MyCert issues phishing and malware warning exploiting CrowdStrike incident

KUALA LUMPUR: The Malaysia Computer Emergency Response Team (MyCert) has issued a critical alert following reports of increased phishing attacks leveraging the recent CrowdStrike incident which caused a global IT outage.

These attacks use fraudulent domains, command-and-control (C2) Internet Protocol (IP) addresses and malware binaries to compromise systems and steal sensitive information, said MyCert on its website on Saturday (July 20).

It said the phishing domains mimics legitimate websites, deceiving users into unknowingly installing malware or disclosing personal credentials.

Meanwhile, attackers use C2 servers to maintain control over compromised devices and extract sensitive data.

Additionally, malicious software, delivered through websites or emails, exacerbates the threat landscape by executing harmful actions on infected devices, MyCert noted.

The agency has provided 30 potential indicators of compromise (IOC), including their value, type and additional information, available on its website.

"To safeguard your organisation against the recent surge in phishing attacks involving phishing domains, C2 IPs, and malware binaries, it is crucial to monitor and protect based on the provided IOCs.

"Generally, CyberSecurity Malaysia advises users to stay updated with the latest security announcements from vendors and follow best practice security policies to determine which updates should be applied," it added.

For further information and assistance, MyCert encourages the public to contact them through various communication channels, including email at (cyber999@cybersecurity.my), phone (1-300 88 2999 during business hours), mobile: (019-266 5850 for 24/7 call incident reporting) and social media platforms.

Mass cyber outage on Saturday (July 20) affected key institutions such as airlines, banks, media outlets and hospitals in several countries.

CrowdStrike Holdings Inc is an American cybersecurity technology company based in Austin, Texas. It provides penetration, workload, endpoint security, threat intelligence and cyberattack response services. – Bernama

Related stories:
Follow us on our official WhatsApp channel for breaking news alerts and key updates!
MyCert , Phishing , Malware , CrowdStrike , Global IT Outage

Next In Nation
Another ‘Captain Praba’ gang member nabbed in Thailand, flown back under Ops Jack Sparrow
Inspector Sheila nabbed for disturbing the peace at Batu Caves
Male tapir killed while crossing road in Dungun
Queen greets tourists at entrance to Istana Negara
Tight-lipped security as Abdul Hadi joins closed-door PAS meeting
Three immigrants nabbed in Tawau over blackmail, threats, fake MyKad
FT Day: National leaders emphasise togetherness, inclusive development
New Guangzhou–Penang direct flight boosts Visit Malaysia campaign
Tens of thousands flock to Johor’s Thaipusam celebration at Wadi Hana
Cops probe actor’s claim of childhood sex abuse

Trending in News

Others Also Read

Load more

Copyright © 1995- Star Media Group Berhad [197101000523 (10894-D)]

Best viewed on Chrome browsers.