18 November 2014

Mumbai: CM Fadnavis offers cops all aid to check cybercrime

The Mumbai police has recognised cybercrime as a crisis area. It said the department is being trained and their capacity is being expanded.

“We received a call from the chief minister. He has asked us to submit our requirements to enhance the capacity building programme we have undertaken to tackle cybercrime,” said Dhananjay Kulkarni, deputy commissioner of police (detection) and Mumbai police spokesperson.

Click here to read more ...... http://www.hindustantimes.com/india-news/mumbai/cm-offers-cops-all-aid-to-check-cybercrime/article1-1286250.aspx

Indian organisations lack skills to combat cybercrime: EY Report

According to the EY Global Information Security survey, companies are lacking agility, budget and skills to mitigate known vulnerabilities and successfully prepare for and address cyber-security.
About 32.14 per cent of the respondents in India said their organisation's total information security budget will stay approximately the same in the coming 12 months despite increasing threats.
More than half (54.55 per cent) of the respondents said they are facing rising threats and 50.91 per cent said they are facing rising vulnerabilities in their information security environment.



Click here to read more .... http://indiatoday.intoday.in/technology/story/indian-organisations-lack-skills-to-combat-cybercrime-report/1/401152.html



Ethical hackers step in to solve cyber crimes

 Even though the cyber cell attached to the national and state security agencies solve several cyber crime cases, it is a few ethical hackers, not coming into the limelight but working behind the scenes, who help the police solve several high-profile cyber crimes.

Another white hat hacker who helps security agencies was of the opinion that it was only in the past that security agencies lacked expertise.
Now, with a lot of training, they have also picked up expertise to track cyber crime, but not to the extent that professionals do.

“The state police crack crimes on social networking websites like Facebook, email-related frauds, etc., but today the crime happens using dark web where only professionals with immense knowledge about The Onion Router (TOR) and with sophisticated expensive equipment can handle. This is where we come into play to help governments,” he said.

Click here to read more ...... http://www.deccanchronicle.com/141118/nation-current-affairs/article/ethical-hackers-step-solve-cyber-crimes

300% rise in cybercrime cases in city since last year

As per the statistics provided by the Mumbai police, cases of hacking, phishing and Nigerian fraud have risen to 36 this year till October from the nine registered during the same period last year. While 136 cyber crime offences were registered in city in 2013 till October, this year, the number is 418.

Crime in numbers (Mumbai)
Crime                                            2014                                                     2013
Hacking/Phishing/Nigerian fraud 36                                                          09
Tampering of source code              03                                                        00
Obscene e-mails/SMS/MMS         104                                                       28
Threatening e-mail/SMS                07                                                         01
Credit card fraud                            103                                                        27
Others                                             165                                                        71

Total                                               418                                                        136


Click here to read more ...... http://www.dnaindia.com/mumbai/report-300-rise-in-cybercrime-cases-in-city-since-last-year-2035780

23 September 2013

India among top targets of spying by NSA

...In the overall list of countries spied on by NSA programs, India stands at fifth place, with billions of pieces of information plucked from its telephone and internet networks just in 30 days....

...... SIGINT (signal intelligence) system collects electronic surveillance program records or internet data (DNI) and telephone call metadata records (DNR), which is all stored in an NSA archive called GM-PLACE.....

.....Three “global heat maps,” which give each country a colour code based on how extensively it was subjected to NSA surveillance, clearly show that India was one of the hottest targets for U.S. intelligence.....

 ....the top-secret documents obtained by The Hindu show that this internal NSA tool focusses on counting and categorising the telephone calls and Internet records as well as on storing and retrieving...

 ........“By accessing metadata, you can learn an awful lot about an individual. With mobile phones, location data has now been added to metadata. With the Internet, you can in addition understand someone’s location in a social network in much more detail, as well as understand how that network relates to other networks......

Click here to read more ...

04 September 2013

Indian Govt May Ban U.S. Based E-mail Services For Official Communication

....Wary of cyber snooping, the government may ban use of e-mail services such as Gmail and Yahoo for official communications so as to safeguard its critical data....

....The Department of Electronics and Information Technology is drafting a policy on e-mail usage in government offices and departments, which will be released in two months.....

.....The government will send a formal notification after the policy is implemented in about two months covering about 5-6 lakh Central and State government employees to use the email service provided by National Informatics Centre (NIC).....

....The development comes close on heels of concerns being raised by a section in the government, especially intelligence agencies, over use of email services, provided by foreign firms (mostly US-based), which have their servers located in overseas locations, making it difficult to track if sensitive government data is being snooped upon....


Click here to read more ......

India- The New Talent Hotspot For Cyber Criminals

......India is emerging as talent hotspot for black-hat hackers, thanks to slow hiring in the software industry, easy money, and lack of proper law enforcements......

.....Global cyber crime groups are outsourcing the jobs of hacking and creating malwares to India through cyber-mercenaries, who work underground.....

....."Increasingly, India is becoming not just the victim but the host country with regard to cyber attacks," said Jagdish Mahapatra, MD for India and SAARC at McAfee, the antivirus company....

Click here to read more ......

14 August 2013

India’s first Cyber Forensic Lab sets up in Tripura

India’s first Cyber Forensic Laboratory (CFL) has been set up in Tripura, an official said Monday. The lab, established at the Tripura High Court will provide court case related information.

....Supreme Court judge Justice Madan B. Lokur, who was earlier the chief justice of the Gauhati High Court, inaugurated the CFL on Sunday....

.....“A National Judicial Data Grid (NJDG) is being developed under the Supreme Court’s supervision. All information about legal services, court cases and judicial actions would be available from the NJDG,” Lokur said...

......“So far, 13,000 judicial officers, including judges, have been trained about the e-court system and to equip them with the ongoing modernization of legal services.....

.....“With this new system of trial and administrative works, the litigants will be immensely benefited. It will save both time and money to get quick justice and prompt disposal of cases,” Lokur said......

Click here to read more .....

05 August 2013

Step into the BREACH: New attack developed to read encrypted web data

..... A new hacking technique dubbed BREACH can extract login tokens, session ID numbers and other sensitive information from SSL/TLS encrypted web traffic, say researchers.....

.....BREACH (short for Browser Reconnaissance and Exfiltration via Adaptive Compression of Hypertext) attacks the commonDeflate data compression algorithm used to save bandwidth in web communications.......

.....The attacker just has to continually eavesdrop on the encrypted traffic between a victim and a web server before tricking marks into visiting a website under the miscreant's control.....

.....The attacker's booby-trapped website hosts a script that runs the second phase of the attack: this forces the victim's browser to visit the targeted website thousands of times, over and over, each time appending a different combination of extra data......

.....The practical upshot is that tokens and other sensitive information sent over SSL connections could be lifted even though the encrypted contents of emails and one-off orders sent to e-commerce websites are beyond the scope of the attack......

Click here to read more .....

31 July 2013

Rs 2.4-cr cyber theft: Cops recover half the amount, 13 arrested so far

The Worli police, probing the theft of Rs 2.4 crore from the Yes Bank account of RPG Group, has recovered more than half the stolen amount. Police have so far arrested 13 persons from Chennai and Delhi..... 

.....The money was deposited in 12 bank accounts across the country. Most of the arrested accused were individuals who were instructed to simply deliver the money to the mastermind once it was credited to their account, police said.....

.....The police have had a hard time finding the account holders at the addresses they provided to the bank. They had written to banks in Bangalore, Chennai, Coimbatore, Thiruvananthapuram, Meghalaya, Barrackpore, Delhi and Noida, where the money was credited, to obtain the KYC details of account holders......

Click here to read more ........

19 July 2013

TrueCaller hacked, 1 million Indians’ data at risk

 ...Global phone directory app TrueCaller has been hacked by hacktivist groupSyrian Electronic Army (SEA).....

...Syrian Electronic Army broke the news via a tweet saying, "Sorry @TrueCaller, we needed your database, thank you for it." The hackers openly released TrueCaller's database host ID, username and password via another tweet....

..The app's databases have access codes to Facebook, Twitter, LinkedIn and Gmail accounts of millions of users globally. Reports say that TrueCaller website went down for a while but is now back online.....

...The Syrian hacking collective revealed that it exploited the TrueCallerwebsite as it is based on outdated Wordpress platform, which gave them access to the admin panel....
Click here to read more ......