Weekly Current Affairs

Notice

As India goes digital, hacking targets multiply

  • Phishing websites created by cybercriminals spoofed 26 Indian banks in order to steal personal information
  • Congress Vice President Rahul Gandhi’s Twitter account was hacked and some expletives-laden tweets were posted. Later, Congress Party’s official Twitter account got breached.
  • At a time when an increasing number of Indians are going digital and doing transactions online, these hacking incidents expose the country’s cybersecurity vulnerabilities.
  • In India, there has been a surge of about 350 per cent of cybercrime cases registered under the Information Technology (IT) Act, 2000 from the year of 2011 to 2014.
  • The hacking of the social media networks of Mr. Gandhi and Congress Party can be a potential backdoor malware being present on a computer system on which both the accounts might have been simultaneously accessed. This can also be a long persistent and targeted attack called ‘spear phishing’. It is an e-mail spoofing fraud attempt that targets a specific organisation or individual. It seeks unauthorised access to confidential data.
  • As the digital economy grows, consumers should be aware of the risks that accompany the convenience. Ease of online payments opens new avenues for criminals to trick consumers into divulging their sensitive banking information.
  • csecurepay.com registered in October this year, that appears to be an online payment gateway, but it is actually a phishing website that leads to the capturing of customer information from 26 banks operating in India.
  • Experts are also seeing a shift in the strategy of hackers, who are now targeting mobile devices in order to obtain the sensitive information that is stored on them.
  • The new malware campaign, named Gooligan, roots Android devices and steals email addresses and authentication tokens stored on them. With this information, attackers can access users’ sensitive data from Gmail, Google Photos, Google Docs, Google Play and Google Drive.
  • This theft of over a million Google account details is very alarming and represents the next stage of cyber- attacks.