-
Posts
62 -
Joined
-
Last visited
Reputation Activity
-
KeradSnake got a reaction from Mark Kaine in Capcom ditched Denuvo DRM only to add new one: Enigma, and it gets worse
I have retur-lmao what
okay, jokes aside
yeaaaah I do think it's also kinda easy to see the pattern? Like, out of nowhere they made a presentation about how modding is not different to cheating even if it's just cosmetics related modding, and how mods can morally ruin the reputation of certain games. Then, not too long before the DRM update, they also took down some MH Sunbreak modding videos
so there's no doubt they're doing this to prevent modding which is just mindblowing considering how tame they've usually been with modding, now just because of NSFW mod in tourney, they decided that enough is enough while at the same time RE4make and DMC also have a ton of them? That's quite suspicious
-
KeradSnake got a reaction from Biohazard777 in Capcom ditched Denuvo DRM only to add new one: Enigma, and it gets worse
Summary
New discovery from players of Resident Evil Revelations reveals that Capcom has been implementing new DRM called Enigma for their games (some of the older ones, for now) as replacement for Denuvo. The new DRM was discovered when there was a sudden update for RE Revelations, and this DRM basically prevents modding or use of cheat engine, and perhaps much worse, tanks the performance 10 - 15FPS with constant stutters. Numerous reports also said that every Capcom games with this DRM can't be played on Steam Deck at all. Capcom reverted the updates few hours after but only for RE Revelations. But shortly after, it gets even worse again, as another report coming out that the new DRM has over 34 detected malware inside, and allegedly the DRM was made by only one random russian with a questionable 'company' that has no address (only stated it's located in Moscow) and barely registered in Russia, which could basically qualifies as dummy company
The list of games that received DRM update are Resident Evil 6, Resident Evil 5, Resident Evil Revelations (reverted), Street Fighter 30th Anniversary Collection, Capcom Arcade Stadium, Capcom Arcade 2nd Stadium, Mega Man Battle Network Legacy Collection Vol. 1, Mega Man Battle Network Legacy Collection Vol. 2, Mega Man Zero/ ZX Legacy Collection, and 64bit version of Strider
Quotes
My thoughts
ooooooooh nononono this is just not looking great at all. All of this, just because of a wink wink mod showed on a SF6 tournament??? Like, come on Capcom you literally cooked so damn good last year, well at least until you released that presentation that basically says modding is cheating and some mods also 'potentially morally questionable and could ruin company reputation' and game price hasn't really gone up yet, but we were like oh ok that's just bad presentation, no, bad capcom. But now you're slowly doing this for real now? Denuvo is already bad enough, Monster Hunter mod video takedown is also frustrating enough, and now this??
Like, if you really worried about a small time local tourney being streamed and some weirdo accidentally leaving smut mods on, then they would also have to contend with the fact that half the SF6 character design is... something. And while the detection is yet to be researched more because it could be false positive, the fact that Capcom even paid this one DRM 'company' with no reputation at all is also looking real fishy.
Sources: Included in quotes and https://steamdb.info/app/222480/history/
-
KeradSnake got a reaction from jagdtigger in Capcom ditched Denuvo DRM only to add new one: Enigma, and it gets worse
Summary
New discovery from players of Resident Evil Revelations reveals that Capcom has been implementing new DRM called Enigma for their games (some of the older ones, for now) as replacement for Denuvo. The new DRM was discovered when there was a sudden update for RE Revelations, and this DRM basically prevents modding or use of cheat engine, and perhaps much worse, tanks the performance 10 - 15FPS with constant stutters. Numerous reports also said that every Capcom games with this DRM can't be played on Steam Deck at all. Capcom reverted the updates few hours after but only for RE Revelations. But shortly after, it gets even worse again, as another report coming out that the new DRM has over 34 detected malware inside, and allegedly the DRM was made by only one random russian with a questionable 'company' that has no address (only stated it's located in Moscow) and barely registered in Russia, which could basically qualifies as dummy company
The list of games that received DRM update are Resident Evil 6, Resident Evil 5, Resident Evil Revelations (reverted), Street Fighter 30th Anniversary Collection, Capcom Arcade Stadium, Capcom Arcade 2nd Stadium, Mega Man Battle Network Legacy Collection Vol. 1, Mega Man Battle Network Legacy Collection Vol. 2, Mega Man Zero/ ZX Legacy Collection, and 64bit version of Strider
Quotes
My thoughts
ooooooooh nononono this is just not looking great at all. All of this, just because of a wink wink mod showed on a SF6 tournament??? Like, come on Capcom you literally cooked so damn good last year, well at least until you released that presentation that basically says modding is cheating and some mods also 'potentially morally questionable and could ruin company reputation' and game price hasn't really gone up yet, but we were like oh ok that's just bad presentation, no, bad capcom. But now you're slowly doing this for real now? Denuvo is already bad enough, Monster Hunter mod video takedown is also frustrating enough, and now this??
Like, if you really worried about a small time local tourney being streamed and some weirdo accidentally leaving smut mods on, then they would also have to contend with the fact that half the SF6 character design is... something. And while the detection is yet to be researched more because it could be false positive, the fact that Capcom even paid this one DRM 'company' with no reputation at all is also looking real fishy.
Sources: Included in quotes and https://steamdb.info/app/222480/history/
-
KeradSnake got a reaction from Mark Kaine in Capcom ditched Denuvo DRM only to add new one: Enigma, and it gets worse
Ikr? Not even SF6 and RE4, probably they're just testing but even from this the conclusion are pretty much BIG NO
-
KeradSnake got a reaction from starsmine in Capcom ditched Denuvo DRM only to add new one: Enigma, and it gets worse
Summary
New discovery from players of Resident Evil Revelations reveals that Capcom has been implementing new DRM called Enigma for their games (some of the older ones, for now) as replacement for Denuvo. The new DRM was discovered when there was a sudden update for RE Revelations, and this DRM basically prevents modding or use of cheat engine, and perhaps much worse, tanks the performance 10 - 15FPS with constant stutters. Numerous reports also said that every Capcom games with this DRM can't be played on Steam Deck at all. Capcom reverted the updates few hours after but only for RE Revelations. But shortly after, it gets even worse again, as another report coming out that the new DRM has over 34 detected malware inside, and allegedly the DRM was made by only one random russian with a questionable 'company' that has no address (only stated it's located in Moscow) and barely registered in Russia, which could basically qualifies as dummy company
The list of games that received DRM update are Resident Evil 6, Resident Evil 5, Resident Evil Revelations (reverted), Street Fighter 30th Anniversary Collection, Capcom Arcade Stadium, Capcom Arcade 2nd Stadium, Mega Man Battle Network Legacy Collection Vol. 1, Mega Man Battle Network Legacy Collection Vol. 2, Mega Man Zero/ ZX Legacy Collection, and 64bit version of Strider
Quotes
My thoughts
ooooooooh nononono this is just not looking great at all. All of this, just because of a wink wink mod showed on a SF6 tournament??? Like, come on Capcom you literally cooked so damn good last year, well at least until you released that presentation that basically says modding is cheating and some mods also 'potentially morally questionable and could ruin company reputation' and game price hasn't really gone up yet, but we were like oh ok that's just bad presentation, no, bad capcom. But now you're slowly doing this for real now? Denuvo is already bad enough, Monster Hunter mod video takedown is also frustrating enough, and now this??
Like, if you really worried about a small time local tourney being streamed and some weirdo accidentally leaving smut mods on, then they would also have to contend with the fact that half the SF6 character design is... something. And while the detection is yet to be researched more because it could be false positive, the fact that Capcom even paid this one DRM 'company' with no reputation at all is also looking real fishy.
Sources: Included in quotes and https://steamdb.info/app/222480/history/
-
KeradSnake got a reaction from thechinchinsong in Capcom ditched Denuvo DRM only to add new one: Enigma, and it gets worse
Summary
New discovery from players of Resident Evil Revelations reveals that Capcom has been implementing new DRM called Enigma for their games (some of the older ones, for now) as replacement for Denuvo. The new DRM was discovered when there was a sudden update for RE Revelations, and this DRM basically prevents modding or use of cheat engine, and perhaps much worse, tanks the performance 10 - 15FPS with constant stutters. Numerous reports also said that every Capcom games with this DRM can't be played on Steam Deck at all. Capcom reverted the updates few hours after but only for RE Revelations. But shortly after, it gets even worse again, as another report coming out that the new DRM has over 34 detected malware inside, and allegedly the DRM was made by only one random russian with a questionable 'company' that has no address (only stated it's located in Moscow) and barely registered in Russia, which could basically qualifies as dummy company
The list of games that received DRM update are Resident Evil 6, Resident Evil 5, Resident Evil Revelations (reverted), Street Fighter 30th Anniversary Collection, Capcom Arcade Stadium, Capcom Arcade 2nd Stadium, Mega Man Battle Network Legacy Collection Vol. 1, Mega Man Battle Network Legacy Collection Vol. 2, Mega Man Zero/ ZX Legacy Collection, and 64bit version of Strider
Quotes
My thoughts
ooooooooh nononono this is just not looking great at all. All of this, just because of a wink wink mod showed on a SF6 tournament??? Like, come on Capcom you literally cooked so damn good last year, well at least until you released that presentation that basically says modding is cheating and some mods also 'potentially morally questionable and could ruin company reputation' and game price hasn't really gone up yet, but we were like oh ok that's just bad presentation, no, bad capcom. But now you're slowly doing this for real now? Denuvo is already bad enough, Monster Hunter mod video takedown is also frustrating enough, and now this??
Like, if you really worried about a small time local tourney being streamed and some weirdo accidentally leaving smut mods on, then they would also have to contend with the fact that half the SF6 character design is... something. And while the detection is yet to be researched more because it could be false positive, the fact that Capcom even paid this one DRM 'company' with no reputation at all is also looking real fishy.
Sources: Included in quotes and https://steamdb.info/app/222480/history/
-
KeradSnake got a reaction from da na in A construction contractor in Indonesia gets spamcalled during TGA due to Fortnite map code number matched to Indonesian phone number
Summary
Fortnite map code has always been well known to have 16 digits. At TGA, most of the map code started with 0853. And unfortunately some people in Indonesia that took notice of this during TGA decided to check whether this is real number phone due to its similarities to Indonesian provider Telkomsel's first 4 digit number of phone number from that ISP, which is 0853, and it doesn't help that most Indonesian phone number has 16 digit numbers as well (so the format is 0853-XXXX-XXXX). One of notorious example was Tajudin, a construction contractor, gets spamcalled because one of the TGA Fortnite code that were shared on the screen, which someone else getcontact'd and apparently it's a real person. The person has since released a statement about the spamcall situation (in Indonesian, of course), and in an interview with local news outlet, he admitted that the spamcall came every minute and it's still happening to this very second. He didn't know about Fortnite or TGA at all, he basically can't really change his phone number because the number is well known to many of his business colleagues, and were concerned of misuse or threats coming from the incident.
Quotes
My thoughts
This is very much confusing situation IMO. Like, no one expected these codes to be similar to a phone number from another country. At the same time, after this they probably should revamp the code format? Although I don't see it as an option that would make sense especially for something that is very much unexpected like this doxxing incident that isn't even really a doxxing but at the same time someone went a bit far and like 'oh I know this four digit number, it's Telkomsel number, lets call them and spread it on internet if it's a real number' but then you realized it's also a publicly shared code, but it felt like a privacy concern so they probably should revamp the format, it's very confusing damn I probably just gonna stop here.
Also uh who's going to tell him that no, their number is not misused by Epic, it's just a coincidence that it's matched with Tajudin's number. Then again most people in Indonesia are tech illiterate anyway *sigh*
Sources
https://jagatplay.com/2023/12/news/mandor-bangunan-di-bekasi-jadi-korban-kode-fortnite-di-tga-2023/
https://kumparan.com/kumparansport/nomor-hp-mandor-bangunan-bekasi-viral-di-game-awards-ditelepon-tiap-menit-21k2KpI4rA4/full
https://twitter.com/Tajudin167/status/1733107704162656715
-
KeradSnake got a reaction from Taf the Ghost in A construction contractor in Indonesia gets spamcalled during TGA due to Fortnite map code number matched to Indonesian phone number
Summary
Fortnite map code has always been well known to have 16 digits. At TGA, most of the map code started with 0853. And unfortunately some people in Indonesia that took notice of this during TGA decided to check whether this is real number phone due to its similarities to Indonesian provider Telkomsel's first 4 digit number of phone number from that ISP, which is 0853, and it doesn't help that most Indonesian phone number has 16 digit numbers as well (so the format is 0853-XXXX-XXXX). One of notorious example was Tajudin, a construction contractor, gets spamcalled because one of the TGA Fortnite code that were shared on the screen, which someone else getcontact'd and apparently it's a real person. The person has since released a statement about the spamcall situation (in Indonesian, of course), and in an interview with local news outlet, he admitted that the spamcall came every minute and it's still happening to this very second. He didn't know about Fortnite or TGA at all, he basically can't really change his phone number because the number is well known to many of his business colleagues, and were concerned of misuse or threats coming from the incident.
Quotes
My thoughts
This is very much confusing situation IMO. Like, no one expected these codes to be similar to a phone number from another country. At the same time, after this they probably should revamp the code format? Although I don't see it as an option that would make sense especially for something that is very much unexpected like this doxxing incident that isn't even really a doxxing but at the same time someone went a bit far and like 'oh I know this four digit number, it's Telkomsel number, lets call them and spread it on internet if it's a real number' but then you realized it's also a publicly shared code, but it felt like a privacy concern so they probably should revamp the format, it's very confusing damn I probably just gonna stop here.
Also uh who's going to tell him that no, their number is not misused by Epic, it's just a coincidence that it's matched with Tajudin's number. Then again most people in Indonesia are tech illiterate anyway *sigh*
Sources
https://jagatplay.com/2023/12/news/mandor-bangunan-di-bekasi-jadi-korban-kode-fortnite-di-tga-2023/
https://kumparan.com/kumparansport/nomor-hp-mandor-bangunan-bekasi-viral-di-game-awards-ditelepon-tiap-menit-21k2KpI4rA4/full
https://twitter.com/Tajudin167/status/1733107704162656715
-
KeradSnake got a reaction from Soukamoshirenai in A construction contractor in Indonesia gets spamcalled during TGA due to Fortnite map code number matched to Indonesian phone number
Summary
Fortnite map code has always been well known to have 16 digits. At TGA, most of the map code started with 0853. And unfortunately some people in Indonesia that took notice of this during TGA decided to check whether this is real number phone due to its similarities to Indonesian provider Telkomsel's first 4 digit number of phone number from that ISP, which is 0853, and it doesn't help that most Indonesian phone number has 16 digit numbers as well (so the format is 0853-XXXX-XXXX). One of notorious example was Tajudin, a construction contractor, gets spamcalled because one of the TGA Fortnite code that were shared on the screen, which someone else getcontact'd and apparently it's a real person. The person has since released a statement about the spamcall situation (in Indonesian, of course), and in an interview with local news outlet, he admitted that the spamcall came every minute and it's still happening to this very second. He didn't know about Fortnite or TGA at all, he basically can't really change his phone number because the number is well known to many of his business colleagues, and were concerned of misuse or threats coming from the incident.
Quotes
My thoughts
This is very much confusing situation IMO. Like, no one expected these codes to be similar to a phone number from another country. At the same time, after this they probably should revamp the code format? Although I don't see it as an option that would make sense especially for something that is very much unexpected like this doxxing incident that isn't even really a doxxing but at the same time someone went a bit far and like 'oh I know this four digit number, it's Telkomsel number, lets call them and spread it on internet if it's a real number' but then you realized it's also a publicly shared code, but it felt like a privacy concern so they probably should revamp the format, it's very confusing damn I probably just gonna stop here.
Also uh who's going to tell him that no, their number is not misused by Epic, it's just a coincidence that it's matched with Tajudin's number. Then again most people in Indonesia are tech illiterate anyway *sigh*
Sources
https://jagatplay.com/2023/12/news/mandor-bangunan-di-bekasi-jadi-korban-kode-fortnite-di-tga-2023/
https://kumparan.com/kumparansport/nomor-hp-mandor-bangunan-bekasi-viral-di-game-awards-ditelepon-tiap-menit-21k2KpI4rA4/full
https://twitter.com/Tajudin167/status/1733107704162656715
-
KeradSnake got a reaction from Mark Kaine in Some regions saw price hike on Steam for Activision games few days after ABK Acquisition, including older titles (and HALO MCC)
Summary
For some reason, few days after the ABK acquisition, Activision titles and at least one MS title (Halo Master Chief Collection) saw a price hike on Steam in some regions. First spotted in Argentina, then the price hike also applies for India, Turkey, Vietnam, Malaysia, Thailand, Indonesia, and several other regions
list of the games affected:
- Every COD on Steam. Price change listed in the source and quote. Meanwhile:
Black Ops III: $51 - $57, converted from Indonesian Rupiah pricing of 800K - 891K Modern Warfare 2019 and Black Ops Cold War: $52 - $57, converted from Indonesian Rupiah pricing of 800K - 891K - Crash N. Sane Trilogy and Crash 4 (Price change listed in the source and quote)
- Spyro Reignited Trilogy (Price change listed in the source and quote)
- Sekiro (Price change listed in the source and quote)
- Both OG Prototype and Prototype 2 (Price change listed in the source and quote)
- HALO Master Chief Collection (11 bucks - 38 bucks, converted from Indonesian Rupiah pricing of 169K - 599K)
Quotes
My thoughts
I... don't think this is a good way to recoup some of the money that you just spend for one mega giant AAA company. Just saying. And for anyone saying this is how they're going to announce these games in Game Pass, well... I don't even know anymore
Sources
https://winpoin.com/hot-imbas-akuisisi-game-microsoft-dan-activision-blizzard-di-steam-naik-harga/
https://fandomwire.com/activision-have-put-the-price-up-call-of-duty-games/
-
KeradSnake got a reaction from thechinchinsong in Some regions saw price hike on Steam for Activision games few days after ABK Acquisition, including older titles (and HALO MCC)
not every COD but yeah, that price increase is just brutal for what is already a 10+yo games, or even 20 like the original COD that at least had a bit OK-ish price for what it is
HALO MCC being 11 bucks (converted) in some regions was a big deal as well, so the fact that they also increased it all the way to 38 bucks for some reason is a massive bummer for everyone that are planning to buy the game this month
-
KeradSnake got a reaction from jagdtigger in Google warned to update WinRAR due to security vulnerabilities, citing potential exploit from government-backed hackers
JAR, GZIP, CAB, IMG, IMA, 7Z that isn't executable. What about those? Those are not native to Windows even if Windows do recognize some of the kind of files they are, and in order to create those (even something like ISO) they need a specific app for that
Even average users someday will probably have to deal with those archive files or other ones, don't know what kind of things people would do that they have to deal with other archive formats, but they will face that situation regardless. Telling people that it makes little sense to install 7zip just because two archive formats are going to be natively supported on Windows isn't a good move
-
KeradSnake got a reaction from wONKEyeYEs in Google warned to update WinRAR due to security vulnerabilities, citing potential exploit from government-backed hackers
Summary
Today, Google Threat Analysis Group (TAG) posted in their blog about WinRAR security vulnerabilities that were already been exploited by government-backed hackers since early 2023. According to Google's TAG, the vulnerability allows attackers to execute arbitrary code when a user attempts to view a benign file (as an example, image files, particularly PNG) within a ZIP archive. So far it has been reported that the security hole has been used to target cryptocurrency trading accounts since April 2023, with another reports from security researcher Group-IB saying that there are 130 devices infected (mostly traders' devices) at the time the finding was posted back in August 2023, with total number still remains unknown to this very second. WinRAR already issued the patch in versions 6.24 and 6.23, but users have to manually install those versions in order for the app to be updated as WinRAR still doesn't have automatic updates even today.
Quotes
My thoughts
With ZIP bomb being a thing I don't think I'd see anyone not updating WinRAR or 7zip but welp, I guess there's still people using older version of WinRAR. Yes, 7zip exists but if you really, really want to use WinRAR for some reason, regularly check the update in their website, since they literally don't have auto updates to this very second. Heck, 7zip doesn't have auto updates, so you have to check updates regularly as well if you use it. Now I don't know why they don't provide auto update feature at all, and I'm aware of Chocolatey can be used to configure the auto update, but why?
Sources
https://blog.google/threat-analysis-group/government-backed-actors-exploiting-winrar-vulnerability/
https://www.theverge.com/2023/10/18/23922075/winrar-security-vulnerability-exploit-patch-update
https://www.group-ib.com/blog/cve-2023-38831-winrar-zero-day/
-
KeradSnake reacted to Senzelian in Google warned to update WinRAR due to security vulnerabilities, citing potential exploit from government-backed hackers
I hope WinRAR's servers can handle their entire customer base of 4 people downloading the new version.
-
KeradSnake got a reaction from Doll in Google warned to update WinRAR due to security vulnerabilities, citing potential exploit from government-backed hackers
Summary
Today, Google Threat Analysis Group (TAG) posted in their blog about WinRAR security vulnerabilities that were already been exploited by government-backed hackers since early 2023. According to Google's TAG, the vulnerability allows attackers to execute arbitrary code when a user attempts to view a benign file (as an example, image files, particularly PNG) within a ZIP archive. So far it has been reported that the security hole has been used to target cryptocurrency trading accounts since April 2023, with another reports from security researcher Group-IB saying that there are 130 devices infected (mostly traders' devices) at the time the finding was posted back in August 2023, with total number still remains unknown to this very second. WinRAR already issued the patch in versions 6.24 and 6.23, but users have to manually install those versions in order for the app to be updated as WinRAR still doesn't have automatic updates even today.
Quotes
My thoughts
With ZIP bomb being a thing I don't think I'd see anyone not updating WinRAR or 7zip but welp, I guess there's still people using older version of WinRAR. Yes, 7zip exists but if you really, really want to use WinRAR for some reason, regularly check the update in their website, since they literally don't have auto updates to this very second. Heck, 7zip doesn't have auto updates, so you have to check updates regularly as well if you use it. Now I don't know why they don't provide auto update feature at all, and I'm aware of Chocolatey can be used to configure the auto update, but why?
Sources
https://blog.google/threat-analysis-group/government-backed-actors-exploiting-winrar-vulnerability/
https://www.theverge.com/2023/10/18/23922075/winrar-security-vulnerability-exploit-patch-update
https://www.group-ib.com/blog/cve-2023-38831-winrar-zero-day/
-
KeradSnake reacted to Spotty in Linus Tech Tips, Tech Quickie, Tech Linked channels hacked
Ah. I was visiting the channels directly (from the forum side panel). If I use the search it's showing the Tesla icons for me as well.
There's been a few reports of the search results (particularly video descriptions) not being up to date. It seems like the search result data is cached. I have no idea how long it would normally take for that to refresh and update but hopefully it's one of those things that will just correct itself.
-
KeradSnake reacted to LinusTech in Linus Tech Tips, Tech Quickie, Tech Linked channels hacked
Thanks for the concern everyone. We are still in recovery mode over here and working with YouTube to get everything restored. Will hopefully have a video (or at least an update on WAN Show) to share with you all ASAP, but we want to make sure we get the details right since smaller channels may rely on our experience to help harden their own security.
-
KeradSnake got a reaction from thechinchinsong in Another data breach from Indonesia: State owned elctricity company and Indonesian branch of big companies 347GB data breach (UPDATE: + 3 other breach)
UPDATE: Other three data breach, Indihome (20th August GMT+7) and police data (Yesterday, GMT+7)
Summary
Another data breach coming from Indonesia, this time it's state owned electricity company (Perusahaan Listrik Negara). Reportedly PLN have over 17M consumer data breached, that includes SSN, consumer ID and address, power meter number, and even KW/h number. In other breachforum post, Indonesian branch of big companies also have 347GB of their data leaked, separated into standard (companies with revenue under $50M) and big (revenue >$50M). Examples include Microsoft Indonesia branch, AT&T Indonesia branch, China State Construction Engineering Corporation, China Railway Group Ltd, McKinsey Indonesia branch, Huawei Tech Investment and Prudential Life Assurance. Leaked data includes numerous ID, license and certificates, transaction records, and more.
Quotes
My thoughts
I have zero hopes and expectations to be honest. If you saw the news about the entire PSE registration thingy you know cybersecurity in here is already that bad, that even state owned websites can be breached in just a few hours. No doubts it also going to even affects companies in Indonesia, and now here we are, again with data breach from not only state owned company but also Indonesian branch of big companies, and it even includes big tech names like Microsoft and AT&T. At this point not even Data Privacy law (that somehow even to this very second never gets passed) can save us I guess, it's just way too late
Sources
https://www.cnbcindonesia.com/tech/20220819121855-37-365025/data-pelanggan-pln-diduga-bocor-ini-kata-kominfo
https://www.jagatreview.com/2022/08/data-perusahaan-indonesia-bocor-di-situs-gelap/
Nuice Media:
-
KeradSnake got a reaction from RockSolid1106 in Another data breach from Indonesia: State owned elctricity company and Indonesian branch of big companies 347GB data breach (UPDATE: + 3 other breach)
UPDATE: Other three data breach, Indihome (20th August GMT+7) and police data (Yesterday, GMT+7)
Summary
Another data breach coming from Indonesia, this time it's state owned electricity company (Perusahaan Listrik Negara). Reportedly PLN have over 17M consumer data breached, that includes SSN, consumer ID and address, power meter number, and even KW/h number. In other breachforum post, Indonesian branch of big companies also have 347GB of their data leaked, separated into standard (companies with revenue under $50M) and big (revenue >$50M). Examples include Microsoft Indonesia branch, AT&T Indonesia branch, China State Construction Engineering Corporation, China Railway Group Ltd, McKinsey Indonesia branch, Huawei Tech Investment and Prudential Life Assurance. Leaked data includes numerous ID, license and certificates, transaction records, and more.
Quotes
My thoughts
I have zero hopes and expectations to be honest. If you saw the news about the entire PSE registration thingy you know cybersecurity in here is already that bad, that even state owned websites can be breached in just a few hours. No doubts it also going to even affects companies in Indonesia, and now here we are, again with data breach from not only state owned company but also Indonesian branch of big companies, and it even includes big tech names like Microsoft and AT&T. At this point not even Data Privacy law (that somehow even to this very second never gets passed) can save us I guess, it's just way too late
Sources
https://www.cnbcindonesia.com/tech/20220819121855-37-365025/data-pelanggan-pln-diduga-bocor-ini-kata-kominfo
https://www.jagatreview.com/2022/08/data-perusahaan-indonesia-bocor-di-situs-gelap/
Nuice Media:
-
KeradSnake got a reaction from Taf the Ghost in Another data breach from Indonesia: State owned elctricity company and Indonesian branch of big companies 347GB data breach (UPDATE: + 3 other breach)
UPDATE: Other three data breach, Indihome (20th August GMT+7) and police data (Yesterday, GMT+7)
Summary
Another data breach coming from Indonesia, this time it's state owned electricity company (Perusahaan Listrik Negara). Reportedly PLN have over 17M consumer data breached, that includes SSN, consumer ID and address, power meter number, and even KW/h number. In other breachforum post, Indonesian branch of big companies also have 347GB of their data leaked, separated into standard (companies with revenue under $50M) and big (revenue >$50M). Examples include Microsoft Indonesia branch, AT&T Indonesia branch, China State Construction Engineering Corporation, China Railway Group Ltd, McKinsey Indonesia branch, Huawei Tech Investment and Prudential Life Assurance. Leaked data includes numerous ID, license and certificates, transaction records, and more.
Quotes
My thoughts
I have zero hopes and expectations to be honest. If you saw the news about the entire PSE registration thingy you know cybersecurity in here is already that bad, that even state owned websites can be breached in just a few hours. No doubts it also going to even affects companies in Indonesia, and now here we are, again with data breach from not only state owned company but also Indonesian branch of big companies, and it even includes big tech names like Microsoft and AT&T. At this point not even Data Privacy law (that somehow even to this very second never gets passed) can save us I guess, it's just way too late
Sources
https://www.cnbcindonesia.com/tech/20220819121855-37-365025/data-pelanggan-pln-diduga-bocor-ini-kata-kominfo
https://www.jagatreview.com/2022/08/data-perusahaan-indonesia-bocor-di-situs-gelap/
Nuice Media:
-
KeradSnake got a reaction from Dutch_Master in Indonesia urged tech companies to register under new licensing rules, issued inspection and ban warning to those who didn't register (UPDATE)
One can only hope, mate. One can only hope. Problem is, here tech illiteracy and paid troll account is common (to the point where some people gets actually doxxed, or they raided any discussion talk about this topic*), and despite all the protest on the internet that you guys saw, it's still not as big as you might think. It's not even close to the number of protest against Ajit Pai back in 2017 - 18
*example? https://twitter.com/secgron/status/1553962064439558145
-
KeradSnake got a reaction from Taf the Ghost in Indonesia urged tech companies to register under new licensing rules, issued inspection and ban warning to those who didn't register (UPDATE)
what do you expect from a govt that also used to have three major data breaches last year and were like 'yeah there was a data breach we're going to solve it' and went silent with no update even to this very second?
-
KeradSnake got a reaction from Taf the Ghost in Indonesia urged tech companies to register under new licensing rules, issued inspection and ban warning to those who didn't register (UPDATE)
UPDATE: Steam, Origin, Paypal and Epic Games are now blocked. Some providers slowly having them blocked, with state owned ISP such as Indihome and Telkomsel implement the ban early this morning. Source on my latest reply
Summary
Indonesia through Kominfo (Ministry of Communications and Information) has made a rules that requires tech companies to register their services to PSE database (Database Penyelenggara Sistem Elektronik, Electronics System Provider in English). This was already issued since one and half weeks ago, with the deadline of July 20th, and they warned any online services that didn't register will be blocked, with inspection that will follow if the companies have a regional office in Indonesia and stating that 'whoever companies didn't register means they don't see Indonesia as their potential market and it's their loss if they're being blocked'.
Despite the deadline already past due and the rules already passed, there were no implementation of the ban, but inspection has been done to some tech companies especially to the ones that has regional office such as Google and Twitter, which was late registering their services. Kominfo also stated that the rules was made in order to 'ensure user safety, data privacy, and allow authorities to order platforms to take down content deemed unlawful, or that "disturbs public order" and to make sure any services in Indonesia have localization'. This rules, however, has sparked a lot of protest online, with some independent journalist and NGOs like SAFEnet (Southeast Asia Freedom of Expression Network) pointed out that there's transparency issues and potential for the rules to be abuse of power, and local cyber security consultant posting various proof that the registration website is clunky and unsafe.
Quotes
My thoughts
I already lost hope with how internet works in Indonesia from 2018. This kind of internet L is already common in here and net neutrality is pretty much screwed here. Our govt arbitrarily blocking sites for 'NSFW content and misinformation' with no explanation on why they're actually got the ban (such as Reddit, Imgur, Vimeo and used to be they also blocked Tumblr but it was lifted after various protest on the internet), and now this? I think at this point they're just showing off their clown side. Pulling a great firewall and having a pathetic network infrastructure is just a brutal combo, and I don't know if they're going to revise this or heck, just cancel this. Even though I'm not sure if they have the will to do that because our govt is kind of corrupt and decided to choose people that doesn't have great understanding on how internet works and what looks like an outdated resources for their network infrastructure. Also I know, I'm sorry if this is really long especially with the translated tweet
*I also need to add some notes for 4th quote because this used to spark a drama on twitter for stupid reason: It's pronounced Enggak and is a slang for No in Indonesian. This is not a slur!
Sources
https://youtu.be/57Rl1MIFhMo
https://www.bloomberg.com/news/articles/2022-07-19/google-meta-bow-to-sweeping-taxes-content-curbs-in-indonesia
https://www.reuters.com/technology/google-twitter-yet-sign-up-indonesias-new-licensing-rules-ministry-2022-07-20/
https://www.reuters.com/technology/indonesia-urges-tech-platforms-sign-up-new-licensing-rules-or-risk-being-blocked-2022-07-18/
https://www.reuters.com/technology/meta-units-agree-indonesia-tech-licensing-rules-amid-blocking-threat-2022-07-19/
https://kominfu.com/
https://www.metrotvnews.com/play/N4EC2AjZ-indonesia-s-new-tech-licensing-rules
https://www.thejakartapost.com/indonesia/2022/07/25/self-censorship-concerns-grow-as-big-tech-accedes-to-cyber-policy.html
http://www.thejakartapost.com/paper/2022/07/20/disruptions-loom-as-deadline-for-digital-platform-registry-closes.html
https://www.thejakartapost.com/indonesia/2022/07/19/big-tech-submits-to-indonesian-cyber-policy.html
https://www.thejakartapost.com/indonesia/2022/07/19/ministry-urges-tech-platforms-to-sign-up-to-new-licensing-rules-or-risk-being-blocked.html
https://techwireasia.com/2022/07/what-does-indonesia-new-licensing-rules-mean-for-tech-companies/
original tweet from Teguh Aprianto (secgron) and Damar Juniarto (DAM) in Indonesian: