Detecting APT attack campaign on important national infrastructure on Tet holiday
Recently, hackers' intentional attack (APT) campaign for the purpose of stealing important information aimed at bank information systems and hosting the national important infrastructure information system was discovered by Vietnam Computer Emergency Response Center (VNCERT) under the Ministry of Information and Communications.
According to VNCERT, hackers have learned thoroughly about the attacker before making these targeted attacks. To bypass the information security protection system of the information systems of the bank and organize the management of important national infrastructure information system, hackers have carried out fraud and fraudulent procedures. with high technical measures. This makes attacks more difficult to detect, helping hackers maintain control of the information system.
The main purpose of hackers is to gain user control, then through it to attack internal computer systems to steal important information.
In the evening of January 31, 2019, VNCERT Center issued an order to regulate the fire, requiring nearly 200 member units of the National Emergency Response Network to implement measures to promptly detect and prevent war. translated on.
Specifically, the network member units are recommended to monitor and prevent connection to C&C servers with the following domain names and IP addresses:
Dangerous malicious files and folders can steal information and destroy information systems with corresponding signs to be removed, including:
See more:
- Strange ransomware detection only attacks the rich
- Warning: New extortion code GandCrab is attacking Vietnamese Internet users
- 'Scoring' tool to prevent network attacks for free
You should read it
- What is 51% attack? How does 51% attack work?
- Discovering a large-scale APT attack into Vietnam, users need to quickly download the malicious tool
- There were 4,035 cyber attacks on Vietnam in the first 5 months of the year
- Detected malicious attack campaign targeting TikTok, threatening to delete accounts of many celebrities
- Beware of the 'Windows 11 Alpha' cyberattack campaign
- What is a Replay Attack?
- Analysis of an attack (Part 3)
- What is the method of attacking APT network?
- What is Volumetric DDoS Attack?
- Filipino hackers attack the Vietnamese web, retaliating that many users' Facebook accounts are 'hacked' by Vietnamese people
- Warning the emergence of ransomware DDoS attack, the scale can be up to 800Gbps
- What is SS7 attack? What can hackers use it for?
Maybe you are interested
7 Best Chrome Extensions for Quick Information Gathering
Dota 2 7.22c Update Information
What information can your ISP see when you turn on a VPN?
How to set up personal safety information on Android
What information does a VPN hide? How does it protect your data?
Instructions for changing and editing music file information using 3uTools