Numen Cyber Technology

26/05/2022

WordPress is one of the most popular CMS used on the internet today. According to BuiltWith, currently, more than 30 million live sites are running on WordPress. Singapore alone has an estimated 34,000+ live WordPress sites at the time of writing.
While, recently thousands of WordPress sites were hacked to inject malicious JavaScript.
How do WordPress sites get hacked?
How to protect WordPress sites
There are some sharing from Numen Cyber Labs. Welcome to read.
https://medium.com/.../thousands-of-wordpress-sites-were...

06/04/2022

NUMEN is honoured to sponsor the panel discussion event with Huawei Cloud & MerkleScience, organized by Singapore Blockchain Association and Bitdata Exchangeon 29 March 2022.

Lovelle Cengiya, Senior Business Director of Numen Cyber, addressed a new wave of data privacy and cybersecurity threats alongside emerging technologies, including blockchain endpoint vulnerabilities, routing attacks, phishing attacks, and ‘ice phishing’ attacks, citing the OCBC phishing attack as an example. Cengiya raised the importance of a security strategy as early as in the product planning stage, and emphasized on the importance of an ongoing security strategy, more so for profitable and reputable companies who are often the target of hackers.
https://finance.yahoo.com/news/bitdata-exchange-co-organizes-panel-144000168.html?fr=sycsrp_catchall

BitDATA Exchange and Blockchain Association Singapore address the ‘Challenges Faced in the Digital Assets Space in 2022 and Beyond’.Singapore, Singapore , April 04, 2022 (GLOBE NEWSWIRE) -- On 29 March 2022, BitDATA Exchange, a Monetary Authority Singapore (MAS) license exempt Singapore fiat-to-...

18/03/2022

We join forces with Blockchain Association Singapore (BAS), BitDATA Exchange and Huawei Cloud to host the Blockchain Event. There will be blockchain industry leaders from around the world. Numen as the unique professional Cybersecurity solution provider, will share blockchain security solutions and success cases.
Welcome to follow the event with us. We will keep you posted!

https://bit.ly/3pSX7E9

Panel-Discussion: Challenges faced in the Digital Assets World post-pandemic & with the onset of geopolitical unrest

03/03/2022

King of ransomware： Conti’s source code Leaked

Recently, with the war between Russia and Ukraine, the situation of information warfare is also constantly updated and upgraded. The Conti ransomware group, known as the king of ransomware , has recently been devastated by pro-Ukrainian hacking groups.

The story began from Conti publicly sided with Russia on their website , which infuriated the Ukrainian cooperation team and a pro-Ukrainian researcher who had been spying on their actions. So they hacked Conti ransomware group and leaked Conti's internal conversations, the source code of ransomware, admin panels, and etc.
Besides this, what is jaw-dropping is that a password-protected archive folder was leaked , which contains the source code for the Conti Ransomware Encryptor, Decryptor, and Builder. Although the leakers didn't share the password publicly, another researcher quickly cracked it and gave access to everyone.

Link：https://share.vx-underground.org/Conti/

The Conti leaked gave global security researchers a rare opportunity to study the source code from the king of global ransomware. While this favors security research, the disclosure of the code may be disastrous.

As we all know, codes from Conti is very Strict and clean. We should take care it to be used by other extortion groups and launch their own criminal actions!

Therefore, we call on everyone to timely carry out network security protection and vulnerability repair of the company's systems to effectively respond to the attacks of the ransomware team.

Any assistance or queries， please feel free to contact us via [email protected] / +65 6355 5555.

03/03/2022

30/01/2022

Wishing you a happy and prosperous Chinese New Year and best wishes in the Year of the Tiger！
新年快乐 虎年大吉！

#2022

24/01/2022

atlassian_pbkdf2_dehash - A script can successfully gain the Atlassian Confluence server access by exploiting the CVE-2021-26084 RCE vulnerability
https://github.com/NumenCyberLabs/atlassian_pbkdf2_dehash…
-2021-26084 RCE
https://twitter.com/numencyber/status/1485543005884850177
Cyber Technology

“atlassian_pbkdf2_dehash - A script can successfully gain the Atlassian Confluence server access by exploiting the CVE-2021-26084 RCE vulnerability https://t.co/xiTzRpnfre -2021-26084 RCE Numen Cyber Technology”

20/01/2022

Welcome to Numen Cyber Technology!