Over 2,100 servers in M’sia hacked


  • Nation
  • Friday, 17 Jun 2016

Minister of Science , Technology and Innovation (MOSTI) Datuk Seri Panglima Madius Tangau (2nd right) during the Soft Launch of the CSM-ACE 2016. Looks on from left Suhaimi Hamzah , Jen Tan Sri Mohd Azumi Mohamed and Dr. Amirudin Abdul Wahab.. -- M. Azhar Arif/The Star 16 June 2016

KUALA LUMPUR: Malaysia’s national cybersecurity agency said it detected intrusions in several local servers for years and issued advisories to victims but ignorance was still making them easy targets for hackers.

It was found that over 2,100 servers have been compromised and their access sold to hackers for as low as RM29 (US$6) up to RM24,600 (US$6,000) on an underground cybercrime shopping website, xDedic, the “eBay of cybercrime” where hackers shop access and passwords for infiltrated servers worldwide for criminals to buy.

These servers belong to government agencies, banks, universities and businesses, said computer security company Kaspersky Lab, which unearthed the market.

Once in the server, hackers can have all the personal information of users attached to that server.

As at June 15, there were 70,624 hacked servers up for sale. Malaysian servers were the 10th most in demand, it said.

CyberSecurity Malaysia chief executive officer Dr Amirudin Abdul Wahab said his agency would work with Kaspersky Lab to get more details on the compromised servers and offer assistance in fixing the intrusions.

But that will be difficult, if the victims do not know they are victims or had taken a lackadaisical approach to cybersecurity, he said.

“Cybersecurity is everyone’s responsibility. People thought having a firewall is enough but the most vulnerable part of cybersecurity is still people. You can have a firewall but when a worker opens something with their computer, it gets in.

“Then many don’t have the proper process of managing things, you have to cover the whole ecosystem in cybersecurity,” he said.

Dr Amirudin said companies may engage the agency’s Cyber DEF service to skim their servers for intrusions and to clean and plug any weaknesses.

The Kaspersky Lab report comes as Science, Technology and Innovation Minister Datuk Seri Madius Tangau called for Malaysian companies and agencies to have more cyber resilience and adopt better practices that would allow them to recover quickly from cyber attacks.

“In today’s cyber threat scape, we need to recognise that security goes beyond systems, software or IT departments. Cyber resilience focuses on the preventive, detective and reactive controls in an IT environment to assess gaps and drive enhancements to the overall security posture of the entity,” he said during a soft launch for Cybersecurity Malaysia’s Award, Conference and Exhibition yesterday.

The conference and exhibition will see industry experts discussing the latest threats to cybersecurity and preventive measures that need to be taken.

Article type: metered
User Type: anonymous web
User Status:
Campaign ID: 1
Cxense type: free
User access status: 3
Subscribe now to our Premium Plan for an ad-free and unlimited reading experience!
   

Next In Nation

Half-wooden house in Segamat razed in early morning fire
Mercury spills: Sabah Bomba keen to help schools with proper handling of thermometers
All systems go for Budget 2023 at 4pm today, says KJ
Cops nab CCTV installer who burgled customers' offices in Puchong
60% of BN candidates in Johor will be new faces, 30% women, says Hasni
Remain vigilant during monsoon, Sabah’s maritime community told
Abang Johari: Sarawak to elect its financial secretary to sit on LHDN board
GE15: Hold concurrent state polls and save taxpayers' money, Pakatan told
High Court nod for transfer of Zizie Izette's review application
Mengkuang Dam to be converted from drought reserve to daily water source

Others Also Read