From Uganda Computer Emergency Response Team CERT (UCC) …….

Good morning Ladies and Gentlemen,

The CERT maintains a research honeypot which is run to gather information about the motives and tactics of  hacker  communities targeting different networks. The primary objective of the honeypot is to provide cyber security situational intelligence and also to research the threats that operators face and to learn how to better protect against those threats.

From the gathered information we note that at one any time we are under attack either directly or indirectly.

Over the last 24 hours we see persistent  attacks from the following sources (countries). This information confirms the fact that cyber-attacks are real happenings and are a global problem.

We note the attacks are geared towards the following ports, with traffic mismatch. For example we note SIP traffic being routed to port 80, yet SIP traffic uses port 5060 and 5061 for communications.

Similarly, we note the following usernames /passwords  are the most commonly used for attempted account hijacking;

We strongly encourage you to avoid using the above usernames or passwords as they are the most commonly used for account hijacking. Most computing devices use the above usernames by default, it is recommended you change the usernames to those that are not easily guessed or used.

Regards

COMPUTER EMERGENCY RESPONSE TEAM

Uganda Communications Commission

42-44, Spring Road - Bugolobi,  P.O Box 7376 Kampala.

Toll free: 0800 133 911   www.ug-cert.ug