Saturday, June 4, 2016

Pakistan-based group uses 7th Pay Commission to target Indian govt officials: FireEye

Pakistan-based group uses 7th Pay Commission to target Indian govt officials: FireEye
pay-matrix-7th-CPC-fake

 The emails were allegedly sent to government officials from timesofindiaa.in, a fake news domain registered by the attackers.

Days after Kaspersky claimed Indian government sites were compromised by a cyberespionage group, cybersecurity firm FireEye, Inc has claimed that a fake news website was used to sent spear phishing emails to Indian government officials as part of cyber attacks by a suspected Pakistan-based group.

“On May 18, 2016 the group registered a fake news website and sent spear phishing emails to Indian government officials. The emails referenced the Indian Government’s 7th Central Pay Commission, a topic of interest among officials,”a blog posted by the company claimed.

“There’s no silver bullet to fend off advanced cyber attacks. It’s critical for Indian organisations to bring together the technology, expertise and threat intelligence necessary to quickly detect and respond to these attacks,” said Bryce Boland, Chief Technology Officer for Asia Pacific at FireEye.

The company claimed the emails were sent to government officials from timesofindiaa.in, a fake news domain registered by the attackers. The emails has a malicious Microsoft Word document attached, requesting the recipient to open it.

fake-email


FireEye said the attachment was designed to create a backdoor called the Breach Remote Administration Tool (BreachRAT)” and said it has not observed this malicious tool being used by these threat actors before. “It allows the attacks to download and run new programs, upload files from the victims’ systems to the attackers’ servers, and a variety of other functions.

The suspected Pakistan-based threat group has been active for several years, conducting suspected intelligence collection operations against South Asian political and military targets, claimed FireEye. “The group is the same that FireEye revealed in March 2016 to have conducted cyber attacks against Indian targets and Pakistani dissidents since 2013. They were observed using malicious documents hosted on websites about the Indian Army, instead of sending these documents directly as an email attachment,”the post claimed, adding that infrastructure used by the group is the same in both attacks.

Source : indianexpress.com

0 comments:

Post a Comment

Now Trending

34% DA Order for Central Govt Employees wef 01.01.2022 - Latest CG Employees DA Order Jan 2022

 DA Order for Central Government Employees from Jan 2022 - Finmin Order 2022 Latest CG Employees DA Order Jan 2022 Dearness Allowance payabl...

Disclaimer:

All efforts have been made to ensure accuracy of the content on this blog, the same should not be construed as a statement of law or used for any legal purposes. Our blog "Central Government Staff news" accepts no responsibility in relation to the accuracy, completeness, usefulness or otherwise, of the contents. Users are advised to verify/check any information with the relevant department(s) and/or other source(s), and to obtain any appropriate professional advice before acting on the information provided in the blog.

Links to other websites that have been included on this blog are provided for public convenience only.

The blog "Central Government Staff news" is not responsible for the contents or reliability of linked websites and does not necessarily endorse the view expressed within them. We cannot guarantee the availability of such linked pages at all times.

Any suggestions write to us
centralgovernmentnews@gmail.com