These attacks use fraudulent domains, command-and-control (C2) internet protocol (IP) addresses and malware binaries to compromise systems and steal sensitive information, said MyCERT on its website today.

It said the phishing domains mimic legitimate websites, deceiving users into unknowingly installing malware or disclosing personal credentials.

Meanwhile, attackers use C2 servers to maintain control over compromised devices and extract sensitive data.

Additionally, malicious software, delivered through websites or emails, exacerbate the threat landscape by executing harmful actions on infected devices, MyCERT noted.

The agency has provided 30 potential indicators of compromise (IoC), including their value, type and additional information, available on its website.

“To safeguard your organisation against the recent surge in phishing attacks involving phishing domains, C2 IPs and malware binaries, it is crucial to monitor and protect based on the provided IoCs.

“Generally, CyberSecurity Malaysia advises users to stay updated with the latest security announcements from vendors and follow best practice security policies to determine which updates should be applied,” it said.

For further information and assistance, MyCERT encourages the public to contact them through various communication channels.

These include their email at [email protected]; tel: 1-300-88-2999 (business hours); mobile: +6019 2665850 (for 24/7 call incident reporting); and social media platforms for MyCERT (website, Twitter or Facebook).

Yesterday, media reported that a mass cyber outage affected key institutions such as airlines, banks, media outlets and hospitals in several countries.

The disruption has reportedly been attributed to a “defect” in a software update by Crowdstrike Inc, a US-based cybersecurity technology company providing endpoint protection, threat intelligence and cyber-attack response services.