Lateral Movement dengan Studi Kasus Defacement (Judol)

sahilrizqi02 6 views 11 slides Sep 14, 2025
Slide 1
Slide 1 of 11
Slide 1
1
Slide 2
2
Slide 3
3
Slide 4
4
Slide 5
5
Slide 6
6
Slide 7
7
Slide 8
8
Slide 9
9
Slide 10
10
Slide 11
11

About This Presentation

Incident Lateral movement

Size: 52.93 KB
Language: none
Added: Sep 14, 2025
Slides: 11 pages

Slide Content

Lateral Movement dengan Studi Kasus Defacement (Judol) Nama / Instansi (opsional)

Pendahuluan Definisi Lateral Movement: teknik penyerang berpindah antar sistem setelah akses awal. Kasus: situs terkena defacement oleh kelompok Judol. Relevansi: pentingnya deteksi dini & respon cepat.

Gambaran Kasus Defacement (Judol) Situs web diubah tampilan (pesan/gambar). Akses tidak sah ke server web. Tujuan: propaganda, defacer footprint, uji kelemahan. Defacement bisa jadi bukan target akhir.

Tahapan Serangan Umum Initial Access → eksploitasi web (SQLi, RCE, upload shell). Execution → menjalankan script/webshell. Persistence → membuat backdoor di server. Privilege Escalation → akses lebih tinggi. Lateral Movement → menyebar ke server lain. Impact → defacement sebagai tanda kompromi.

Mekanisme Lateral Movement Credential Dumping (password hash, cookies). Remote Service Exploitation (RDP, SSH, SMB). Pass-the-Hash / Pass-the-Ticket. Pivoting untuk akses jaringan internal. File/Script Transfer antar server.

Studi Kasus Defacement (Judol) Indikasi awal: tampilan web berubah → webshell/upload. Log server menunjukkan akses tidak wajar. Koneksi ke DB server ditemukan. Potensi lateral movement ke database. Kesimpulan: defacement hanya permukaan ancaman.

Dampak Lateral Movement Pencurian data sensitif (user/customer). Ransomware di server internal. Pengambilalihan akun administrator. Perusakan reputasi perusahaan.

Deteksi Monitoring log (SIEM, IDS/IPS, WAF). Deteksi anomali autentikasi (login gagal, IP asing). File integrity monitoring (cek perubahan file). Threat Intelligence IOC (hash, IP, domain). Honeytoken/decoy account untuk deteksi lateral.

Mitigasi & Pencegahan Patch & hardening web server. Segmentasi jaringan (web server ↔ DB). Multi-factor authentication (MFA). Least privilege access. Backup & recovery plan. Awareness & training SOC team.

Kesimpulan Defacement (Judol) hanyalah puncak gunung es. Lateral movement membuka jalan ke serangan berbahaya. Monitoring proaktif, deteksi dini, mitigasi berlapis sangat penting.

Diagram Alur Serangan (Initial Access → Lateral Movement → Impact) Initial Access (Exploit / Upload Shell) Execution (Webshell / Script) Persistence (Backdoor) Privilege Escalation (Admin / Root) Lateral Movement (RDP/SSH/SMB, Pivot) Impact (Defacement / Data Theft / Ransomware) Catatan: Panah menunjukkan alur umum serangan. Langkah bisa terjadi paralel atau berulang bergantung skenario.
Tags
Categories
General
Download
Download Slideshow Get the original presentation file
Quick Actions
Statistics
  • Views 6
  • Slides 11
  • Age 77 days
Related Slideshows
Pray For The Peace Of Jerusalem and You Will Prosper 22
Pray For The Peace Of Jerusalem and You Will Prosper
RodolfoMoralesMarcuc
30 views
Don_t_Waste_Your_Life_God.....powerpoint 26
Don_t_Waste_Your_Life_God.....powerpoint
chalobrido8
32 views
VILLASUR_FACTORS_TO_CONSIDER_IN_PLATING_SALAD_10-13.pdf 31
VILLASUR_FACTORS_TO_CONSIDER_IN_PLATING_SALAD_10-13.pdf
JaiJai148317
30 views
Fertility awareness methods for women in the society 14
Fertility awareness methods for women in the society
Isaiah47
29 views
Chapter 5 Arithmetic Functions Computer Organisation and Architecture 35
Chapter 5 Arithmetic Functions Computer Organisation and Architecture
RitikSharma297999
26 views
syakira bhasa inggris (1) (1).pptx....... 5
syakira bhasa inggris (1) (1).pptx.......
ourcommunity56
28 views
View More in This Category