Author: Admin
July 4, 2024Information hallData Breach / Mobile Security Cloud communications provider Twilio has revealed that unidentified threat actors exploited an unauthenticated endpoint within Authy to identify data associated with Authy accounts, including users’ mobile phone numbers. The company said it has taken steps to ensure that the endpoint no longer accepts unauthenticated requests. The development comes days after ShinyHunters online persona was published BreachForums database containing 33 million phone numbers purportedly pulled from Authy accounts. Owned by Twilio since 2015, Authy is a popular two-factor authentication (2FA) app that adds an extra layer of account security. “We have seen no…
Hackers have encrypted systems at Indonesia’s national data center with ransomware, disrupting immigration checks at airports and a variety of other public services, according to the country’s communications ministry. In a statement on Monday, the ministry said the systems of the Temporary National Data Center (PDNS) were infected with Brain Cipher, a new variant of the notorious LockBit 3.0 ransomware. Minister of Communication Budi Arie Setiadi told the state news agency Antara that hackers have demanded $8 million in ransom in exchange for decrypting the data and emphasized that the government would not pay or comply with the demands. The…
This picture taken on 4 April 2023 shows a woman watching a livestream on social media offering merchandise for sale in Jakarta. Photo: Bay Ismodo/AFP). EXECUTIVE SUMMARY The Personal Data Protection (PDP) Law was ratified by the Indonesian House of Representatives at the end of 2022. Although seen as a move in reaction to some data leakage incidents, this marks an important step in the country’s journey towards digital transformation. However, the enactment of this law near the end of Jokowi’s terms makes it look like mere lip service since it can be implemented only after all derivative regulations are…
This picture taken on 4 April 2023 shows a woman watching a livestream on social media offering merchandise for sale in Jakarta. Photo: Bay Ismodo/AFP). EXECUTIVE SUMMARY The Personal Data Protection (PDP) Law was ratified by the Indonesian House of Representatives at the end of 2022. Although seen as a move in reaction to some data leakage incidents, this marks an important step in the country’s journey towards digital transformation. However, the enactment of this law near the end of Jokowi’s terms makes it look like mere lip service since it can be implemented only after all derivative regulations are…
A coordinated law enforcement operation, codenamed MORPHEUS, destroyed approximately 600 servers used by cybercriminal groups and part of the attack infrastructure associated with Cobalt Strike. The repression According to Europol, between June 24 and 28, old unlicensed versions of the red team Cobalt Strike were targeted. Of the 690 IP addresses that were flagged by Internet service providers in 27 countries as being associated with criminal activity, 590 are no longer available. The joint operation, which began in 2021, was led by the UK’s National Crime Agency (NCA). It was attended by government officials from Australia, Canada, Germany, the Netherlands,…
JAKARTA, Indonesia (AP) — Indonesia’s national data center has been compromised by a hacking group asking for a $8 million ransom that the government says it won’t pay.The cyberattack has disrupted services of more than 200 government agencies at both the national and regional levels since last Thursday, said Samuel Abrijani Pangerapan, the director general of informatics applications with the Communications and Informatics Ministry.Some government services have returned — immigration services at airports and elsewhere are now functional — but efforts continue at restoring other services such as investment licensing, Pangerapan told reporters Monday.The attackers have held data hostage and…
Indonesian President Joko Widodo ordered on Friday an audit of government data centers after officials said the bulk of data affected by a recent ransomware cyberattack was not backed up, Reuters reported. Last week’s cyberattack, media described as the worst in Indonesia in recent years, has disrupted multiple government services including immigration and operations at major airports, according to the report. The government has said more than 230 public agencies, including ministries, had been affected, but has refused to pay an $8 million ransom demanded to retrieve the encrypted data. In response to the cyberattack, Indonesia’s state auditor said the…
n an increasingly online world, information has become the currency of the digital era, with information security and data privacy becoming top priorities for both organizations and consumers alike.Even so, as our transactions move online, so do the threats. Protecting personal and sensitive data is now more important than ever because of the constantly changing cyber threat landscape along with the expansion of rules and regulations such as the personal data protection law (UU PDP). The dynamic nature of technology has driven companies to be on their toes when it comes to safeguarding their customers’ information and data. Perhaps we…
n an increasingly online world, information has become the currency of the digital era, with information security and data privacy becoming top priorities for both organizations and consumers alike.Even so, as our transactions move online, so do the threats. Protecting personal and sensitive data is now more important than ever because of the constantly changing cyber threat landscape along with the expansion of rules and regulations such as the personal data protection law (UU PDP). The dynamic nature of technology has driven companies to be on their toes when it comes to safeguarding their customers’ information and data. Perhaps we…
July 4, 2024Information hallArtificial Intelligence / Data Privacy Brazil’s National Data Protection Authority (ANPD) has temporarily banned Meta processing of personal data of users to train the company’s artificial intelligence (AI) algorithms. ANPD said it found “evidence of personal data processing on the basis of an inadequate legal hypothesis, lack of transparency, limitation of the rights of data subjects and risks for children and adolescents”. The decision was made by the social media giant update its terms which allow the use of publicly available content from Facebook, Messenger and Instagram for AI training purposes. A recent report published This was…