Topics In Demand
Notification
New

No notification found.

Blog
Targeted Phishing Campaign by Malicious Actors

October 5, 2020

102

0

It has been reported that malicious actors are planning a large-scale phishing attack against Indian organizations targeting (small, medium & large enterprises). In the radar we have, Lazarus Group from North Korea, as their activities have given an indication upon a mass global phishing campaign.

The hacking campaign involves using multiple phishing emails targeting local authorities in charge of dispensing government-funded COVID-19 support initiatives. These phishing emails are highly targeted as they appear to be legitimate but are not, and drive users to fake websites/installing malicious software in their system; thus, compromising their personal and financial information.

The Indian government has announced INR 20 lakh crore (US$307B) of credit, finance and collateral-free loans to micro, small and medium enterprises, as well as welfare packages for citizens. The group is trying to impersonate government agencies, departments and trade associations who are tasked to oversee the disbursement of the fiscal aid to keep a track of the distribution and policies via ncov2019@gov.in, as email is been sent using this address to launch phishing activities. DSCI TI&R team is continuously monitoring events, domains and other suspicious activities with regards.
As per one of the research firms, attackers have scheduled phishing campaigns targeting India on June 21, 2020.

Read more: https://www.dsci.in/sites/default/files/Targeted-Phishing-Campaign.pdf

Read all Threat Intelligence and Research (Ti&R) advisories

 


That the contents of third-party articles/blogs published here on the website, and the interpretation of all information in the article/blogs such as data, maps, numbers, opinions etc. displayed in the article/blogs and views or the opinions expressed within the content are solely of the author's; and do not reflect the opinions and beliefs of NASSCOM or its affiliates in any manner. NASSCOM does not take any liability w.r.t. content in any manner and will not be liable in any manner whatsoever for any kind of liability arising out of any act, error or omission. The contents of third-party article/blogs published, are provided solely as convenience; and the presence of these articles/blogs should not, under any circumstances, be considered as an endorsement of the contents by NASSCOM in any manner; and if you chose to access these articles/blogs , you do so at your own risk.


MediaDSCI

© Copyright nasscom. All Rights Reserved.