against these evolving cyberattacks.…
Read More

Attacker: M@rAz AliTarget: https://epb-exporttracker.gov.bd/tr.htmlSource: http://www.zone-h.org/mirror/id/41315680

Attacker: FAKESITETarget: asmc.edu.bdSource: https://zone-xsec.com/mirror/id/703128

Attacker: hydyaTarget: bapenda.jombangkab.go.id/web/f…Source: https://zone-xsec.com/mirror/id/703121

Attacker: Babi GilaTarget: sdn043bulubawang.sch.id/2025/0…Source: https://zone-xsec.com/mirror/id/703120

Attacker: IronHeart_X12Target: gsbmantra.layanan.go.id/readme…Source: https://zone-xsec.com/mirror/id/703119

Attacker: jokeir 07xTarget: pecsa.regionpuno.gob.peSource: https://zone-xsec.com/mirror/id/703111

Attacker: FAKESITETarget: jalkuriidm.edu.bd/stemped.phpSource: https://zone-xsec.com/mirror/id/703109

Attacker: FAKESITETarget: delifdm.edu.bd/stemped.phpSource: https://zone-xsec.com/mirror/id/703108

Attacker: FAKESITETarget: tamhs.edu.bd/stemped.phpSource: https://zone-xsec.com/mirror/id/703107

Attacker: FAKESITETarget: h2hs.edu.bd/js/stemped.phpSource: https://zone-xsec.com/mirror/id/703106

Attacker: FAKESITETarget: kamargaonhs.edu.bd/js/stemped….Source:…

Read More
The Lynx ransomware, identified as a successor to the INC ransomware family, has been actively targeting various industries in the US and UK since July 2024. Operating under a ransomware-as-a-service model, Lynx employs tactics such as phishing, service termination, and double extortion. The ransomware uses robust encryption methods and has shown a significant overlap with its predecessor, INC.…
Read More

Cybersecurity researchers have identified a new campaign targeting PHP-based web servers, particularly those running the Moodle learning management system in Indonesia, to promote gambling platforms. The attacks involve Python-based bots deploying the GSocket tool to establish persistent communication channels on compromised servers. By exploiting existing web shells, hackers ensure that gambling-related content remains active even after initial breaches are addressed.…

Read More
Python-Based Bots Exploiting PHP Servers Fuel Gambling Platform Proliferation
Summary: Cybersecurity researchers have uncovered a campaign targeting PHP-based web servers to promote gambling sites in Indonesia, utilizing Python-based bots for exploitation. The attacks leverage GSocket to establish communication channels and redirect users searching for gambling services to malicious domains. This coordinated effort has been linked to a broader malware campaign affecting thousands of sites globally.…
Read More