|Face of Defense: Female Fighter Pilot Continues Family Legacy
8/18/2016 10:37 AM CDT
CNN PH – Metro Manila (CNN Philippines) — The maritime dispute in the South China Sea has been decided by the arbitration court in favor of the Philippines — but now it seems the sea spat has been taken to cyber space.
Defense News Daily ( http://www.dndnews.com )
Finland-based web security company F-Secure claimed on Thursday it has found a malware targeting the confidential information of government and private organizations, including the Philippines’ Department of Justice.
The organizers of the Asia-Pacific Economic Cooperation (APEC) Summit held in Manila last November and an unnamed prominent international law firm, which represented Philippines during the arbitration case, were not spared from the cyber security attack.
The malicious program dubbed “NanHaiShu” (南海鼠) translates to “South China Sea rat” in English. F-Secure suspects it to be of Chinese origin.
The Remote Access Trojan (RAT) is disguised as an innocent file, usually sent through an email. But once opened, it releases a virus into the victim’s computer, gathering and sending back information to the attacker.
F-Secure said the attacks all pointed to be politically-motivated, considering the timing of the attacks.
“They occurred either within a month following notable news reports related to the dispute, or within a month leading up to publicly-known political events featuring the said issue,” F-Secure said in a published 16-page whitepaper.
F-Secure said it stumbled upon the NanHaiShu malware when it explored the web security environment ahead of the Manila APEC Summit. They traced the malware’s history and found variants that coincided with developments in the dispute and milestones in Manila’s arbitration case against Beijing. The recorded attacks spanned late 2014 to March 2016.
F-Secure Threat Intelligence Team Senior Manager Mina Aquino said on Friday that based on organizations targeted, the attacker was most likely the Chinese government.
Related: Ex-SolGen: PH’s case vs. China may have done more harm than good
Was confidential Philippine data compromised?
Aquino said several targets of the “cyber espionage” attack were successfully breached.
“The attackers were able to gain access to confidential information — that includes documents or could-be political secrets,” she said.
NBI on it
National Bureau of Investigation Cybercrime Division Chief Ronald Aguto Jr. said they are looking into the published report. Aguto only found out about the reported threat after CNN Philippines asked him for comment.
CNN Philippines has also asked the Chinese Embassy for comment. It has yet to respond.
Aquino said her team, composed of three Filipinos and three Finns, felt strongly about the case and they are out to find out who was truly behind the cyber attacks.
JC Gotinga – CNN PH
What is R.A.T
Remote Access Trojans (RATs) provide cybercriminals with unlimited access to infected endpoints. Using the victim’s access privileges, they can access and steal sensitive business and personal data including intellectual property, personally identifiable information (PII and patient health information (PHI). While automated cyber-attacks (e.g. Man-in-the-Browser) allow cybercriminals to attack browser-based access to sensitive applications, RATs are used to steal information through manual operation of the endpoint on behalf of the victim. Most Advanced Persistent Threat (APT) attacks take advantage of RAT technology for reconnaissance, bypassing strong authentication, spreading the infection, and accessing sensitive applications to exfiltrate data. RATs are commercially available (e.g. Poison Ivy, Dark Comet) and can be maliciously installed on endpoints using drive-by-download and spear-phishing tactics.
Organization should specifically address RATs in their enterprise defense strategy at the endpoint layer. The risk is especially high when RAT infection occurs, as the detection of RATs in run-time is extremely difficult to do.
Defense News Daily and Calriger Cyber Center
The National Defense College of the Philippines is an educational, training, and research agency of the Philippine government located inside Camp Emilio Aguinaldo in Quezon City, Metro Manila.
The Master in National Security Administration (MNSA) Program is the main academic program of the NDCP. It is a one-year, full-time master’s degree course consisting of 39 units earned through various forms of classroom work, case studies, regional security and development studies and academic enhancement travels.
The MNSA curriculum focuses on the various dimensions of national security management:
- socio-cultural dimension
- political-legal dimension
- economic dimension
- techno-scientific dimension
- environmental dimension
- military dimension
The MNSA is open to military officers, government officials and private sector leaders. Students write a national security-oriented thesis. Civilian graduates are commissionedLieutenant Colonels or Commanders in the AFP Reserve Force.
Camp Aguinaldo, Quezon City – The Armed Forces of the Philippines (AFP) hosts the Miss Philippines Earth 2016 Sports Fest, today, June 3 at the AFP Gymnasium here.
Uniformed men from the AFP General Headquarters will don their athletic uniforms and join all 47 candidates in today’s military-inspired games.
Ten scholars of the AFP Educational Benefit System (AFPEBS) and ten youth movers from the Teach Peace Build Peace Movement will also participate in the sports fest.
The Civil Relations Service, AFP (CRSAFP) is spearheading the activity which aims to promote both Miss Earth Foundation and AFP’s environmental awareness, protection, and preservation campaigns.
Brig Gen Rhoderick Parayno AFP, Commander of the CRSAFP said that “the goal of this activity is to encourage the youth and audiences of beauty pageants to influence and involve more stakeholders in the AFP’s environmental and peace-building projects. The combination of beauty and service, especially for the environment, is a perfect match to drumbeat support to this worthy endeavor”.
After the sports fest, the candidates will pot seedlings for the Race to One Million Seedlings Project of CRSAFP launched last March 11, 2016. This is the AFP’s response to combat the effects of global warming wherein Miss Earth Foundation and Carousel Productions are partner stakeholders.
The ladies will also get a chance to bond with their military and civilian teammates over a traditional boodle fight.
Lt. Col. Marlowe Patria, the Group Commander of 7CRG, CRSAFP based in Camp Aguinaldo said that the activity will be a good venue for the candidates to get to know the AFP and its soldiers better.
“It will allow establishment of good rapport, and inform the participants about the heroism of our soldiers,” he said.
Miss Earth is an international beauty pageant and is one of the three largest beauty pageants in the world. The prime purpose of their advocacy focuses on environmental awareness, protection, and preservation – an advocacy which the AFP also shares.
The candidates’ performance in the sports fest will form part of their overall ranking in the pageant. The competition will conclude at the coronation night on June 12, 2016.
Photo by SSg Noynay
CCTV PHILIPPINES- http://dwdd.com.ph/2015/52139-2/
Quezon City — The Philippine National Police (PNP) welcomes the possible installation of CCTVs in the entire country if ever the next administration considers it.
According to PNP spokesman Police Chief Supt. Wilben Mayor it would be a big help if president-elect Rudy Duterte would push thru with possibility as it would surely help the PNP in the performance of their anti- crime campaign.
Mayor said that though there are already existing cities that are equipped with CCTV it would be better that there is an initiative from the national government.
He also mentioned it would be advantageous to convert it on a national scope so that CCTV that has the low-quality reception would also be replaced by high definition.
Pilipinas Run with the Stars 2016: An advocacy race for families of fallen heroes set on May 22
FORT BONIFACIO, Metro Manila – Philippine Army soldiers will have the opportunity to run alongside with some Philippine movie stars and at the same time run for a worthy cause.
More or less 80 military personnel will participate in the advocacy race Pilipinas Run with Stars 2016 to be held at Quirino Grandstand, Rizal Park, Manila on Sunday, May 22, to show support to children of soldiers who were killed in action.
This is a fun run event where celebrity stars, like Aiza Siguera, E-Jay Falcon, Karylle and others are expected to join for the benefit of the families of Philippine Army Fallen Heroes. There will be four race categories to include 3K, 5K, 10K and 16K. Finisher shirts will be given to the first 300 finishers per race category.
Said advocacy rate is a joint venture between Streetwise Events Management and Public Relations and HERO Foundation Inc. The Philippine Army is a partner stakeholder of Hero Foundation hence the participation of military personnel in this noble endeavor.
This unit led by LTC MARLOWE E PATRIA (INF) PA, along with the students of AFP CMO Strategic Course and Civil Affairs Course from CMOG, PA attended and participated during the symposium conducted and initiated by Rotary Club of Makati, Pasong Tamo with a theme “IWASTO” Flood Free Manila (Pateros River Rehabilitation and Urban Development Symposium) at 10th Floor, People’s Hall, SM Aura Tower, Fort Andres Bonifacio, Metro Manila on 251300 April 2016.
Photos by Sgt San Esteban and RSR
Why does cybersecurity extend beyond computers? DefenseNewsPh
Actually, the issue is not that cybersecurity extends beyond computers; it is that computers extend beyond traditional laptops and desktops. Many electronic devices are computers—from cell phones and tablets to video games and car navigation systems. While computers provide increased features and functionality, they also introduce new risks. Attackers may be able to take advantage of these technological advancements to target devices previously considered “safe.” For example, an attacker may be able to infect your cell phone with a virus, steal your phone or wireless service, or access the data on your device. Not only do these activities have implications for your personal information, but they could also have serious consequences if you store corporate information on the device.
What types of electronics are vulnerable?
Any piece of electronic equipment that uses some kind of computerized component is vulnerable to software imperfections and vulnerabilities. The risks increase if the device is connected to the internet or a network that an attacker may be able to access. Remember that a wireless connection also introduces these risks (see Securing Wireless Networks for more information). The outside connection provides a way for an attacker to send information to or extract information from your device.
How can you protect yourself?
- Remember physical security – Having physical access to a device makes it easier for an attacker to extract or corrupt information. Do not leave your device unattended in public or easily accessible areas (see Protecting Portable Devices: Physical Security for more information).
- Keep software up to date – If the vendor releases updates for the software operating your device, install them as soon as possible. Installing them will prevent attackers from being able to take advantage of known problems or vulnerabilities (see Understanding Patches for more information).
- Use good passwords – Choose devices that allow you to protect your information with passwords. Select passwords that will be difficult for thieves to guess, and use different passwords for different programs and devices (see Choosing and Protecting Passwords for more information). Do not choose options that allow your computer to remember your passwords.
- Disable remote connectivity – Some mobile devices are equipped with wireless technologies, such as Bluetooth, that can be used to connect to other devices or computers. You should disable these features when they are not in use (see Understanding Bluetooth Technology for more information).
- Encrypt files – If you are storing personal or corporate information, see if your device offers the option to encrypt the files. By encrypting files, you ensure that unauthorized people can’t view data even if they can physically access it. When you use encryption, it is important to remember your passwords and passphrases; if you forget or lose them, you may lose your data.
- Be cautious of public Wi-Fi networks – Before you connect to any public wireless hotspot – like on an airplane or in an airport, hotel, train/bus station or café:
- Be sure to confirm the name of the network and exact login procedures with appropriate staff to ensure that the network is legitimate.
- Do not conduct sensitive activities, such as online shopping, banking, or sensitive work, using a public wireless network.
- Only use sites that begin with “https://” when online shopping or banking. Using your mobile network connection is generally more secure than using a public wireless network.
Authors: US-CERT Publications and Stop.Think.Connect™
The Army Dragon Warriors are in Adelaida, Australia for the 10th IDBF World Club Crews Dragon Boat Championships
From April 1 – 7, 2016, Our Dragon Warriors are conducting team preparations and trainings for the main event of the championships. Our Army Dragon Warriors are in full enthusiasm to familiarize the water flow in synergy with their boat and their paddling techniques as their formidable team spirit came out for this World Championships!
Aim High Army Dragon Warriors! We are praying for your safety and good fight!
Photos by Sgt Marlon San Esteban (Inf) PA