In light of recent developments in the Middle East, the National Cyber Coordination and Command Centre (NC4) is closely monitoring the cyber campaign centred around this conflict. Multiple hacktivists have reportedly gathered and launched cyber attacks, which, based on historical data, include web defacement, document leaks, and distributed denial of service (DDOS) attacks.

National Cyber Coordination and Command Centre (NC4) is aware of active exploitation on Barracuda Email Security Gateway (ESG) vulnerabilities that could allow an attacker to gain control of an affected system, install backdoors and exfiltrate data.

In the light of the current threat landscape in Malaysia, National Cyber Coordination and Command Centre (NC4), would like to urge all organisations both public and private sectors to take immediate actions in implementing stronger cyber security measures and perform due diligence to ensure that systems and networks are adequately protected against unauthorised data access.

The National Cyber Coordination and Command Centre (NC4) monitors cyber threats in Malaysia and has observed an increase of cyber activities on Malaysian domains based on the current ongoing campaign.

National Cyber Coordination and Command Centre (NC4) is aware of active exploitation of the zero day vulnerability affecting Microsoft Support Diagnostic Tool (MSDT) in Windows (CVE-2022-30190).

The National Cyber Coordination and Command Centre (NC4), a national centre that continuously monitors the cyber threat landscape in Malaysia has observed an increased number of cyber activities within this region targeting the ICT infrastructure in Malaysia.

National Cyber Coordination and Command Centre (NC4) would like to alert everyone about a critical vulnerability concerning the use of Log4J 2 library and a working exploit affecting all applications using the library.

In view of the recent development involving a sensitive video parody, it has come to our attention that a campaign to attack and deface Malaysian websites has been launched.

A recent breach involving a cybersecurity firm FireEye has uncovered a widespread campaign by an uncategorised advanced persistent threat actor tracked as UNC2452 by FireEye. The actors behind this campaign have gained access to numerous public and private organisations around the world via trojanised updates to SolarWinds’ Orion IT monitoring and management software.

The National Cyber Security Agency (NACSA), National Security Council (NSC) through the National Cyber Coordination and Command Centre (NC4) has been informed of a malicious Android mobile app and a fraudulent website (http://malaysiagovermentapp.com) claiming to be from the Perdana Menteri Malaysia for the purposes of COVID-19 aid programme.

The National Cyber Coordination and Command Centre (NC4) continuously monitor the cyber threat landscape that may affect national security both locally and globally. We have observed an increased number of cyberattacks, targeting multiple organisations worldwide, taking advantage of Coronavirus (COVID19) public health issue as a lure to attract victims to fall into their traps.

National Cyber Security Agency (NACSA), National Security Council (NSC) always monitor the current cyber threat level in Malaysia. It has come to our attention of ongoing scam campaigns and phishing attacks leveraging the current Coronavirus (COVID-19) global scale health crisis to steal sensitive information and delivering malware. NACSA has also discovered that, with the latest development in our political scene, several files were circulated that have potential threat to the end users and an increased activities by local hacktivist groups taking advantage of the current political situation.

NC4 would like to remind System Administrators and Internet users to implement sufficient cyber security measures to ensure that systems and networks are secure before leaving for the holidays.

Microsoft has announced a vulnerability exists in older versions of Windows.

WhatsApp has announced a vulnerability that could be used to target selected WhatsApp users.

The DNS Flag Day 2019 will be in effect starting from 1st February 2019 may cause slow access, service delivery interruptions, unreachable and intermittent availability.

There are recent incidents of data breaches involving personal data of citizens in this region.

Security researcher at CISCO's Talos Intelligence has discovered an advanced widespread use of a sophisticated modular malware system called "VPNFilter".

National Cyber Cyber Security Agency (NACSA) has detected various attack attempts targeting numerous organisations in Malaysia recently. The type of attacks detected varies; including Intrusion, Intrusion Attempts, Distributed Denial of Service (DDoS), Web Defacement and Malware Infections.

National Cyber Coordination and Command Centre (NC4) and MyCERT has received numerous reports of smartphones users being infected with malware through a phishing campaign involving Bank Negara Malaysia (BNM).

National Cyber Coordination and Command Centre (NC4) is aware of recent revelation of security vulnerabilities in processors that can be exploited to gather sensitive data from computing devices.

On Oct 24, 2017, a few organisation in Ukraine, Russia, Turkey and Germany had reported of disruptions attributing to ransomware. Based on initial information received, a new variant of WannaCry and NotPetya ransomware known as Bad Rabbit are responsible for the incidents. Further analysis of the ransomware has been carried out and details of the ransomware is explained below. National Cyber Coordination and Command Centre is currently monitoring closely for any signs of infection or propagation in Malaysia.

On June 27 2017, multiple organisations globally had reported of disruptions attributing to ransomware. Based on initial information received, a variant of Petya ransomware may be responsible for the incidents. National Cyber Coordination and Command Centre is currently monitoring closely for any signs of infection or propagation in Malaysia.