Introduction 5G had introduced vast improvements over its predecessors, namely 2G, 3G, and 4G. The issue of IMSI catchers plagued users and threatened the security and sanctity of mobile networks globally. I briefly discussed Stingray/IMSI catchers in my previous article, a look into 5G. However, recent developments revealed a new vector of attacks, discovered by… Continue reading SUCI Catcher – a 5G security issue
Background We’re in this pandemic for over a year. Malaysian government has recently issued a decree for a “total lockdown”, which requires everyone to work from home. Only selected sectors that has been predefined, or which has approval from the ministry is allowed to operate. MITI’s role In order to obtain the approval, one has… Continue reading Malaysia’s International Trade and Industries CIMS 3.0 – Case study
The sum of the whole is greater than the individual parts put together. This is the mantra when it comes to mobile security. As one does not lose sight of the forest against the trees, the network is as strong when it’s individually and collectively secured. In building the security standards, global organizations such as… Continue reading 5G Security Primer
Almost everyone on this planet, including their dog, cat, pet parrot and all other being is listed on Facebook (but this also means other social media, not at the scale how penetrative Facebook is). Started off as a college fling tracking site, Facebook quickly outgrew its pubescent phase and matured as a global social media… Continue reading Yet another Facebook leak… 533M records!
Editor note: As part of responsible disclosure, the matter has been sent out to MOHE IT/Network Security and MyCERT with the reference number of MyCERT-202103221082. I recently got contact of the CEO of UNIKL and the article was forwarded to him for further action. In most breach stories, we often hear one side of the… Continue reading Hacker vs. UniKL – TA perspective
What happened Singtel? Singtel, in a report, released a statement that they are currently investigating a data breach involving customer data. For those who aren’t familiar, Singtel is a Singapore based group of telecommunications companies around Asia, as well as a telco licensee in Singapore. Singapore was notified by Accellion that the data breach occurred… Continue reading Singtel breach (2021) – case study
Digitization and Hospital Management As part of digital move introduced by the former Prime Minister of Malaysia Tun Dr. Mahathir Mohamed, Selayang Hospital underwent a major transformation, introducing the THIS – Total Hospital Information System. This system was aimed to provide a comprehensive hospital solution that covers imaging and patient information. Based on research done… Continue reading Selayang Hospital IT system case study – Jan 2021
If it’s one thing life has taught me, “almost” everything has a price. For a good sum, you can get a person to sell his phone. For others, something else. It’s known fact that we live in the world of data. Everything we do today generates data. Every step you take, every move you make… Continue reading Privacy – White elephant in the room with COVID-19?
Mad kudos to Toronto based Citizen Labs for this excellent work! Citizen Labs just published (about 13 hours ago) an expose of an Indian company, dubbed as ‘Dark Basin’ which is responsible for hacking thousands of individuals over six continents. The victim list isn’t just random joes, but public figures, rich and the affluent, NGOs… Continue reading Hackers for Hire – The case of Dark Basin
Introduction The Malay Mail reported that Sungai Buloh hospital (SBH) was recently hit with IT failures. Sg Buloh hospital is quite well known to the denizens of Klang Valley, being a governmental hospital of choice to many. I personally find the service is very good, doctors are friendly, professional and I don’t spend much time… Continue reading Sg Buloh hospital – Jan 2020 case study