Hackers reportedly targeted govt’s 2-factor authentication system
By MYBRANDBOOK
A recent study by Secureonix found that threat actors were targeting the government’s email system, Kavach. It is reportedly said that this attack was similar to methods used by SideCopy, a threat actor attributed to Pakistan. Kavach is a 2-factor authentication system that was implemented last year to strengthen the government’s email infrastructure.
According to Secureonix, the first stage of the process included a phishing campaign. When a government official clicks a link in one of the phishing emails, .LNK files (attached to those emails) would execute code, resulting in the execution of a remote access trojan.
The cybersecurity firm said, “Like with many attacks we see today, the initial infection begins with a phishing email containing a compressed file attachment (11222022.zip). When opened by the user, the file contains a single shortcut file designed to trick the user into opening it. The email’s shortcut file appears to be a harmless image file from websites such as Income Tax Delhi. “The purpose of the shortcut file is to appear simply as ‘scanimg.png’ to the user, thus tempting them into thinking they are opening a harmless image file.”
This is not the first time Kavach has been targeted. Talos Intelligence discovered that SideCopy/Transparent Tribe targeted Kavach by deceiving government officials into installing malware that posed as an installer or updater for Kavach.
Talos Intelligence said, “This campaign, which has been ongoing since at least June 2021, uses fake domains mimicking legitimate government and related organizations to deliver malicious payloads, a common Transparent tribe tactic.”
Singapore to remove One-Time Passwords from Bank Accounts
According to the Monetary Authority of Singapore, clients who utilise secur...
Is 375 million Airtel subscribers database breached?
When a hacker claims to have accessed and put up for sale a customer databa...
The government of India intends to construct a single portal f
A single portal will be launched by the Indian government to list all of it...
OpenAI offers GPT-4o, a faster model available to all users at
GPT-4o, a faster and more sophisticated AI model, is made available to all...
Icons Of India : Harsh Jain
Harsh Jain, the co-founder of Dream 11, the largest fantasy sports web...
Icons Of India : Daisy Chittilapilly
Daisy Chittilapilly is the President of Cisco’s India and SAARC regi...
ICONS OF INDIA : S KRISHNAN
S Krishnan as the secretary for the electronics and information techno...
GSTN - Goods and Services Tax Network
GSTN provides shared IT infrastructure and service to both central and...
EESL - Energy Efficiency Services Limited
EESL is uniquely positioned in India’s energy sector to address ener...
IOCL - Indian Oil Corporation Ltd.
IOCL is India’s largest oil refining and marketing company ...
Indian Tech Talent Excelling The Tech World - Aneel Bhusri, CEO, Workday
Aneel Bhusri, Co-Founder and Executive Chair at Workday, has been a le...
Indian Tech Talent Excelling The Tech World - ANJALI SUD, CEO – Tubi
Anjali Sud, the former CEO of Vimeo, now leads Tubi, Fox Corporation...
Indian Tech Talent Excelling The Tech World - NIKESH ARORA, Chairman CEO - Palo Alto Networks
Nikesh Arora, the Chairman and CEO of Palo Alto Networks, is steering ...