CERT-In warns of phishing campaign against citizens, businesses


The Hindu
June 22, 2020

The Indian Computer Emergency Response Team (CERT-In) has issued an advisory warning of a large-scale phishing campaign against Indian citizens and businesses aimed at stealing their personal and financial information.
In the advisory, issued late of Saturday, the country’s nodal agency for cyber security said the attackers were likely to use COVID-19 as bait while impersonating government authorities to deceive users into divulging information or downloading malicious files.
“It has been reported that malicious actors are planning a large-scale phishing attack campaign against Indian individuals and businesses [small, medium and large enterprises]. The phishing campaign is expected to use malicious emails under the pretext of local authorities in charge of dispensing government-funded COVID-19 support initiatives,” the advisory said.
Fake websites
It added that such emails are designed to drive recipients towards fake websites where they are deceived into downloading malicious files or entering personal and financial information.
CERT-In said the phishing campaign is expected to be designed to impersonate government agencies, departments and trade associations who have been tasked to oversee the disbursement of the government fiscal aid.
Watch | Cyberthreats during the COVID-19 pandemic
“The malicious actors are claiming to have 2 million individual/citizen email IDs and are planning to send emails with subject: free COVID-19 testing for all residents of Delhi, Mumbai, Hyderabad, Chennai and Ahmedabad, enticing them to provide personal information,” it cautioned.
Further, the agency said these malicious actors were planning to spoof or create fake email IDs impersonating various authorities. “The email ID expected to be used for the phishing campaign is expected to be from email such as “ncov2019@gov.in” and the campaign is expected to start on June 21, 2020.”
CERT-In has advised that citizens do not open attachments in unsolicited emails even if they come from people in their contact list. “...never click on a URL contained in the unsolicited email even if the link seems benign. In case of genuine URLs, close the email and go to the organisation’s website directly through the browser.”
Spelling errors
In addition, it has asked users to beware of spelling errors in emails and websites, to not submit personal information to unknown and unfamiliar websites, to not click URLs providing special offers like winning prize, rewards or cashback offers, among other things and to encrypt and protect their sensitive document to avoid potential leakage.
It also urged people to use anti-virus tools, firewalls and filtering services and asked them to report any unusual activity or attack immediately to CERT-In.
Reference: https://www.thehindu.com/news/national/cert-in-warns-of-phishing-campaign-against-citizens-businesses/article31885002.ece


Comments

Post a Comment

Popular posts from this blog

India Joins Russia in Voting Against West-Backed Move to Expand Powers of OPCW

The Wire: June 28, 2018 New Delhi: India voted against a UK-backed move that will allow the global chemical weapons watchdog to apportion blame for illegal attacks, criticising the decision to grant “unchecked powers” to the head of the group which could be used for “partisan” purposes. On Wednesday, more than two-thirds of the member states of the Organisation for the Prohibition of Chemical Weapons (OPCW) voted to authorise the international body to identify the perpetrators and sponsors of a chemical weapons attack. It also specifically called on the OPCW’s technical secretariat to begin work on identifying the perpetrators behind the use of chemical weapons in Syria. The draft decision, sponsored by 30 countries, was adopted at the fourth special session of the conference of the states parties to the Chemical Weapons Convention at the Hague, with 82 in favour and 24 negative votes. While Europe, the United States and their allies voted ‘yes’, there was strong oppo...
Read more

As financial insecurity rises in urban India, so does investment in insurance

Image
Scroll.in March 13, 2020 Urban Indians are becoming less confident about their financial security. Up to 58% of them fret over financial independence post retirement, which is a 4% increase from last year. An equal share of urban Indians worry about meeting their daily medical expenses and sustaining their current lifestyle once they stop working. The findings are part of a survey published by Delhi-based Max Life Insurance in association with London-based consultancy Kantar. The firms surveyed 7,014 respondents in 25 cities, including six metros, nine tier-1 cities, and 10 tier-2 cities, between December 2019 and January 2020. Source: Max Life Insurance via Quartz The trends Source: Max Life Insurance via Quartz Source: Max Life Insurance via Quartz Source: Max Life Insurance via Quartz A significant share of urban Indians also say their families will have no financial support in the event of the breadwinner’s death. In such a scenario, around 57% believe the family sav...
Read more

ED tracks Swiss Bank A/Cs of Agusta scamster

The Poineer February 10,2019 Rakesh K Singh The Enforcement Directorate (ED) has tracked a dozen Swiss bank accounts in the name of Rajiv Saxena, who is key accused in the Rs 3,600 crore AgustaWestland VVIP chopper scam. The ED has also found out accounts held by  his family members and associates where the kickbacks in the now scrapped deal were allegedly parked. Two bank accounts are in the name of Rajiv Saxena’s  associates Pankaj Jain and Sumita Jain who are also the authorised signatories. The  third is in the name of another associate Ajit Singh Bubber, but Rajiv and his family members are authorised signatories. The remaining nine accounts are largely owned and operated by Rajiv, his family members and associates. Rajiv Saxena was deported by the UAE authorities on January 30 and the ED formally arrested him the next day and a court later granted his remand to the agency. He is currently undergoing custodial interrogation by the ED. The agency had in 2017...
Read more