Have you or anyone near you became a victim of online scamming? This article will introduce you to online scams, how the waves of scammers target their victims and in which ways, and what damage they inflict.
This article’s contents are based on AhnLab’s in-house data as well as externally available information.…
Mar 02, 2024NewsroomSpyware / Privacy
A U.S. judge has ordered NSO Group to hand over its source code for Pegasus and other products to Meta as part of the social media giant’s ongoing litigation against the Israeli spyware vendor.
The decision, which marks a major legal victory for Meta, which filed the lawsuit in October 2019 for using its infrastructure to distribute the spyware to approximately 1,400 mobile devices between April and May.…
New research from Recorded Future’s Insikt Group examines newly discovered infrastructure related to the operators of Predator, a mercenary mobile spyware. This infrastructure is believed to be in use in at least eleven countries, including Angola, Armenia, Botswana, Egypt, Indonesia, Kazakhstan, Mongolia, Oman, the Philippines, Saudi Arabia, and Trinidad and Tobago.…
In September and October 2023, several open source publications, part of the Predator Files project coordinated by the European Investigative Collaborations, exposed the use of the Predator spyware by customers of Intellexa surveillance solutions. The intrusion set related to these customers is tracked under the code-name Lycantrox by Sekoia.…
The figures above are based on detection statistics received from Kaspersky users who consented to sharing usage data with Kaspersky Security Network. The data for years preceding 2023 may differ from that published previously, as the calculation methodology was refined, and the data was retrospectively revised in 2023.…
Victim: KAI Country : ID Actor: stormous Source: Discovered: 2024-02-26 03:47:27.770023
Description: indonesia …
When we talk about the term “fake news,” most people likely picture a certain person who made the term infamous.
And when we talk about misinformation and disinformation, many will remember the “Russian troll farms” that popped up during the 2016 U.S. presidential election and were unmasked and shut down during former president Barack Obama’s final days in office. …
HomuWitch is a ransomware strain that initially emerged in July 2023. Unlike the majority of current ransomware strains, HomuWitch targets end-users – individuals – rather than institutions and companies. Its prevalence isn’t remarkably large, nor is the requested ransom payment amount, which has allowed the strain to stay relatively under the radar thus far.…
Victim: rajawali.com Country : ID Actor: lockbit3 Source: http://lockbitapt2d73krlbewgv27tquljgxr33xbwwsp6rkyieto7u4ncead.onion/post/mBIMu0vMBfy4MUCj65cbd0aba4648 Discovered: 2024-02-13 22:28:40.362981
Description: Rajawali Group is an Indonesia National Investment Holding Company operating in diverse industries covering plantation, mining, hotel and property (Sheraton, Luxury Collection, St Regis and Four Seasons), infrastructure, transportation (Express Taxi)… …
Welcome to the new edition of our report. As we bid farewell to the year 2023, let’s briefly revisit the threat landscape that defined the past year. In 2023, the overall number of unique blocked attacks surged, reaching an unprecedented milestone of more than 10 billion attacks and a remarkable 49% increase year-over-year.…
Victim: Samuel Sekuritas Indonesia & Samuel Aset Manajemen Country : ID Actor: trigona Source: http://krsbhaxbki6jr4zvwblvkaqzjkircj7cxf46qt3na5o5sj2hpikbupqd.onion/leak/1905433c Discovered: 2024-01-18 23:24:57.296563
Description: PT Samuel Sekuritas Indonesia (SSI) is a prominent financial advisory company based in Jakarta, Indonesia. Established in 1992, the company operates as a full-service investment bank, offering a wide range of financial services to both institutional and retail clients.…
Victim: www.kai.id “FF” Country : ID Actor: stormous Source: http://pdcizqzjitsgfcgqeyhuee5u6uki6zy5slzioinlhx6xjnsw25irdgqd.onion/DataPage/18397815624.html Discovered: 2024-01-14 14:44:39.685650
Description: “PT Kereta Api Indonesia” is the national railway company in Indonesia, also known as “Kereta Api.” It is responsible for operating train services throughout the country. The company was established to provide public transportation via railways and plays a vital role in connecting cities and regions in Indonesia.…
Since the beginning of 2023, ESET researchers have observed an alarming growth of deceptive Android loan apps, which present themselves as legitimate personal loan services, promising quick and easy access to funds.
Despite their attractive appearance, these services are in fact designed to defraud users by offering them high-interest-rate loans endorsed with deceitful descriptions, all while collecting their victims’ personal and financial information to blackmail them, and in the end gain their funds.…
Dark Pink employs a variety of tools and custom-built malicious software designed for data theft and espionage. Their specialized toolkit comprises:
Cucky: A straightforward custom information stealer coded in .NET. It is proficient in extracting passwords, browsing history, login credentials, and cookies from a range of web browsers targeted by the group.…Resecurity has identified an alarming rise in ransomware operators targeting the energy sector, including nuclear facilities and related research entities. Over the last year, ransomware attackers have targeted energy installations in North America, Asia, and the European Union. In the EU, Handelsblatt reported that ransomware attacks targeting the energy sector more than doubled in 2022 over the previous year, with defenders recording 21 attacks through the past October.…
Victim: Pelindo Country : ID Actor: bianlian Source: http://bianlianlbc5an4kgnay3opdemgcryg2kpfcbgczopmm3dnbz3uaunad.onion//companies/pelindo.co.id/ Discovered: 2023-10-11 19:01:21.814229
Description: PT Pelabuhan Indonesia (Persero), trading as Pelindo, is Indonesian state-owned port operation company that offers an integrated port service throughout Indonesia. …
The fake USPS phishing page.
Recent weeks have seen a sizable uptick in the number of phishing scams targeting U.S. Postal Service (USPS) customers. Here’s a look at an extensive SMS phishing operation that tries to steal personal and financial data by spoofing the USPS, as well as postal services in at least a dozen other countries.…
The realm of cybersecurity is becoming more and more chaotic with each passing day, and there will always be a new actor entering the world of cybersecurity. The Dark Pink APT Group is one such entity that has recently caught the attention of security researchers and organizations worldwide.…
Victim: Smartfren Telecom Country : ID Actor: bianlian Source: http://bianlianlbc5an4kgnay3opdemgcryg2kpfcbgczopmm3dnbz3uaunad.onion//companies/smartfren.com/ Discovered: 2023-09-21 14:34:16.611187
Description: PT Smartfren Telecom Tbk, together with its subsidiaries, provides telecommunication services in Indonesia. The company develops, builds, owns, operates, leases, and maintains facilities and network to operate telecommunications network and services. …