top of page

Chill out with us for the 9th of November, Alilia Rooftop

ICION logo new.jpg

Cyberattacks are increasing rapidly across emerging economies, in terms of volume and complexity, where incident response units

Are pushing  their limit, in terms of time, skill, and resources, to obtain actionable measures at the right time to avoid such incidents.

 

At the  same time,  organizations are encountering an unparalleled number of security threats and risks with increasing employees,

customers, and partners, thereby  embracing new trends and innovations through digital transformation. 

flyer bluevoyant.png

Rsvp via audi or olivia via WA +62 818102085

Search
  • ICION 2022, Wiser Patient Versatile
    • Jan 8, 2022
    • 1 min read

Handing Log4j Attacks, first major casualty in SEA crypto platform


One of the largest Vietnamese crypto trading platforms, ONUS, recently suffered a cyber attack on its payment system running a vulnerable Log4j version.

Soon enough, threat actors approached ONUS to extort a $5 million sum and threatened to publish customer data should ONUS refuse to comply.

After the company's refusal to pay the ransom, threat actors put up data of nearly 2 million ONUS customers for sale on forums.

Below is a list of tools that may help you to check your issues with log4j


- Securityscorecard.com

Can detect both at network and at application level. Just ping us if in Indonesia for a free domain report. Contact to us via icion.2019@gmail.com

- Sonatype.com

link is here, it scans your applications

Find and Fix Log4j (sonatype.com)

- nonamesecurity.com

link is here there are two articles about log4j and yes the platform is ready and able to detect the issues

Active Testing: Runtime Detection for Log4j Vulnerability in APIs (nonamesecurity.com)

The platform allow total visibility of all APIs in one dashboard, large enterprises that are interested in a POV can contact to Audi/Gita on the icion.id team

7 views0 comments
bottom of page