The Department of Information and Communications Technology (DICT), through Secretary Rodolfo A. Salalima and Assistant Secretary Allan S. Cabanlong confirms that a global ransomware attack is currently in progress. The sophisticated ransomware, known as ‘Wanna Cry’ or ‘Wanna Decryptor’, exploits a vulnerability in Microsoft’s Windows operating system.
This malware is designed to spread laterally on a network by gaining unauthorized access to the IPC$ share on network resources on the network on which it is operating. It is also believed that this ransomware is spread through phishing emails, malicious adverts on websites, and questionable apps and programs. Users are advised to be extremely cautious in their online activities.
Recommended Steps for Prevention
- The first and most important piece of guidance is to immediately deploy the security update associated with Microsoft Security Bulletin MS17-010<https://technet.microsoft.com/en-us/library/security/ms17-010.aspx>, if you have not done so already. Those that have automatic updates enabled or have deployed this update are already protected from the vulnerability these attacks are trying to exploit.
- Enable strong spam filters to prevent phishing e-mails from reaching the end users and authenticate in-bound e-mail using technologies like Sender Policy Framework (SPF), Domain Message Authentication Reporting and Conformance (DMARC), and DomainKeys Identified Mail (DKIM) to prevent e-mail spoofing.
- Scan all incoming and outgoing e-mails to detect threats and filter executable files from reaching the end users.
- Ensure anti-virus and anti-malware solutions are set to automatically conduct regular scans.
- Manage the use of privileged accounts. Implement the principle of least privilege. No users should be assigned administrative access unless absolutely needed. Those with a need for administrator accounts should only use them when necessary.
- Configure access controls including file, directory, and network share permissions with least privilege in mind. If a user only needs to read specific files, they should not have write access to those files, directories, or shares.
- Disable macro scripts from Microsoft Office files transmitted via e-mail. Consider using Office Viewer software to open Microsoft Office files transmitted via e-mail instead of full Office suite applications.
- Develop, institute and practice employee education programs for identifying scams, malicious links, and attempted social engineering.
- Have regular penetration tests run against the network. No less than once a year. Ideally, as often as possible/practical.
- Test your backups to ensure they work correctly upon use.
Recommended Steps for Remediation
- Contact the Philippines National Computer Emergency Response Team (NCERT) of the DICT and CICC for law enforcement escalation. We strongly encourage you to contact the NCERT / CICC upon discovery to report an intrusion and request assistance. Maintain and provide relevant logs.
- Implement your security incident response and business continuity plan. Ideally, organizations should ensure they have appropriate backups so their response is simply to restore the data from a known clean backup.
Defending Against Ransomware Generally
Precautionary measures to mitigate ransomware threats include:
- Ensure anti-virus software is up-to-date.
- Implement a data back-up and recovery plan to maintain copies of sensitive or proprietary data in a separate and secure location. Backup copies of sensitive data should not be readily accessible from local networks.
- Scrutinize links contained in e-mails, and do not open attachments included in unsolicited e-mails.
- Only download software – especially free software – from sites you know and trust.
- Enable automated patches for your operating system and Web browser. Furthermore, The DICT, through its Office for CyberSecurity and Enabling Technologies is currently looking at new innovative ways to do Isolation. Gone are the days of Traditional Isolation like segregation of networks – airgap. This technique is believed to help protect our system from cyber threats including ransomware.
For further information and support, please contact DICT at 920-0101 LOC 1200; email at firstname.lastname@example.org or visit https://www.facebook.com/CICC.PH. Future updates will be provided as more information becomes available.
- Malwarebytes LABS: “WanaCrypt0r ransomware hits it big just before the weekend
- Malwarebytes LABS: “The worm that spreads WanaCrypt0r”
- Microsoft: “Microsoft Security Bulletin MS17-010”
- Forbes: “An NSA Cyber Weapon Might Be Behind A Massive Global Ransomware Outbreak”
- Reuters: “Factbox: Don’t click – What is the ‘ransomware’ WannaCry worm?”
- GitHubGist: “WannaCry|WannaDecrypt0r NSA-Cybereweapon-Powered Ransomware Worm”
Globe Telecom Looks at Global Best Practices in Fight vs. Illegal Sites, Child Pornography
Globe Telecom looks at global best practices in Singapore and other countries in its fight against illegal sites and child pornography in order to protect the rights of young Filipino boys and girls who are most susceptible to exploitation and abuse.
The island-state currently regulates the presence of objectionable content and conduct online through its Internet Service Providers (ISPs) as enabled by the Computer Misuse and Cybersecurity Act and carried out by Singapore’s Media Development Authority. A list of 100 websites are banned including a site that allegedly recruited underage boys for sex and nude photography.
In the Philippines, the Anti-child Pornography Act of 2009, Intellectual Property Code, and the Anti-Camcording Law were previously placed to combat child pornography and other illegal sites. In 2014, the Cyber Crime Law took effect that made any crime under the Revised Penal Code, which is a list of general punishable acts, be considered a cybercrime if done using a computer or the internet. Thus, prior laws pertaining to intellectual rights and piracy are given more support for enforcement.
With enabling laws, regulatory agencies such as the National Telecommunications Commission (NTC), Intellectual Property Office (IPO), and the Optical Media Board (OMB) among others can learn from the practice of other countries if the Philippines is really serious at combating piracy and child pornography.
Yoly Crisanto, Globe SVP for Corporate Communications, said: “This advocacy is important especially as we contribute greatly to the development of a digital nation. We want to provide our customers with safe and quality content and ensure that our products and services are not used for illegal activities. At the same time, we want to protect intellectual property rights including our own original content and the licensed content of our global and local partners so that we can give the people who create content what’s rightfully due them.”
In 2017, Globe invested 2.7 million dollars to improve its Domain Name System (DNS) with several blocking capabilities that enabled the company to block close to 2,500 domains or sites found to have lewd and child pornography-related content and will continue to actively look out for such illegal sites.
Although the Philippines has Republic Act 9775 or the Anti-Child Pornography Act of 2009 to protect every child from all forms of exploitation and abuse, sadly the country continue to top the list of global sources of child pornography based on the United Nations Children’s Fund’s (UNICEF) The State of The World’s Children 2017 report entitled “Children in a Digital World. The situation, however, is expected to improve with the signing into law of the child online protection provision in RA 10929 or the Free Internet in Public Places Act.
The Unicef report noted that the pervasiveness of the Internet, mobile apps and online payment methods further aided in the proliferation of child pornography and sex trafficking.
It was collaborated by another report from the International Justice Mission, a human rights group handling cases of online exploitation of children in the Philippines which noted that 8 out of 10 victims that they have rescued are 12 years old and below, some even as young babies.
Under Philippine law, “child pornography” refers to ”any representation, whether visual, audio, or written combination thereof, by electronic, mechanical, digital, optical, magnetic or any other means, of child engaged or involved in real or simulated explicit sexual activities”.
The fight against child pornography and illegal sites is part of Globe Telecom’s #PlayItRight advocacy campaign to ensure that its products and services are not used in illegal activities and to protect the copyrighted content of its global partners.
Duterte Wants Gov’t Workers Strictly Banned from Entering Casinos
In line with his call to all government workers to avoid lavish lifestyles, President Rodrigo Duterte has ordered the strict implementation of a law prohibiting public servants from entering gambling casinos.
During the launch of the Overseas Filipino Bank (OFBank) last Thursday, President Duterte said he made his directive to Philippine National Police (PNP) chief Director General Ronald ‘Bato’ Dela Rosa.
“I just issued an order to Bato last night. Sabi ko, Bato, halika, maglagay ka sa casino prohibiting all workers of government from entering,” Duterte said.
“May PD niyan eh. There’s a law. At that time, it was a law. It’s still the law. It was never modified or repealed. Sabi pa ni Bato, ‘Lagay mo diyan ‘all government employees’,” he added.
When asked by Dela Rosa if he would include government officials, President Duterte said: “Lahat kami workers.”
“That’s why I’d like to remind everybody: We are all workers of government and we serve the people,” the President said.
Former President Ferdinand Marcos had issued Presidential Decree (PD) No. 1067-B granting the Philippine Amusement and Gaming Corporation a franchise to establish, operate, and maintain gambling casinos.
Both PD 1067-B and its amended version PD 1869 prohibit government officials, members of the Armed Forces of the Philippines, and persons under 21 years of age or students from entering and playing in casinos.
In September 2016, Executive Secretary Salvador Medialdea issued Memorandum Circular No. 6 ordering all public officials and employees, including military and police, to strictly observe all laws banning them from entering, staying, or playing in the casinos.
Recently, Medialdea issued a separate memorandum providing guidelines to all government officials and personnel in the executive department applying for foreign travels.
The memorandum was made in line with Pres. Duterte’s campaign to cut down extravagant and lavish foreign trips.
Duterte, a popular graft buster during his 23 years of service as mayor of Davao City, is also known for his very simple and frugal lifestyle.
“That’s all my message. Very simple. Not so good to hear but at least, at least, at the very least, it comes from the heart,” the President said in closing his OFBank launching speech.
Pres. Duterte Considers ‘Total Ban’ on OFW Deployment to Kuwait
President Rodrigo Duterte has described the death of four Filipino women in Kuwait unacceptable, mulling a total ban on the deployment of overseas Filipino workers (OFWs) in the oil-rich country.
“We have lost about four Filipino women in the last few months. It’s always in Kuwait,” Duterte said in his speech at the launching of the Overseas Filipino Bank (OFBank) on Thursday in Liwasang Bonifacio, Manila.
Duterte said he discussed the issue with Foreign Affairs Secretary Alan Peter Cayetano, advising the latter to talk to government officials of Kuwait.
“So usap kami ni Alan, it’s either — my advice is, we talk to them, state the truth and just tell them that it’s not acceptable anymore. Either we impose a total ban or you can have the correction,” he said.
“I do not want a quarrel with Kuwait. I respect their leaders, but they have to do something about this,” he added.
Asked for comment, Labor Secretary Silvestre Bello III said they will investigate first the real cause of death of the four women.
Bello said if reports are true that the cause of death was maltreatment, then the government will not hesitate to impose a deployment ban in Kuwait.
“He (President Duterte) is considering it because of recent incidents. If the death is a result of maltreatment of their employers, that’s another thing. I will not hesitate to impose a total ban,” Bello said in a chance media interview after the OFBank launching.
Kuwait is one of the top destinations of Filipino household workers.
Sereno’s Land Cruiser Purchase Violates Procurement Law: Solons
Lawmakers in the House of Representatives on Wednesday said the purchase of a Php5.1-million luxurious Toyota Land Cruiser 2017 for Supreme Court (SC) Chief Justice Maria Lourdes Sereno using public funds could be a violation of the government procurement law.
This comes after SC Procurement Head Carina Cunanan admitted during the impeachment hearing against Sereno that the purchase of the luxurious vehicle was already pre-determined by the top magistrate’s office.
“It was already predetermined, your honor (referring to House Majority Leader Rodolfo Fariñas),” Cunanan said.
Fariñas said citing the brand in a bidding process was prohibited under the law.
“When you procure, do not name a brand so that it will be fair to everyone… You should specify the details but not the brand,” Fariñas said.
Lawyer Thelma Bahia, head of the SC Bids and Awards Committee, said that in posting the procurement of the vehicle, they did not specify the brand but simply stated the specification even though there was already an endorsement to get a Land Cruiser.
“Although there was an endorsement (from Sereno’s office)… But, when we posted the procurement we did not specify the brand” Bahia said.
Fariñas, however, was not convinced, saying “that’s how you skirt the law.“
ABS Partylist Rep. Eugene Michael de Vera said branding violates the procurement law, and thus could be linked to graft and corruption.
Complainant lawyer Larry Gadon accused Sereno of corruption for using public funds in the purchase of a luxurious vehicle for official use amounting to more than Php5 million pesos.
Sereno’s spokesperson Jojo Lacanilao, in a separate statement, said the procurement was “above board and not a capricious decision of the Chief Justice.“
Lacanilao said the SC en banc itself approved the acquisition of the Land Cruiser.
He also said the Chief Justice did not ask to be exempted from the prohibition against the acquisition and use of security vehicles by government officials, as she was already exempted by virtue of her position.
Lacanilao cited a budget circular allowing the Chief Justice the purchase of a service vehicle “for security reasons”. The President, Vice President, Senate President, and House Speaker are also covered by such exemption.
“The Land Cruiser was purchased to ensure the safety and security of the Chief Justice. Because of threats to her personal security, she had no choice but to acquire a vehicle that could be bulletproofed. It cannot be denied that judges, lawyers, and prosecutors have been assassinated,” he said.
“For years, the Chief Justice did not ask for a new service vehicle. This was the first time the Chief Justice had ever requested for a vehicle since she was appointed to the Supreme Court in 2010. She had always used vehicles “inherited” from other Justices or court employees,” he added.
Sereno’s camp further said that based on SC records, new vehicles had already been purchased for eight other justices at the time of the procurement of the Land Cruiser.
Meanwhile. two new vehicles for two more justices are currently being procured. (with reports from Christopher Lloyd T. Caliwan/PNA)
Start the Year Strong with This High-Performance Vegetable
Black Desert Online Officially Comes to Southeast Asia
Hong Kong Airlines to Recruit New Cadet Pilots
IKEA to Announce Opening Date This Year
Personal Remittances for the First 11 Months of 2017 Reach US$28.2 Billion
5 More Deaths Linked to Dengvaxia for Referral to UP-PGH
My Contribution to Make Philippines a Better Place
How Large Can a Heart Get?
The Faith Formula (A Short Story)
Tips For the Single Ladies
‘Family Means Nobody Gets Left Behind’
Winners in 2017 Sinulog Short Film Festival Bared
Chef Donita Rose Shares Her Jolly Heart Mate Recipes at the Sinulog Festival 2017
SINULOG Festival 2017 Schedule of Activities
Celebrate Sinulog With A Month-Long Feast At Parkmall
TOTAL Philippines, Cebu Car Afficionados Support Bumper To Bumper Sinulog
ETC Paintensity Returns To Sinulog 2016!
Inspirational5 days ago
How Large Can a Heart Get?
Opinions2 days ago
Childhood Obesity: Chubby Is Not Equal To Healthy
Featured1 week ago
agoda Rounding Up the Hottest Hotel Openings from 2017 for Your 2018 Bucket List
Events1 week ago
Sinulog 2018: Barrio Fiesta ‘Kalingawan Sa Plaza’ Set
Business News6 days ago
Bench + 39 Retail Brands to Accept GCash Scan to Pay in January
Local News1 week ago
LinGaP sa Masa Reaches More Poor Patients in Central Visayas
Local News4 days ago
DSWD 7 Upgrades Facilities, Offices to Provide Convenient, Safe Place for Clients and Workers
Entertainment3 days ago
20th Century Fox’s Award-Winning Movies in Cinemas This February