Philippines | Cyber Security Review

East Asian online organised crime group preying on British job seekers

Posted onSeptember 6, 2021September 7, 2021

An organised group of criminals based in East Asia have defrauded job seekers in the UK and worldwide after getting a scam app on to both the Google and Apple app stores. Working with victims who have tried to track Read More …

LuminousMoth APT: Sweeping attacks for the chosen few

Posted onJuly 14, 2021

handpick a set of targets that in turn are handled with almost surgical precision, with infection vectors, malicious implants and payloads being tailored to the victims’ identities or environment. It’s not often we observe a large-scale attack conducted by actors Read More …

Japanese Aerospace Firm Kawasaki Warns of Data Breach

Posted onDecember 29, 2020January 4, 2021

Japanese aerospace company Kawasaki Heavy Industries on Monday warned of a security incident that may have led to unauthorized access of customer data. According to the company’s data breach notification, it first discovered unauthorized parties accessing a server in Japan, Read More …

More than 200 systems infected by new Chinese APT ‘FunnyDream’

Posted onNovember 17, 2020

A new Chinese state-sponsored hacking group (also known as an APT) has infected more than 200 systems across Southeast Asia with malware over the past two years. The malware infections are part of a widespread cyber-espionage campaign carried out by Read More …

COVID-19 Data-Sharing App Leaked Healthcare Worker Info

Posted onNovember 11, 2020November 12, 2020

A platform used by healthcare workers in the Philippines designed to share data about COVID-19 cases contained multiple flaws that exposed healthcare worker data and could potentially could have leaked patient data. Vulnerabilities found in both the COVID-KAYA platform’s web Read More …

Phishing scams dominate the Philippines cybercrime landscape

Posted onAugust 19, 2020

Cybercrime in the Philippines is on a rapid rise, with phishing campaigns alone up 200% since the country went into lockdown in March In today’s highly-digitalized society, wanton cybercrimes have proven to be difficult to eradicate, and the cyberattack threat Read More …

Tropic Trooper’s Back: USBferry Attack Targets Air-gapped Environments

Posted onMay 12, 2020May 15, 2020

Tropic Trooper, a threat actor group that targets government, military, healthcare, transportation, and high-tech industries in Taiwan, the Philippines, and Hong Kong, has been active since 2011. The group was reportedly using spear-phishing emails with weaponized attachments to exploit known vulnerabilities. Primarily Read More …

OceanLotus adopts public exploit code to abuse Microsoft Office software

Posted onMarch 21, 2019March 25, 2019

The OceanLotus hacking group is back with a new campaign in 2019 complete with new exploits, decoys, and self-extracting malicious archives. Also known as APT32, SeaLotus, APT-C-00, and Cobalt Kitty, OceanLotus is a hacking group which operates across Asia and Read More …