Halo, saya Hello, I am

Adi Rizky Pratama

Saya seorang I am a

Dosen Teknik Informatika di UBP Karawang sekaligus Programmer Freelance. Menggabungkan riset akademis di bidang AI & Machine Learning dengan pengembangan solusi teknologi nyata untuk industri. Lecturer of Informatics Engineering at UBP Karawang and a Freelance Programmer. Combining academic research in AI & Machine Learning with the development of real-world technology solutions for industry.

6+
Publikasi Publications
50+
Sitasi Citations
10+
Proyek Projects
Dosen & Peneliti Lecturer & Researcher
Full-Stack Dev Full-Stack Dev
AI / ML AI / ML
Geser untuk efek 3D Drag for 3D effect
Adi Rizky Pratama

Akademisi yang Melek Industri Industry-Savvy Academician

Sebagai dosen di Program Studi Teknik Informatika Universitas Buana Perjuangan Karawang, saya mengajar dan meneliti di bidang kecerdasan buatan, pengolahan citra, dan pengembangan aplikasi. Di sisi lain, pengalaman sebagai programmer freelance memungkinkan saya menjembatani teori dan praktik — menghadirkan solusi teknologi yang didasari riset ilmiah yang kuat. As a lecturer in the Informatics Engineering Study Program at Universitas Buana Perjuangan Karawang, I teach and conduct research in artificial intelligence, image processing, and application development. On the other hand, my experience as a freelance programmer allows me to bridge theory and practice — delivering technology solutions built on robust scientific research.

Menjabat sebagai Kepala Pusat Data dan Informasi (PUSDATIN) UBP Karawang, saya terbiasa memimpin proyek digitalisasi skala besar dan berkolaborasi lintas tim. Serving as the Head of the Center for Data and Information (PUSDATIN) at UBP Karawang, I am accustomed to leading large-scale digitalization projects and collaborating across teams.

Dosen Tetap Full-time Lecturer

Teknik Informatika, UBP Karawang Informatics Engineering, UBP Karawang

Riset AI & ML AI & ML Research

CNN, LSTM, k-NN, OCR

Kepala PUSDATIN Head of PUSDATIN

Digitalisasi & Data Center Digitalization & Data Center

Freelance Dev Freelance Dev

Web & Mobile Applications Web & Mobile Applications

Apa yang Bisa Saya Bantu? How Can I Help You?

Menggabungkan keahlian akademis dan pengalaman industri untuk memberikan solusi terbaik. Combining academic expertise and industry experience to deliver the best solutions.

Software Development

Pengembangan aplikasi web & mobile custom sesuai kebutuhan bisnis Anda. Dari landing page hingga sistem enterprise. Custom web & mobile application development tailored to your business needs. From landing pages to enterprise systems.

IT Consulting

Konsultasi arsitektur sistem, pemilihan teknologi, transformasi digital, dan optimasi infrastruktur IT. Consulting on system architecture, technology stack selection, digital transformation, and IT infrastructure optimization.

Corporate Training

Pelatihan pemrograman, data science, dan AI untuk tim korporat maupun institusi pendidikan. Programming, data science, and AI training for corporate teams and educational institutions.

Research Collaboration

Kolaborasi riset di bidang machine learning, computer vision, dan data mining untuk publikasi ilmiah. Research collaboration in machine learning, computer vision, and data mining for scientific publications.

Tech Stack yang Dikuasai Mastered Tech Stack

HTML5
CSS3
JavaScript
Bootstrap
PHP
Laravel
Node.js
Python
TensorFlow
Keras
MySQL
PostgreSQL
Git & GitHub

Tri Dharma Perguruan Tinggi Three Pillars of Higher Education

Pengajaran, penelitian, dan pengabdian masyarakat sebagai fondasi kontribusi ilmiah. Teaching, research, and community service as the foundation of scientific contribution.

Mata Kuliah yang Diampu Courses Taught

Pemrograman Web Web Programming
Kecerdasan Buatan Artificial Intelligence
Machine Learning Machine Learning
Pengolahan Citra Digital Digital Image Processing
Basis Data Database Systems
Pemrograman Mobile Mobile Programming

Pengabdian Masyarakat Community Service

Digitalisasi UMKM melalui implementasi e-learning, QRIS, dan sistem informasi untuk pelaku usaha mikro di Karawang. Digitalization of MSMEs through the implementation of e-learning, QRIS, and information systems for micro-businesses in Karawang.

Highlight Publikasi Riset Research Publication Highlights

1

Penggunaan media pembelajaran Wordwall untuk meningkatkan minat dan motivasi belajar siswa The use of Wordwall learning media to improve students' interest and learning motivation

Zahro, N. A. Q., & Pratama, A. R.

50+ Sitasi 50+ Citations Jurnal Journal
2

Perbandingan Algoritma Apriori Dan FP-Growth Terhadap Market Basket Analysis Comparison of Apriori and FP-Growth Algorithms for Market Basket Analysis

Fathurrahman, M., Pratama, A. R., & Al-Mudzakir, T.

Data Mining Jurnal Journal
3

Implementasi CNN Untuk Klasifikasi Citra Kemasan Kardus Defect dan No Defect CNN Implementation for Defect and No Defect Cardboard Box Image Classification

Antoni, A., Rohana, T., & Pratama, A. R.

Computer Vision CNN

Proyek & Hasil Karya Projects & Creative Works

Koleksi proyek dari dunia akademik, freelance, dan open source. A collection of projects from academic, freelance, and open-source fields.

Memuat proyek... Loading projects...

Pengalaman & Pendidikan Experience & Education

Perjalanan karir di dunia akademik dan industri teknologi. Career journey in the academic world and technology industry.

Akademik Academic 2018 — Sekarang 2018 — Present

Dosen Tetap Full-time Lecturer

Universitas Buana Perjuangan Karawang

Mengajar mata kuliah Pemrograman Web, AI, Machine Learning, dan membimbing riset mahasiswa di Program Studi Teknik Informatika. Teaching Web Programming, AI, Machine Learning, and supervising student research in the Informatics Engineering Study Program.

Freelance Freelance 2019 — Sekarang 2019 — Present

Freelance Web Programmer Freelance Web Programmer

Berbagai Klien & Proyek Various Clients & Projects

Mengembangkan aplikasi web dan mobile untuk klien dari berbagai industri. Spesialisasi di PHP/Laravel, JavaScript, dan Python. Developing web and mobile applications for clients across various industries. Specializing in PHP/Laravel, JavaScript, and Python.

Akademik Academic 2018 — Sekarang 2018 — Present

Kepala PUSDATIN Head of PUSDATIN

UBP Karawang

Memimpin Pusat Data dan Informasi universitas. Mengelola infrastruktur IT, sistem informasi akademik, dan digitalisasi kampus. Leading the university's Center for Data and Information. Managing IT infrastructure, academic information systems, and campus digitalization.

Pengabdian Service 2021 — Sekarang 2021 — Present

Digitalisasi UMKM MSME Digitalization

Karawang & Sekitarnya Karawang & Surrounding Areas

Program pengabdian masyarakat: pelatihan IT, implementasi e-learning dan QRIS untuk pelaku usaha mikro. Community service program: IT training, e-learning implementation, and QRIS integration for micro-businesses.

Pendidikan Education 2015 — 2017

S2 — Magister Teknik Informatika Master of Informatics Engineering

Universitas / Institusi University / Institution

Fokus studi pada kecerdasan buatan, pengolahan citra, dan machine learning. Study focus on artificial intelligence, image processing, and machine learning.

Pendidikan Education 2011 — 2015

S1 — Sarjana Teknik Informatika Bachelor of Informatics Engineering

Universitas / Institusi University / Institution

Fondasi keilmuan di bidang pemrograman, basis data, jaringan komputer, dan rekayasa perangkat lunak. Foundational knowledge in programming, databases, computer networks, and software engineering.

Hubungi Saya Contact Me

Ada proyek, kolaborasi riset, atau pertanyaan? Jangan ragu untuk menghubungi. Have a project, research collaboration, or question? Feel free to reach out.

Mari Berkolaborasi! Let's Collaborate!

Saya selalu terbuka untuk peluang kolaborasi, baik di bidang akademik maupun pengembangan software. Silakan hubungi saya melalui platform berikut. I am always open to collaboration opportunities, both in the academic sphere and software development. Please contact me through the platforms below.

Artikel & Edukasi Articles & Education

Berbagi pengetahuan seputar AI, machine learning, web programming, dan riset teknologi. Sharing insights on AI, machine learning, web programming, and tech research.

Advertisement
Responsive Ad Unit (Top Banner)

Rabu, 08 Juli 2026

When Discord AI Fails: 8,000 Accounts Blocked Over Chessboard Image Uploads

When Discord AI Fails: 8,000 Accounts Blocked Over Chessboard Image Uploads

When Discord AI Fails: 8,000 Accounts Blocked Over Chessboard Image Uploads

Chronology of Discord AI Moderation Errors

Discord Confirms 8,000 Accounts Were Wrongly Blocked

Discord officially acknowledged that around 8,000 user accounts received automatic permanent suspensions due to mistaken moderation decisions. In a statement on its support forum, the company called it a “mass false positive”—no actual violation of content policies by the account holders. Users who had been active suddenly found their accounts gone without warning, triggering a wave of confusion and frustration.

Bug Timeline and the Impact of Automatic Permanent Bans

The flaw in the content detection pipeline lasted nearly 24 hours before being disabled. During that window, any image triggering a certain pattern was immediately hit with a permanent ban—not just a temporary freeze. As a result, accounts along with all the servers they managed, chat histories, and friend lists became inaccessible. Trapped users lost not only communication access but also digital identities they had built over years.

Technical Cause of False Positives in the Detection System

Content Detector Bug That Flagged Safe Images as Dangerous

A revision to the image classification model meant to detect violent or illegal content introduced an error in the pre-processing layer. Visual features such as geometric repetition, grids, and transparent areas were mistakenly treated as fingerprints of prohibited content. Worse, the system didn’t escalate these findings to human reviewers—a “zero tolerance” protocol directly imposed permanent sanctions, just as it would for high-risk harmful material. Discord described the incident as a “rare gap where the model’s confidence score spiked without any correlation to real content.”

Trigger Image Types: Spreadsheets, Chessboards, Game Textures, and Transparent Backgrounds

User complaints predominantly pointed to uploads containing repeated checkerboard-like patterns. Screenshots of chessboards, spreadsheet grids, floor textures from games, and assets with transparent backgrounds became the main triggers. The algorithm captured the regular grid structure as “suspicious” because of its resemblance to the compressed noise sometimes found in illicit imagery. So someone sharing a meeting schedule in table form or celebrating a chess move on a hobby server ended up receiving Discord’s harshest penalty.

Impact and User Complaints About the Mass Blocking

Accounts Suspended Over Simple Checkered Pattern Uploads

A programming community manager recounted his long-standing account being instantly wiped after sending a spreadsheet screenshot containing a project task division. A chess teacher lost access to an online class server simply for sharing a chessboard diagram. Dozens of similar reports flooded social media, all threading the same narrative: “plain checkered” images were mistaken for illegal content, and immediate, non-negotiable sanctions were applied.

Community Criticism on Risks to Remote Work and Gaming Communities

This incident highlights the danger of fully automated moderation without safeguards. Remote workers who rely on Discord for teams and clients felt betrayed; likewise, gaming communities whose activities revolve around sharing screenshots. Losing an account is not just technical—it can sever professional networks, erase work archives, or dissolve well-established digital social spaces. The hashtag #DiscordBanError echoed, urging transparency and guarantees of full restoration.

Discord’s Response and Comparisons with Similar Incidents

AI Moderation Mechanism, Human Review Process, and Plans for Additional Safeguards

Discord restored the affected accounts and sent apology emails. The engineering team immediately revised the model and added a mandatory human verification layer before permanent bans are issued, especially for content categories with a high false-positive risk. They also plan to implement a “rate limit” on automated actions so that waves of suspensions don’t recur. However, the company hasn’t offered compensation for the temporary access loss; users are simply advised to enable independent data backups.

Instances of Erroneous AI Moderation on Instagram and Facebook Groups in 2025

Discord’s error is not the first this year. In early 2025, Instagram removed thousands of posts featuring floral illustrations because they were mistaken for adult content; Facebook Groups disabled dozens of landscape photography groups after the auto-detector wrongly flagged misty mountain images as hate speech. Both platforms also faced similar waves of protest. For Discord, with its more intimate user base and accounts that often serve as primary digital identities, the impact feels more personal: it’s not just content that disappears, but a virtual home for many communities.

This article was written by artificial intelligence (AI) using the deepseek-v4-pro model via SumoPod AI.

This article was translated by Artificial Intelligence (AI) using deepseek-v4-pro via SumoPod AI.

Ketika AI Discord Gagal: 8.000 Akun Diblokir Gara-gara Unggah Gambar Papan Catur

Ketika AI Discord Gagal: 8.000 Akun Diblokir Gara-gara Unggah Gambar Papan Catur

Ketika AI Discord Gagal: 8.000 Akun Diblokir Gara-gara Unggah Gambar Papan Catur

Kronologi Kesalahan Moderasi AI Discord

Konfirmasi Discord tentang 8.000 Akun yang Diblokir Keliru

Discord secara resmi mengakui bahwa sekitar 8.000 akun pengguna menerima penangguhan permanen otomatis akibat keputusan keliru sistem moderasi. Dalam pernyataan di forum dukungan, perusahaan menyebutnya “false positive massal”—tidak ada pelanggaran kebijakan konten sungguhan dari para pemilik akun. Para pengguna yang tadinya aktif tiba-tiba mendapati akun mereka lenyap tanpa peringatan, memicu gelombang kebingungan dan frustrasi.

Rentang Waktu Bug dan Dampak Sanksi Permanen Otomatis

Cacat pada alur deteksi konten berlangsung hampir 24 jam sebelum dinonaktifkan. Selama jendela itu, tiap gambar yang memicu pola tertentu langsung diganjar sanksi permanen—bukan sekadar pembekuan sementara. Akibatnya, akun beserta seluruh server yang dikelola, riwayat percakapan, dan daftar teman tidak bisa diakses. Pengguna yang terjebak tidak hanya kehilangan akses komunikasi, tetapi juga identitas digital yang sudah dibangun bertahun-tahun.

Penyebab Teknis False Positive pada Sistem Deteksi

Bug Pendeteksi Konten yang Mengidentifikasi Gambar Aman sebagai Berbahaya

Pembaruan model klasifikasi gambar untuk mendeteksi materi kekerasan atau konten ilegal membawa galat pada lapisan pra-pemrosesan. Fitur visual seperti pengulangan geometris, kisi-kisi, dan area transparan justru dianggap sebagai sidik jari konten terlarang. Masalahnya, sistem tidak melimpahkan temuan itu ke peninjau manusia—protokol “zero tolerance” langsung menjatuhkan sanksi permanen, sebagaimana penanganan materi berbahaya tingkat tinggi. Discord menyebut insiden ini sebagai “celah langka di mana skor keyakinan model melonjak tanpa korelasi isi sejati.”

Jenis Gambar Pemicu: Spreadsheet, Papan Catur, Tekstur Gim, dan Latar Transparan

Keluhan pengguna mengerucut pada unggahan dengan pola kotak-kotak berulang. Tangkapan layar papan catur, lembar lajur spreadsheet, tekstur lantai dari gim, serta aset dengan latar belakang transparan menjadi pemicu utama. Algoritma menangkap struktur grid teratur sebagai “mencurigakan” karena kemiripan noise terkompresi yang kadang muncul pada citra konten terlarang. Dengan demikian, seseorang yang membagikan jadwal rapat dalam bentuk tabel atau merayakan langkah catur di server hobi malah dijatuhi hukuman terberat Discord.

Dampak dan Keluhan Pengguna atas Pemblokiran Massal

Laporan Akun Ditangguhkan karena Unggahan Pola Kotak-Kotak Sederhana

Seorang pengelola komunitas pemrograman menceritakan akun lamanya musnah seketika setelah mengirim tangkapan layar spreadsheet berisi pembagian tugas proyek. Seorang guru catur kehilangan akses ke server kelas daring hanya karena membagikan diagram papan catur. Puluhan laporan sejenis membanjiri media sosial, dengan benang merah yang sama: gambar “kotak-kotak polos” disangka konten ilegal, dan sangsi langsung dijatuhkan tanpa bisa ditawar.

Kritik Komunitas terhadap Risiko Kerugian pada Kerja Jarak Jauh dan Komunitas Gim

Insiden ini menyorot bahaya moderasi otomatis penuh tanpa pengaman. Pekerja jarak jauh yang menggantungkan tim dan klien pada Discord merasa dikhianati; begitu pula komunitas gim yang aktivitasnya sarat berbagi tangkapan layar. Kehilangan akun bukan hanya soal teknis—bisa berarti putusnya jejaring profesional, lenyapnya arsip kerja, atau bubarnya ruang sosial digital yang telah mapan. Tagar #DiscordBanError bergema, mendesak transparansi dan jaminan pemulihan penuh.

Langkah Respons Discord dan Perbandingan Insiden Serupa

Mekanisme Moderasi AI, Proses Peninjauan Manusia, dan Rencana Perlindungan Tambahan

Discord memulihkan akun-akun terdampak dan menyampaikan permintaan maaf lewat email. Tim teknik segera merevisi model dan menambahkan lapisan verifikasi manusia wajib sebelum sanksi permanen dijatuhkan, terutama untuk kategori konten berisiko tinggi false positive. Mereka juga berencana memberlakukan “batas laju” pada aksi otomatis agar ledakan penangguhan tidak terulang. Namun, perusahaan belum menawarkan kompensasi atas kehilangan akses yang sempat terjadi; pengguna hanya disarankan mengaktifkan pencadangan data mandiri.

Kasus Moderasi AI Keliru di Instagram dan Facebook Groups pada 2025

Kesalahan Discord bukan yang pertama di tahun ini. Awal 2025, Instagram menghapus ribuan posting ilustrasi flora karena dikira konten dewasa; Facebook Groups menonaktifkan puluhan grup fotografi lanskap karena pendeteksi otomatis salah menandai gambar pegunungan berkabut sebagai ujaran kebencian. Kedua platform itu juga menghadapi gelombang protes serupa. Bagi Discord, dengan basis pengguna yang lebih intim dan akun yang seringkali menjadi identitas digital primer, dampaknya terasa lebih personal: bukan hanya konten yang hilang, melainkan rumah virtual bagi banyak komunitas.

Artikel ini ditulis oleh kecerdasan buatan (AI) menggunakan model deepseek-v4-pro via SumoPod AI.

Beware of Backdoor in Tenda Routers: CVE-2026-11405 Flaw and How to Protect Your Network

Beware of Backdoor in Tenda Routers: CVE-2026-11405 Flaw and How to Protect Your Network

Beware of Backdoor in Tenda Routers: CVE-2026-11405 Flaw and How to Protect Your Network

A surprising discovery comes from network devices widely used in homes and small offices. Security researchers have uncovered a hidden backdoor in the firmware of several Tenda routers. This flaw, registered as CVE-2026-11405, allows attackers to take full control of the device with just a simple trick.

Hidden Backdoor Found in Tenda Router Firmware

Poor software security practices have backfired again. In the login function of Tenda routers, a secret, undocumented authentication mechanism is embedded. In other words, there is a “backdoor” that was either intentionally or unintentionally created by the developers.

This mechanism allows the login process to be verified through two paths: the normal path using administrator credentials, and a secret path that compares a hard-coded string (a permanent factory default password). Because the string is embedded in the firmware and is the same for all affected devices, anyone who knows it can log in without needing to know the user's actual password.

Confirmed affected models include, but are not limited to:

  • Tenda AC10
  • Tenda AC15
  • Tenda AC18
  • Several AC9 and N series models with outdated firmware versions.

How the CVE-2026-11405 Vulnerability Works

Technically, the login function in these routers performs dual verification. First, it accepts the username and password from the user. Second, in parallel, it compares the submitted password with a certain hard-coded string stored in memory. If the password matches that secret string, authentication is immediately considered successful—regardless of whether the username is valid or even if the username is left blank.

This is the core of the bypass: an attacker simply sends a login request with any username (or left blank) and the password as that secret string. The system will skip the entire normal verification process and grant full administrator access. No complex engineering is needed, just a specially crafted HTTP request.

Impact of Backdoor Exploitation on Users

The impact is very serious because the router is the main gateway for data traffic on the network. With full administrator access, an attacker can:

  • Change DNS settings to redirect victims to fake credential-stealing sites.
  • Open ports and forward traffic to malicious servers (port forwarding).
  • Intercept local network communications.
  • Lock out legitimate users from the device by changing the original password.

On a broader scale, infected devices can be made part of a botnet. Hijacked routers can be used to launch DDoS attacks, spread malware to other devices on the network, or serve as dark proxies for illegal activities. Given that many users rarely check or update router firmware, the potential for spread is very high.

Mitigation Steps While Waiting for a Patch from Tenda

As of this writing, Tenda has not released an official patch for all affected models. While waiting for updates, protect your network with the following steps that can be directly applied through the router's web interface.

1. Disable Remote Web Management

This feature allows access to the admin panel from the internet. Turn it off immediately to prevent the flaw from being exploited externally.

  • Access the router via the local IP address (default: 192.168.0.1 or 192.168.1.1).
  • Go to the System SettingsRemote Management menu.
  • Uncheck the Enable or Allow Remote Access option.
  • Save settings.

You can also block access from the WAN interface with additional firewall rules if the router supports it. Example commands via Telnet/SSH (if enabled):

iptables -I INPUT -p tcp --dport 80 -i ppp0 -j DROP
iptables -I INPUT -p tcp --dport 443 -i ppp0 -j DROP

2. Change the Default LAN IP Address

Mass attacks often target standard default gateways. By changing the router's IP address, you reduce the risk of automated scanning.

  • Go to the NetworkLAN Settings menu.
  • Change the IP Address from 192.168.0.1 to a less common subnet, for example 192.168.87.254.
  • Save, the router will restart. Make sure you remember the new address.

Other equally important steps:

  • Ensure the router's firewall is active.
  • If possible, place the router behind an additional security device or use separate network segments for critical devices.
  • Regularly monitor official Tenda announcements regarding the availability of patched firmware.

This vulnerability is a reminder that network hardware also needs attention just like computers or phones. Until the manufacturer acts, vigilance and self-mitigation are our best defense.

This article was written by artificial intelligence (AI) using the deepseek-v4-pro model via SumoPod AI.

This article was translated by Artificial Intelligence (AI) using deepseek-v4-pro via SumoPod AI.

Waspada Backdoor di Router Tenda: Celah CVE-2026-11405 dan Cara Melindungi Jaringan Anda

Waspada Backdoor di Router Tenda: Celah CVE-2026-11405 dan Cara Melindungi Jaringan Anda

Waspada Backdoor di Router Tenda: Celah CVE-2026-11405 dan Cara Melindungi Jaringan Anda

Sebuah temuan mengejutkan datang dari perangkat jaringan yang banyak dipakai di rumah dan kantor kecil. Peneliti keamanan mengungkap keberadaan backdoor tersembunyi di dalam firmware sejumlah router Tenda. Celah ini, yang terdaftar dengan kode CVE-2026-11405, memungkinkan penyerang mengambil alih kendali penuh perangkat hanya dengan satu trik sederhana.

Temuan Backdoor Tersembunyi di Firmware Router Tenda

Praktik pengamanan yang buruk pada sisi perangkat lunak kembali menjadi bumerang. Pada fungsi login router Tenda, tertanam mekanisme autentikasi rahasia yang tidak terdokumentasi. Dengan kata lain, ada “pintu belakang” yang sengaja atau tidak sengaja diciptakan oleh pengembang.

Mekanisme ini memungkinkan proses login diverifikasi melalui dua jalur: jalur normal menggunakan kredensial administrator, dan jalur rahasia yang membandingkan hard-coded string (kata sandi bawaan pabrik yang permanen). Karena string tersebut tertanam di firmware dan sama untuk semua perangkat dengan versi terdampak, siapa pun yang mengetahuinya bisa masuk tanpa perlu mengetahui kata sandi asli pengguna.

Model yang terkonfirmasi terdampak mencakup, namun tidak terbatas pada:

  • Tenda AC10
  • Tenda AC15
  • Tenda AC18
  • Beberapa model AC9 dan seri N dengan versi firmware yang belum diperbarui.

Cara Kerja Kerentanan CVE-2026-11405

Secara teknis, fungsi login di router ini melakukan verifikasi ganda. Pertama, ia menerima username dan password dari pengguna. Kedua, secara paralel, ia membandingkan password yang dikirim dengan hard-coded string tertentu yang tersimpan di memori. Apabila password cocok dengan string rahasia itu, autentikasi langsung dianggap berhasil—tanpa peduli apakah username valid atau bahkan apakah username diisi dengan karakter kosong.

Inilah inti bypass: penyerang cukup mengirimkan permintaan login dengan username apa pun (atau dikosongkan) dan password berupa string rahasia tersebut. Sistem akan melewati seluruh proses verifikasi normal dan memberikan akses administrator penuh. Tidak diperlukan rekayasa rumit, cukup satu permintaan HTTP yang dibuat khusus.

Dampak Eksploitasi Backdoor Terhadap Pengguna

Dampaknya sangat serius karena router adalah gerbang utama lalu lintas data di jaringan. Dengan akses administrator penuh, penyerang dapat:

  • Mengubah pengaturan DNS untuk mengarahkan korban ke situs palsu pencuri kredensial.
  • Membuka port dan meneruskan lalu lintas ke server jahat (port forwarding).
  • Menyadap komunikasi jaringan lokal.
  • Mengunci pengguna sah dari perangkat dengan mengganti kata sandi asli.

Dalam skala lebih luas, perangkat yang sudah terinfeksi dapat dijadikan bagian dari botnet. Router yang dibajak bisa dimanfaatkan untuk melancarkan serangan DDoS, menyebarkan malware ke perangkat lain di jaringan, atau menjadi proxy gelap untuk aktivitas ilegal. Mengingat banyak pengguna jarang memeriksa atau memperbarui firmware router, potensi penyebarannya sangat tinggi.

Langkah Mitigasi Menunggu Patch dari Tenda

Hingga artikel ini ditulis, Tenda belum merilis patch resmi untuk semua model terdampak. Sembari menunggu pembaruan, lindungi jaringan Anda dengan langkah-langkah berikut yang bisa langsung diterapkan melalui antarmuka web router.

1. Nonaktifkan Manajemen Web Jarak Jauh (Remote Web Management)

Fitur ini memungkinkan akses ke panel admin dari internet. Matikan segera agar celah tidak bisa dieksploitasi dari luar.

  • Akses router melalui alamat IP lokal (default: 192.168.0.1 atau 192.168.1.1).
  • Masuk ke menu System SettingsRemote Management.
  • Hilangkan centang pada opsi Enable atau Allow Remote Access.
  • Simpan pengaturan.

Anda juga bisa memblokir akses dari antarmuka WAN dengan aturan firewall tambahan jika router mendukung. Contoh perintah via Telnet/SSH (bila diaktifkan):

iptables -I INPUT -p tcp --dport 80 -i ppp0 -j DROP
iptables -I INPUT -p tcp --dport 443 -i ppp0 -j DROP

2. Ubah Alamat IP LAN Bawaan

Serangan massal sering kali menyasar default gateway standar. Dengan mengganti alamat IP router, Anda mengurangi risiko pemindaian otomatis.

  • Masuk ke menu NetworkLAN Settings.
  • Ubah IP Address dari 192.168.0.1 menjadi subnet yang kurang lazim, misalnya 192.168.87.254.
  • Simpan, router akan me-restart. Pastikan Anda mengingat alamat baru tersebut.

Langkah lain yang tak kalah penting:

  • Pastikan firewall router dalam kondisi aktif.
  • Bila memungkinkan, tempatkan router di belakang perangkat keamanan tambahan atau gunakan segmen jaringan terpisah untuk perangkat kritis.
  • Rutin pantau pengumuman resmi Tenda mengenai ketersediaan firmware perbaikan.

Kerentanan ini menjadi pengingat bahwa perangkat keras jaringan juga butuh perhatian seperti halnya komputer atau ponsel. Sampai pabrikan bertindak, kewaspadaan dan mitigasi mandiri adalah pertahanan terbaik kita.

Artikel ini ditulis oleh kecerdasan buatan (AI) menggunakan model deepseek-v4-pro via SumoPod AI.

Phishing Surge 2026: As Scammers Become More Sophisticated, Humans Can No Longer Go It Alone

Phishing Surge 2026: As Scammers Become More Sophisticated, Humans Can No Longer Go It Alone

Phishing Surge 2026: As Scammers Become More Sophisticated, Humans Can No Longer Go It Alone

Q1 2026 Phishing Link Blocking Hits 157 Million

Kaspersky's latest data shows a significant spike in the fight against phishing. During the first quarter of 2026, the company's security solutions blocked 157 million attempts to access malicious links — up 23% from the same period last year. Behind that figure lies an even more alarming reality: a concurrent global survey reveals that half of respondents admitted to being targeted or falling victim to online scams in the past year. Phishing is no longer the tale of Nigerian prince emails; it has become a structured fraud machine that exploits every lapse in our attention.

Manipulative Tactics: From World Cup Euphoria to Data Leaks

Cybercriminals are becoming increasingly adept at reading the room. The 2026 World Cup became a fertile ground: fake ticket sale sites, “official” prize draws that drain data, and illegal streams laced with malware. Perpetrators craft narratives that match victims' hopes exactly, making offers feel natural and urgent.

However, the most dangerous scenarios arise from combinations of leaked data. Imagine receiving an email that greets you by full name, mentions a credit card transaction from two days ago, and asks for confirmation “for security purposes”. That information is no guesswork; it comes from heaps of data leaked in various previous incidents. Perpetrators stitch it together into a personal trap that is hard to resist. Our trust in small details is precisely what they exploit to build an illusion of legitimacy.

How Kaspersky Detects the Invisible

Amid this escalation, reactive approaches are obsolete. Kaspersky's anti-phishing technology now relies on machine learning trained on billions of threat samples. The algorithms not only scan URLs but also analyze visual structure, page behavior, and domain relationships in real time — capable of delivering a verdict on a suspicious link in an instant, even before someone gets a chance to click it.

Its protection scope also goes beyond conventional phishing. Fake online stores selling goods at unrealistically low prices, bogus crypto investment schemes, and counterfeit digital currency apps — all are detected through continuously updated analysis patterns. In essence, the system does not chase a single type of fraud but maps the behavioral DNA of scammers across the entire digital ecosystem.

AI: The New Reality of Threats, and Why We Need Integrated Defense

Marina Titova, a cybersecurity expert, calls this phenomenon “the new reality of threats.” The rise of generative AI makes producing phishing content — text, voice, even video — extremely easy and cheap. Perpetrators can churn out thousands of spear-phishing email variants without grammatical errors, in dozens of languages, with a style that perfectly mimics official communications from a bank or a colleague.

“Humans are now facing threats designed by machines that understand our psychology,” said Titova.

Human detection limitations are becoming an ever-widening gap. When tired, in a hurry, or overly trusting of a flawless appearance, anyone can be deceived. This is where the need for integrated protection becomes non-negotiable. Not just passive antivirus, but a system capable of reading context, cutting malicious chains before they touch the victim, and educating with timely warnings.

The days when vigilance alone was enough to fend off phishing are over. Threats now speak in a highly nuanced machine language, and the only language that can match it is equally advanced security technology.

This article was written by artificial intelligence (AI) using the deepseek-v4-pro model via SumoPod AI.

This article was translated by Artificial Intelligence (AI) using deepseek-v4-pro via SumoPod AI.

Lonjakan Phishing 2026: Saat Penipu Makin Canggih, Manusia Tak Bisa Lagi Sendirian

Lonjakan Phishing 2026: Saat Penipu Makin Canggih, Manusia Tak Bisa Lagi Sendirian

Lonjakan Phishing 2026: Saat Penipu Makin Canggih, Manusia Tak Bisa Lagi Sendirian

Pemblokiran Tautan Phishing Q1 2026 Tembus 157 Juta

Data terbaru Kaspersky menunjukkan lonjakan signifikan dalam perang melawan phishing. Selama kuartal pertama 2026, solusi keamanan perusahaan memblokir 157 juta upaya akses ke tautan berbahaya — naik 23% dari periode yang sama tahun lalu. Di balik angka itu, ada kenyataan yang lebih mencemaskan: survei global yang digelar bersamaan mengungkapkan bahwa separuh responden mengaku pernah menjadi sasaran atau korban penipuan online dalam setahun terakhir. Phishing bukan lagi cerita tentang email warisan Nigeria, tetapi mesin penipuan terstruktur yang memanfaatkan setiap celah perhatian kita.

Taktik Manipulatif: Dari Euforia Piala Dunia hingga Data Bocor

Penjahat siber semakin lihai membaca suasana. Gelaran Piala Dunia 2026 menjadi ladang empuk: situs palsu penjualan tiket, undian berhadiah "resmi" yang menguras data, hingga streaming ilegal yang disusupi malware. Pelaku menyusun narasi yang persis dengan harapan korban, membuat penawaran terasa wajar dan mendesak.

Namun, skenario paling berbahaya lahir dari kombinasi data bocor. Bayangkan menerima email yang menyapa dengan nama lengkap Anda, menyebut transaksi kartu kredit dua hari lalu, lalu meminta konfirmasi "demi keamanan". Informasi itu bukan tebakan; ia berasal dari tumpukan data yang bocor di berbagai insiden sebelumnya. Pelaku merangkainya menjadi jebakan personal yang sulit ditolak. Kepercayaan kita pada detail-detail kecil justru dimanfaatkan untuk membangun ilusi legitimasi.

Bagaimana Kaspersky Mendeteksi yang Tak Terlihat

Di tengah eskalasi ini, pendekatan reaktif sudah usang. Teknologi anti-phishing Kaspersky kini bertumpu pada machine learning yang dilatih dengan miliaran sampel ancaman. Algoritma tidak hanya memindai URL, tetapi juga menganalisis struktur visual, perilaku halaman, dan relasi domain secara real-time — mampu menjatuhkan vonis pada tautan mencurigakan dalam sekejap, bahkan sebelum seseorang sempat mengekliknya.

Cakupan perlindungannya pun melampaui phishing konvensional. Toko online palsu yang menjual barang dengan harga terlalu miring, skema investasi kripto abal-abal, hingga aplikasi mata uang digital gadungan — semuanya terdeteksi dengan pola analisis yang terus diperbarui. Intinya, sistem ini tidak mengejar satu jenis penipuan, melainkan memetakan DNA perilaku penipu di seluruh ekosistem digital.

AI: Realitas Baru Ancaman, dan Mengapa Kita Butuh Pertahanan Terintegrasi

Marina Titova, pakar keamanan siber, menyebut fenomena ini sebagai "realitas baru ancaman". Perkembangan AI generatif membuat pembuatan konten phishing — teks, suara, bahkan video — menjadi sangat mudah dan murah. Pelaku dapat memproduksi ribuan varian email spear-phishing tanpa kesalahan gramatikal, dalam puluhan bahasa, dengan gaya yang persis menyerupai komunikasi resmi bank atau rekan kerja.

"Manusia kini menghadapi ancaman yang dirancang oleh mesin yang memahami psikologi kita," ujar Titova.

Keterbatasan deteksi manusia menjadi celah yang terus melebar. Dalam kondisi lelah, terburu-buru, atau terlalu percaya pada tampilan yang sempurna, siapa pun bisa terkecoh. Di titik inilah kebutuhan akan proteksi terintegrasi tak lagi bisa ditawar. Bukan sekadar antivirus yang pasif, melainkan sistem yang mampu membaca konteks, memutus rantai berbahaya sebelum menyentuh korban, dan mengedukasi dengan peringatan yang tepat waktu.

Hari-hari di mana kewaspadaan sendiri cukup untuk menghalau phishing telah berakhir. Ancaman kini berbicara dalam bahasa mesin yang sangat halus, dan satu-satunya bahasa yang bisa mengimbanginya adalah teknologi keamanan yang sama majunya.

Artikel ini ditulis oleh kecerdasan buatan (AI) menggunakan model deepseek-v4-pro via SumoPod AI.

Details of the AI Data Center Project in Batam

Details of the AI Data Center Project in Batam

Details of the AI Data Center Project in Batam

A major step is being prepared in Batam. Princeton Digital Group (PDG), a pan-Asian digital infrastructure company, has chosen this island to build a data center specifically designed to support artificial intelligence (AI) workloads. This project is part of the company's strategic expansion in the Southeast Asian digital corridor.

Capacity and Strategic Partnerships

The facility, to be built on a 6.5-hectare site, will have a total capacity of 72 megawatts (MW). This figure makes it one of the largest AI-ready data centers in Indonesia. PDG is not alone. They are partnering with global technology companies in the advanced cooling and AI accelerator supply chain, ensuring the infrastructure design can handle the high power densities characteristic of modern machine learning computing. Green energy is also part of the commitment: the majority of the electricity supply will come from renewable sources, in line with the company's carbon neutrality target.

Operational Targets and Investment Value

Construction will proceed in phases. The initial service is scheduled to serve customers by mid-2025, with the entire facility expected to be fully operational by the end of 2026 at the latest. The total investment poured in reaches more than US$1 billion (approximately IDR 16 trillion), making it one of the largest digital infrastructure projects outside Java. This figure does not yet include the multiplier effect of the supporting ecosystem that will grow around it.

Impact of the Investment on Batam and Indonesia

More than just a building filled with servers, this project brings a new wave to the local and national economic pulse. Its presence establishes an important pillar in Indonesia's digital transformation map.

Strengthening the Digital Economy Ecosystem

This high-capacity AI data center positions Batam as a critical node for low-latency data processing for global technology companies. For Indonesia, this means strengthening its position in the region's digital supply chain. Cloud and AI services that have so far been run from Singapore can now be hosted in Batam, cutting access times while deepening the domestic data market. Local startups, fintech players, and even the healthcare sector will gain reliable infrastructure alternatives without depending on servers abroad.

Job Creation and Technology Transfer

During the construction phase, the project absorbs thousands of local workers. When operational, the need shifts to data technicians, cooling engineers, cybersecurity specialists, and facility management teams. PDG is committed to implementing intensive training programs for Batam residents, covering data center management certifications and electrical engineering. This knowledge transfer process is often the most lasting legacy—more permanent than the iron and concrete of its buildings.

Batam's Advantages as a Data Center Destination

It is no coincidence that Batam is often sought after by data center investors. The island possesses a number of natural and man-made advantages that are hard to match.

Geographical Location and Supporting Infrastructure

Located only 20 kilometers from Singapore, Batam sits at the crossroads of international submarine optical cables connecting Asia, the Middle East, and Europe. The fiber optic connection to Singapore's financial center offers latency below 1 millisecond, a critical requirement for AI applications and high-frequency trading. In terms of energy, Batam has a relatively stable electricity supply thanks to the Sumatra grid integration and plans for gas-based and solar power plant development.

Regulatory Support and Ease of Investment

The central government has designated Batam as a Special Economic Zone (KEK) and free trade zone. This status allows the import of data center equipment duty-free, as well as simplifying licensing through the Batam Indonesia Free Zone Authority (BP Batam). Government Regulation Number 5 of 2025 on digital downstreaming also provides legal certainty and additional fiscal incentives for data infrastructure investors. All this creates an ecosystem that is a lego land for global companies: easy and clear regulations.

BP Batam's Commitment in Supporting the Project

A project of this scale requires strong institutional backing. BP Batam shows its mettle through concrete support, not mere ceremony.

Guaranteed Electricity Supply and Digital Connectivity

BP Batam and PT PLN ensure the reliability of electricity supply through the development of a special substation and the preparation of a renewable energy certificate (REC) scheme for data center tenants. In terms of connectivity, BP Batam facilitates the acceleration of additional optical cable landings and coordinates carrier-neutral internet services so that data center tenants are not locked into a single operator. The facility is also ensured to be connected to direct data transmission lines to major internet exchange points in Singapore and Jakarta.

Optimization of Investment Services

BP Batam runs an integrated one-stop service that cuts licensing time from months to less than three weeks for strategic projects. A special team was formed to assist PDG from land acquisition, environmental management, to utility connections. This end-to-end approach has proven to be a main magnet that brings investors back. For BP Batam, the success of this project is a catalyst to attract more global players—and to ensure that Batam is not only a geographical bridge, but also a new center for the national digital economy.

This article was written by artificial intelligence (AI) using the deepseek-v4-pro model via SumoPod AI.

This article was translated by Artificial Intelligence (AI) using deepseek-v4-pro via SumoPod AI.

Adi Rizky Pratama

Dosen Teknik Informatika di UBP Karawang sekaligus Programmer Freelance. Menggabungkan riset akademis di bidang AI & Machine Learning dengan pengembangan solusi teknologi nyata untuk industri.

Cari Blog Ini

Diberdayakan oleh Blogger.

Arsip Blog

When Discord AI Fails: 8,000 Accounts Blocked Over Chessboard Image Uploads

When Discord AI Fails: 8,000 Accounts Blocked Over Chessboard Image Uploads...