CMC tham dự khai mạc ITU Virtual Digital Word 2020
21 Oct

On 20/10/2020, the Conference and Online Exhibition of the Digital World (ITU Digital World) 2020 officially opened. After 50 years held in many different countries, for the first time, at the initiative of Vietnam this year, the World Telecommunication Exhibition to Vietnam was renamed the Digital World Exhibition - The completely virtual exhibition based on on Make In Vietnam platforms. Coming to the digital exhibition space at the event, CMC introduced to the guests strong products / services, including: Information Security Product Group of CMC Cyber Security; product group "Cloud computing" of CMC Telecom and product group of Research Institute and Technology Application CMC -CIST. CMC is honored to be the gold sponsor accompanying the event and is also one of the three enterprises participating in the Conference of Ministers of ITU member countries, seminars associated with the development of the digital world, and exhibitions. Online with national pavilions and booths

CMC Cyber Security ra mắt phần mềm Hệ thống điều phối phản ứng bảo đảm An toàn thông tin tự động CMC (CSOAR)
12 Oct

Recently, CMC Cyber Security Company has just launched "CMC Security Orchestration Automation & Response (CSOAR) Automatic Response Coordination System". It is a solution that gathers information about security threats from a variety of sources and performs low-level troubleshooting without humans. This solution increases the efficiency of your organization's security operations by: Supports integration with Threat Intelligence resources and information products. Support virtualization of virtual appliance to deploy on premise. Automatically generate system information security event alerts and provide handling plans for events. Building a handling process in line with the customer's system, helping customers to manage the system's problems effectively, easily to scale. Speed up Triage and reduce the time and resources required to perform threat investigations General Governance

CMC Cyber Security tham gia chiến dịch bóc gỡ mã độc trên toàn quốc
17 Sep

Towards the long-term goal of ensuring the safety of users on Vietnam's cyberspace, promoting the digital transformation of countries, the Ministry of Information and Communications has launched a campaign "Review and remove malware nationwide in 2020" . CMC Cyber Security Company will work with other businesses such as VNPT, Viettel, FPT, BKAV, Kaspersky ... to coordinate with the National Cyber Security Monitoring Center (NCSC) under the Department of Information Security, Ministry Information and communication campaign. The campaign aims to reduce the 50% infection rate and reduce the 50% IP addresses in 10 popular botnets. No longer included in the vendor's report on the prevalence of a malicious code infection in a given period of time, the expected time being 2 months. At the same time, the campaign also contributes to improve the country's reliability in e-transactions, promotes socio-economic development, contributes to ensuring national defense and security. The campaign will be divided into

CMC Cyber Security giúp Finhay bảo vệ  thông tin và tài sản người dùng an toàn tuyệt đối
26 Aug

Recently, CMC Cyber Security has just implemented security assessment, product quality accreditation, and ensure the safety of Finhay's technology products against threats of cyber attacks. Industrial Revolution 4.0 has been happening at a fast speed, creating obvious changes in the fields of banking, investment - accumulation. This change has led to a change in the governance model, management structure, and products and services in banks, while strengthening risk management, ensuring network security and information protection. information of customers. Before that fact, CMC Cyber Security has consulted and supported security testing for products on Finhay's website and applications on mobile device platforms. Specifically, CMC CS experts have evaluated the level of information security by testing penetration of technology products in order to find vulnerabilities and advise solutions to their partners. Out

CMC Cyber Security có thêm kỹ sư đạt chứng chỉ bảo mật thế giới OSCP
27 Jul

Recently, CMC Cyber Security Company has just got more engineers certified by Offensive Security Certified Professional - OSCP. This is one of the most prestigious information security assessment certificates in the world. OSCP is a certification program that focuses on security testing and attack skills. It consists of 2 parts: a 24-hour pentest test. Test results must then be written into a report in English, assessed within 7 days before the results are officially released. The OSCP certification is in the top 5 of desirable penetration and testing certificates for security professionals and is one of the more demanding practice exams. At the exam, engineers must demonstrate the ability to study the network system, detect security gaps or weaknesses in the application system, thereby helping experts assess the level of risk as well as build building response and troubleshooting methods. It can be said, critical assessment

CMC Cyber Security có thêm kỹ sư đạt chứng chỉ bảo mật uy tín thế giới OSCP
23 Jul

Recently, CMC Cyber Security Company has just got more engineers certified by Offensive Security Certified Professional - OSCP. This is one of the most prestigious information security assessment certificates in the world. OSCP is a certification program that focuses on security testing and attack skills. It consists of 2 parts: a 24-hour pentest test. Test results must then be written into a report in English, assessed within 7 days before the results are officially released. The OSCP certification is in the top 5 of desirable penetration and testing certificates for security professionals and is one of the more demanding practice exams. At the exam, engineers must demonstrate the ability to study the network system, detect security gaps or weaknesses in the application system, thereby helping experts assess the level of risk as well as build building response and troubleshooting methods. It can be said, critical assessment

Lễ ra mắt “Nền tảng cung cấp dịch vụ Trung tâm Điều hàng an toàn, an ninh mạng (SOC) đáp ứng yêu cầu kết nối chia sẻ thông tin”
03 Jul

On the morning of July 3, 2020, representatives of CMC Cyber Security Company attended the Launching Ceremony of "Platform providing service center for safety, network security (SOC) to meet the requirements of connecting and sharing information. The event was attended by Deputy Minister of Information and Communications Nguyen Thanh Hung and representatives of units under the Ministry, the unit in charge of Information Technology (IT), Information Security (Security) of ministries, ministerial-level agencies and 63 Departments of Information and Communications across the country. At the event, CMC Cyber Security Company was recognized as a unit with SOC service meeting technical and human standards standards to ensure the safety of the information system of ministries, departments, and local units. At the same time, meeting the requirements of connecting and sharing information about the National Cyber Security Monitoring Center in the spirit of Directive 14 / CT-TTg and Official Letter No. 1552-BTTTT-CATTT. Speaking at the ceremony, Deputy Minister of Information and Communications Nguyen Thanh Hung

Taking advantage of the plague of the Covid-19 epidemic, hackers have attacked the need to capture information from people around the world to spread malware. The attacker tricked the user into downloading and running a malware whose interface was downloaded from a legitimate source but ran in the background. The malware was identified as AZORult, a malware discovered in 2016, that collects web browser data such as cookies, browsing history, user id, passwords and even encryption keys. In-depth analysis of the sample Corona-virus-Map.com.exe Hash: 73da2c02c6f8bfd4662dc84820dcd983 File Type: Portable Executable 32 File Info: Microsoft Visual C ++ 8, Autoit An attacker will trick users into downloading a file named "Corona-virus -Map.com.exe ". This file is written in Autoit so we can easily decompile and get the source code of the malicious code. The script shows that it will create a folder at "%APPDATA% / Z11062600" and install the two files "Corona.exe", "Corona-virus-Map.com.exe" and then launch the two files. Sample Corona-virus-Map.com.exe Hash: 07b819b4d602635365e361b96749ac3e

MustangPanda – COVID 19 Malware
07 Mar

I / Introduction Recently, due to the complicated situation of COVID 19 epidemic, many hacker groups took advantage of this to conduct APT campaigns aimed at organizations around the world, as well as appear campaigns in Vietnam. Male. Recently taking advantage of the stressful situation of the COVID-19 influenza, the malicious code similar to those developed by the Panda hacker group was found to impersonate three government notices about the outbreak. to deceive users. The malware was injected in a word file with the title: "Chi Thi thuong nguyen xuuc phuc" to deceive users, this code is currently collected by us through the CMC Threat Intelligence system. Through this malicious pattern Threat Intelligence system is involved with some of the recent samples that we have warnings about. https://cmccybersecurity.com/cmc-canh-bao-chien-dich-apt-moi-loi-dung-unikey-tan-cong-nguoi-dung-viet-nam/ https://cmccybersecurity.com/bao- malware-dang-malware-dang-lnk-crab-apt-panda / II / Detail FILE LNK The sample file is a shortcut file with the extension ".lnk" hidden as a winword file to deceive users due to the ".lnk" extension

Tình hình tấn công của nhóm Oceanlotus định danh xuất phát từ Việt Nam tại Trung Quốc
18 Dec

In the first half of 2019, according to Tencent's cybersecurity intelligence center, the OceanLotus group made a public announcement. The targets of this organization are diverse, including government agencies, maritime authorities, diplomatic agencies, large state-owned enterprises, scientific research organizations and a number of private enterprises. China's big. Through tracking, Tencent discovered that a large number of domestic targets were attacked by this group and that the entire intranet of the target was occupied, able to identify a large amount of confidential information and information. Stolen server configuration. The attackers appear to be very familiar with China as well as understanding China's hot questions and government structure. For example, when a tax reform was just launched, a tax reform plan was immediately used as the subject of an attack.