EPS - "nezapamćeni hakerski napad, kripto tipa" - Printable Version +- Bezbedan Balkan (https://bezbedanbalkan.net) +-- Forum: Bezbednost državnih resursa (https://bezbedanbalkan.net/forum-5.html) +--- Forum: Kompromitovani resursi (https://bezbedanbalkan.net/forum-6.html) +--- Thread: EPS - "nezapamćeni hakerski napad, kripto tipa" (/thread-1074.html) |
RE: EPS - "nezapamćeni hakerski napad, kripto tipa" - milos_rs - 12-21-2023 CERT je na zadatku ali ne može da deli nikakve informacije: Quote:The National Center for the Prevention of Security Risks, CERT, told BIRN that the incident related to EPS was reported to them on December 18. CERT works according to international Traffic Light Protocol, TLP, standards, which also defines how sensitive information should be shared, it explained.izvor https://balkaninsight.com/2023/12/21/hacking-attack-on-serbian-utility-leaves-payment-portal-out-of-action/ Quote:TLP:Amber+Strictizvor https://www.cisa.gov/news-events/news/traffic-light-protocol-tlp-definitions-and-usage RE: EPS - "nezapamćeni hakerski napad, kripto tipa" - 1van - 12-22-2023 Evo šta možemo možda da zaključimo iz ove email poruke "Delivery has failed to these recipients or groups.": Quote:A restricted entity is a user account or a connector that's blocked from sending email due to indications of compromise, which typically includes exceeding message receiving and sending limits. Detalji: https://learn.microsoft.com/en-us/microsoft-365/security/office-365-security/outbound-spam-restore-restricted-users?view=o365-worldwide#use-the-security--compliance-center-to-remove-a-user-from-the-restricted-users-list Quote:Sometimes after sending an email, you may encounter the delivery has failed to these recipients or groups error while using the Exchange Server. The most common reason for this error that your email address is flagged as spam or it is no longer allowed to send messages outside of your organization. Contact your email admin for assistance. Detalji: https://windowsreport.com/delivery-failed-recipients-groups/ Dakle moguće je da su sa EPS naloga krenuli sa šalju SPAM i da su automatski blokirani? Dalje vidimo da ima više HOP-ova i u internoj mreži pre nego što je mejl odbijen? RE: EPS - "nezapamćeni hakerski napad, kripto tipa" - milos_rs - 12-26-2023 neki komentari koje sam našao po internetu... napad preko lično donetog USBa? naravno ovo je sve neprovereno RE: EPS - "nezapamćeni hakerski napad, kripto tipa" - y0d4 - 12-27-2023 Imaju CB, Avast, Symantec cak se i javno hvale (2019a god. objava) :> Радници задужени за ИТ безбедност су ангажовани и у другим огранцима, где су значајно помогли инсталацију Avast и Carbon black заштите. https://www.eps.rs/cir/SiteAssets/Pages/energija/EPS%20ENERGIJA%2051_septembar%202019.pdf cak i za ostalo: https://www.eps.rs/cir/Documents/KD%20JN%201000-0558-2018.docx RE: EPS - "nezapamćeni hakerski napad, kripto tipa" - maxxa - 12-27-2023 Evo sa zvanicne stranice Qilin rans grupe Quote:The joint stock company "Electric Power Industry of Serbia" is the largest company in Serbia, the economic and energy support of the country. The main activities of EPS AD are production, supply and trade of electricity. EPS is fully committed to achieving its mission, which is to securely supply customers with electricity, under the most favorable market conditions, with constant raising of the quality of services, improving environmental care and increasing the well-being of the community in which it operates. EPS strives to be a socially responsible, market-oriented and profitable company, competitive on the European market and with a significant impact in the region, recognized as a reliable partner to domestic and international companies. Organization: The founder and sole shareholder of EPS JSC is the Republic of Serbia, and the rights of the founder are exercised by the Government of the Republic of Serbia. The share capital of the Company is 100% share capital and is divided into 36,510,509 ordinary shares with voting rights, each with a nominal value of RSD 10,000.00. All ordinary shares are issued and are owned by the founder. The bodies of the Joint Stock Company "Electric Power Industry of Serbia" are the Assembly, the Supervisory Board and the Executive Board. The Assembly appoints the members of the Supervisory Board, while the Supervisory Board appoints the Director General and Executive Directors who make up the Executive Board. The company "EPS Trading" d.o.o. Ljubljana was founded on July 1, 2014 as the first PD established by EPS abroad for the purpose of trading electricity. EPS is a vertically organized company, which has founding rights in two subsidiaries and three public companies in Kosovo and Metohija. Since June 1999, EPS has been unable to manage its capacities in Kosovo and Metohija. This company was successfully attacked by our forces. This company did not take care of its Internet security and the safety of its customers and partners. The company does not get in touch with us and does not want to resolve the issue quickly, without losses and reputational risks. In addition to the blocked servers, we stole a huge part of the company's private data. Private agreements, contracts with partners inside and outside the country, financial documents, loan agreements, reports, balance sheets, a huge number of private email correspondence. And much, much, much more. In the event that the company does not come to an agreement with us, the entire date will be available for public download after 10 days. RE: EPS - "nezapamćeni hakerski napad, kripto tipa" - VincaSec - 12-27-2023 Jel imaju podatke o potrošačima? RE: EPS - "nezapamćeni hakerski napad, kripto tipa" - y0d4 - 12-27-2023 "And much, much, much more." :> RE: EPS - "nezapamćeni hakerski napad, kripto tipa" - milos_rs - 12-27-2023 Bukvalno sam sinoć gledao qillin stranicu da vidim da li su nešto objavili. Sad više nema skrivanja, zamisli ni jednu jedinu komunikaciju nisu objavili iz EPSa samo "hakovali nas ništa nije u opasnosti" lol, dopustili su napadačima da vode narativ, koje dileje RE: EPS - "nezapamćeni hakerski napad, kripto tipa" - milos_rs - 12-27-2023 evo ceo skrinšot evo jedna od zanimljivijih slika barem sa aspekta naše analize ovde. Ovo je verovatno pretraga fajlova urađena na tom PC-u iz skrinšota za samo MSG fajlove (Outlook Message Item File), kojih ima kao što se vidi na donjem levom delu skrinšota 3696 komada. Nepoznato je da li je ovo računar nekoga iz EPSa ili računar napadača posle prebacivanja svih fajlova. ostale slike su razni ugovori, fakture, verovatno je sve to već javno jer je javno preduzeće? Možda za javne nabavke je sve javno ali ovi neki ugovori oko kredita sa raznim bankama možda i nije javno? Zaista ne znam RE: EPS - "nezapamćeni hakerski napad, kripto tipa" - milos_rs - 12-27-2023 komentar sa reddita |