MA-281.062011 : MyCERT Alert - Increase in Cyber Security Incidents
Date of publication: 2011-06-15
MyCERT has observed significant increase in cyber security related activities (i.e. vulnerability scanning, intrusion attempts) in the last 24 hours. The attacks are targeting websites belong to organizations and government in Malaysia. We expect that this may last a couple of days.
Successful attack will affect the confidentiality, integrity of information and availability of the websites. This may further impact business activities of organizations.
3.0 Targeted Websites
Based on our observation, the attackers are targeting web applications that are vulnerable to publically known attack techniques, weak passwords and misconfiguration.
MyCERT advises all system owners to be alert and do the necessary to secure their websites. Please refer to the link in the references section for tips and best practices that can be applied to secure the websites.
If your website is defaced or you observe attack attempts, do not hesitate to contact Cyber999 via the following channels:
E-mail : email@example.com or firstname.lastname@example.org
Phone : 1-300-88-2999 (monitored during business hours)
Fax : +603 89453442
Handphone : +60 19 2665850 (24x7 call incident reporting)
SMS : CYBER999 REPORT <EMAIL> <COMPLAINT> to 15888
Business Hours : Mon - Fri 08:30 -17:30 MYT
- What you should know about web defacement - http://www.mycert.org.my/en/resources/incident_handling/main/main/detail/756/index.html
- Steps for recovering from a UNIX or NT system compromise
- Intrusion Detection Checklist
- Guides On Fixing Sql Injections Vulnerabilities
- How To: Protect From SQL Injection in ASP.NET