OKI'S BLOG

The financial world was abuzz on February 1, 2025, when social media platforms lit up with posts claiming a dramatic plunge in the USD-IDR (US Dollar to Indonesian Rupiah) exchange rate.  Reports suggested an unprecedented drop to around 8,000 IDR per USD, causing widespread confusion and concern among investors and the general public. However, let's delve into the facts behind this viral phenomenon and separate reality from the social media storm. The Viral Misinformation: Social media, particularly X, was flooded with posts about the USD-IDR rate plummeting to levels not seen in recent history. Users expressed shock and advised caution, with some even questioning the reliability of major data providers like Google for displaying what appeared to be incorrect rates.  The rapid spread of this information led to a knee-jerk reaction among those managing finances or considering investments in Indonesia. The Actual Exchange Rate: Contrary to the social media frenzy, official fi...

Rabbit R1 is a handheld device powered by artificial intelligence, designed to be a compact and user-friendly personal assistant.  However, recently, a security vulnerability has been discovered in the device, stemming from the Mediatek chip used within it.

Several countries are moving towards regulating AI to ensure its use is consistent with human rights, democracy, and the law. However, current agreements only set restrictions for public entities, and the activities of private companies related to national security and critical infrastructure sectors are not covered.

These attacks target suppliers to indirectly compromise their customers. The video mentions a recent discovery of a network of thousands of GitHub accounts distributing malware disguised as legitimate code.

The BlackByte ransomware gang is using a newly discovered vulnerability to launch a new wave of attacks.  This vulnerability allows them to take control of systems without authentication and use VPNs to evade security monitoring systems.  Researchers are urging organizations to patch their systems and implement multi-factor authentication for all remote and cloud connections.

A Chinese cyber espionage group called Vol Typhoon is using a new zero-day exploit to break into the infrastructure of US ISPs and managed service providers. Their target is Versa Director, a type of server used to manage large-scale networks.

Telegram founder Pavel Durov was arrested in France for allegedly allowing cybercrime activity to take place on his encrypted messaging app.  He was released on $5 million bail but is not allowed to leave France while the investigation is ongoing.

The US State Department is offering a $2.5 million reward for information about a Belarusian cybercriminal named Valid Madaria.  Madaria is accused of distributing malware, including the Angr exploit kit, to millions of victims from 2013 to 2022.  He's said to have used scareware tactics to trick users into downloading the malware.

A hacker going by the name "US DOD" has been revealed to be a Brazilian music producer named Luen Goncalves.  US DOD is one of the most notorious leakers, having stolen and published information from various organizations including the FBI, NATO, Airbus, LinkedIn, and Crown Strike.  The leaked data includes personal details of nearly every US citizen.  Goncalves claims he didn't choose his targets based on politics but mostly targeted the US government.  Security researchers were able to unmask Goncalves' identity due to operational security mistakes he made, such as using the same email to register both his personal account and the account he used for US DOD activities.  Goncalves has admitted his identity and says he will cooperate with authorities.