Daily Tech News, Interviews, Reviews and Updates

Hackers using phishing techniques to attack the government websites

The threat actors are imitating the browser window of the Indian government website, most often SSO (single sign-on) pages, with a unique login.

On Thursday, Cyber-security researchers said that they have found an unprecedented phishing technique that is being used to attack government websites across the world, including the Indian government’s portal (https://india.gov.in).

Hackers have been targeting the Indian government portal by utilizing a bogus URL to trick users into submitting sensitive information such as credit card numbers, expiration months, and CVV codes.

They are imitating the browser window of the Indian government website, most often SSO (single sign-on) pages, with a unique login, in a most advanced Phishing technique known as Browser in the Browser (BitB) attack.

BitB attacks legitimate sites with the intention to steal user credentials and other sensitive data such as personally identifiable information (PII).

“The bad actors have also replicated the original page’s user interface. Once their victims click on the phishing page, a pop-up appears on the phoney window claiming that their systems have been blocked, posing as a notification from the Home Affairs Enforcement and Police,” the researchers claimed according to TimesNow.

The users are then notified of their excessive use of pornographic websites which is illegal according to Indian law and are requested to pay a fine of Rs 30,000 to unlock their systems.

 

Get real time updates directly on you device, subscribe now.



You might also like