-
Fake hacking incidents reported - Sep 1, 2011
Sri Lanka CERT |CC has noticed that some group of people who are pretending to be Sri Lankan Cyber Hackers are trying to get some publicity by publishing information collected from various DNS servers belonging to both national and international organizations. They have claimed that they have hacked those DNS servers by launching DNS poisoning attacks against those servers. But they haven't provide any acceptable evidence to prove that.
-
Is you computer infected with DNSChanger? - April 23, 2012
DNSChanger is malicious software (malware) that may have been installed on your computer without your knowledge. The malware forces unsuspecting users to fraudulent websites (phishing websites, other malware websites). Sri Lanka CERT|CC has not received any complaints regarding infected machines or any users being redirected to malicious websites (phishing sites, advertisements, etc.).
To detect the malware please click here and to remove please click here.
For additional information please click here.
About Us
The Sri Lanka Computer Emergency Response Team | Coordination Centre (Sri Lanka CERT|CC) is the Center for cyber security in Sri Lanka, mandated to protect nation's information infrastructure and to coordinate protective measures against, and responses to cyber security threats and vulnerabilities.
Member Organizations
External Links
Information
National Cyber Alert System
Is you computer infected with DNSChanger? - April 23, 2012
DNSChanger is malicious software (malware) that may have been installed on your computer without your knowledge. The malware forces unsuspecting users to fraudulent websites (phishing websites, other malware websites).
Sri Lanka CERT|CC has not received any complaints regarding infected machines or any users being redirected to malicious websites (phishing sites, advertisements, etc.). If your machine is infected, you will not be able to browse the internet after the 9th July 2012.
To detect the malware please click here
To remove the malware please click here.
For additional information please click here.
Microsoft Updates for Multiple Vulnerabilities - February 14, 2012
There are multiple vulnerabilities in Microsoft Windows, Internet Explorer, Microsoft .NET Framework, Silverlight, Office, and
Microsoft Server Software. Microsoft has released updates to
address these vulnerabilities.
Apple releases major security update for OS X - February 4, 2012
Apple has rolled out a big batch of security fixes for several of its popular software products and components, including the Mac OS X 10.7 Lion operating system.
Fake sites targeting local banks - Jan 16, 2012
There are several phishing (fake) sites operating on targeting on-line banking customers of major banks of Sri Lanka.
Online banking customers shoud be aware of the e-mails that they receive which may ask you to click on a given link and enter your user ID/account number and password to reactivate your account.
If you receive such a mail
i.Do not click on the given links in the mail
ii.Do not enter your user ID and password
iii. Immediately notify the bank and Sri Lanka CERT|CC
Sri Lanka CERT|CC has already disabled several fake on-line banking web sites with the help of our international counterparts.
Microsoft Updates for Multiple Vulnerabilities - Jan 10, 2012
There are multiple vulnerabilities in Microsoft Windows and Microsoft Developer Tools and Software. Microsoft has leased updates to address these vulnerabilities.
Wi-Fi Protected Setup (WPS) Vulnerable to Brute-Force Attack
Wi-Fi Protected Setup (WPS) provides simplified mechanisms to configure secure wireless networks. The external registrar PIN exchange mechanism is susceptible to brute force attacks that could allow an attacker to gain access to an encrypted Wi-Fi network.
Security Tools
A tool to detect all viruses taking advantage of .lnk vulnerability - July 22, 2010
The tool can be used to help users check if their computers are infected with viruses exploiting the .lnk vulnerability.
Zabbix - Open Source Monitoring Solution - July 6, 2010
ZABBIX is an enterprise-class open source distributed monitoring solution designed to monitor and track performance and availability of network servers, devices and other IT resources. It supports distributed and WEB monitoring, auto-discovery, and more.
