CERT-In Current Affairs

35% of cyber-attacks on Indian sites from China: CERT-In report

According to recent report by Indian Computer Emergency Response Team (CERT-In), maximum number of cyber-attacks on official Indian websites are from China, US and Russia. The report was forwarded to National Security Council Secretariat (NSCS) and other security agencies. It had analysed cyber-attacks from April-June 2018.

Key Highlights of report

China continues to intrude Indian cyberspace in significant way as cyber-attacks originating from China account for largest 35% of total number of cyber-attacks on official Indian websites followed by US (17%), Russia (15%), Pakistan (9%), Canada (7%) and Germany (5%).

Indian institutions attacked by these malicious activities on cyberspace include Oil and Natural Gas Corporation (ONGC), National Informatics Centre (NIC), Indian Railway Catering and Tourism Corporation (IRCTC), Railways, Centre for Railway Information Systems (CRIS) and some banks like Punjab National Bank (PNB), Oriental Bank of Commerce (OBC), State Bank of India (SBI) and state data centres, particularly in Maharashtra, Madhya Pradesh and Karnataka. CERT-In has advised to take appropriate preventive action.

Pakistan malicious actors from Pakistan are possibly using German and Canadian cyberspace for intruding into Indian cyberspace and carrying out malicious activities. They are targeting by sending spear phishing emails with malware attachments. Phishing attacks are usually in form of email from trusted source where they ask for personal details such as bank details personal details, passwords.

Indian Computer Emergency Response Team (CERT-In)

CERT-In is nodal agency for information technology (cyber) security under aegis of Department of Information Technology, Ministry of Electronics and IT. It was established in 2004. Its mandate is to protect Indian cyberspace and software infrastructure against destructive and hacking activities. It also responds to computer security incidents, report on vulnerabilities and promote effective IT security practices throughout country. It also issue guidelines, vulnerability notes, advisories and whitepapers regarding to information security practices, prevention.

Month: Categories: India Current Affairs 2018

Tags:

CERT-In issues alert on Locky Ransomware

The Indian Computer Emergency Response Team (CERT-In) has issued an alert about spread of new ransomware (malicious software) ‘Locky’ that can lock computers and demand ransom for unlocking them.

Ransomware is basically type of malicious software designed to block access to computer system until sum of money is paid.

Locky Ransomware

Locky ransomware is being circulated through massive spam campaign in which spam emails with common subject lines target computers by locking them and demanding ransom for restoring access to users. It first had surfaced in 2016.

It encrypts files on victims’ PCs and adds a .locky file extension. The attackers then demand ransom in Bitcoin payment to unlock the files. It is demanding ransom of half bitcoin, which at present rate is equivalent to over Rs 1.5 lakh. So far, it has extorted more than $7.8 million in payments, according to a recent study. However, its impact on Indian systems is not clear so far.

Comment

The Locky Ransomware cyberattack is third major ransomware attack this year after Wannacry and Petya which had crippled thousands of computers, including those of multinational corporations. According to an Assocham PWC study, India was third worst affected country in list of over 100 countries hit by Wannacry in May 2017.

CERT-In

CERT-In is nodal agency for information technology security under aegis of Department of Information Technology, Ministry of Electronics and IT. It was established in 2004. Its mandate is to protect Indian cyberspace and software infrastructure against destructive and hacking activities. It also responds to computer security incidents, report on vulnerabilities and promote effective IT security practices throughout country. It also issue guidelines, vulnerability notes, advisories, and whitepapers regarding to information security practices, prevention,

Month: Categories: India Current Affairs 2018

Tags:

Advertisement

12345