Syber Security - Awareness
Public Group - 2 members
NEW DELHI : In view of increasing incidents of Man in the Middle (MiTM) attacks on ATMs, all banks have been asked to enhance their safety norms for ATMs through end-to-end encryption in the network, officials said.
In a recent communication to all banks, the central government has said the MiTM attacks have been increasing under which messages sent by 'ATM Switch' to 'ATM Host' are altered by attackers to withdraw cash fraudulently.
Investigations by security agencies have found that cyber fraud gangs have started adopting a new modus operandi to withdraw money from ATMs, a security official aware of such incidents said.
According to the investigators, the fraudsters first tamper with the network (LAN) cable of the ATM. Declined messages from 'ATM Switch' are altered to successful cash withdrawal transaction responses, and subsequently cash is withdrawn from the ATM.
The attacker first inserts a device between the ATM machine and the router or switch in the ATM premises.
This device has the capability to modify the responses back from authorisation host (ATM Switch) which is connected to ATM through network. The attacker then uses restricted cards (or blocked cards) to submit a withdrawal request.
When the 'ATM Switch' sends a declined message, the attacker in the middle alters the response to approve the transaction and subsequently withdraws cash, the official
In view of this modus operandi, the banks have been directed to ensure end-to-end encryption in the communication between the 'ATM Terminal' or PC and the 'ATM Switch', another official said.
A similar advisory has also been issued by the Reserve Bank of India.
As per the information reported to and tracked by the Indian Computer Emergency Response Team (CERT-In), altogether 1,59,761 cyber security incidents pertaining to digital banking were reported in 2018, a total of 2,46,514 incidents in 2019 and 2,90,445 incidents were reported in 2020.
These incidents include phishing attacks, network scanning and probing, viruses and website hacking.
There has been a 46 per cent rise in digital transactions in 2019-20 in comparison to 2018-19.
The Ministry of Home Affairs holds regular interactions with state governments and Union Territory administrations and advises them to expedite the disposal of cyber crime incidents, with a special emphasis on those relating to women and children, the official said.
The CERT-In is the national technology arm to combat cyber attacks and guard the Indian cyber space.
An Israeli cyber-crime expert alleges that data of Domino's India customers, including over 1 million credit card details, is on sale in the dark web.
Popular pizza outlet Domino’s India seems to have fallen victim to a cyber attack. According to Alon Gal co-founder of an Israeli cybercrime intelligence, the hackers have access to Domino’s India 13TB of internal data which includes employee details of over 250 employees across verticals such as IT, Legal, Finance, Marketing, Operations, etc.
Update: Domino’s India has said that it’s user data has not been compromised. Here is the full statement: Jubilant FoodWorks experienced an information security incident recently. No data pertaining to financial information of any person was accessed and the incident has not resulted in any operational or business impact. As a policy we do not store financial details or credit card data of our customers, thus no such information has been compromised.
Our team of experts is investigating the matter, and we have taken necessary actions to contain the incident.
The hackers claim to have got all customer details and 18 crore order details which include customer's names, phone numbers, email IDs, delivery address, payment details including more than 10 lakh credit card details used to purchase on Domino’s India app.
Further, the hackers are aiming to sell the entire data to a single buyer. According to Alon Gal, the hackers are looking for $550,000 (around Rs 4 crores) for the entire database. The hackers also have plans to build a search portal to enable querying the data.
The sale is apparently happening in the dark web and likely on a website frequented by cyber scammers. For now, Domino's India has neither confirmed nor denied that data of its consumers has been stolen or leaked from its servers.
It is especially worrying as India has been a victim of several large-scale cyber breaches lately. According to Computer Emergency Response Team (CERT-IN) data, during the Covid-19 pandemic cyber attacks on India grew by nearly 300% last year, growing to 11,58,208 in 2020 compared to 3,94,499 in 2019.
Last month, the Union transport ministry received an alert from the CERT-IN regarding “targeted intrusion activities” directed towards the country’s transport sector with “possible malicious intentions”. This came after a slew of cybersecurity attacks on the Indian government and private sector portals over the past few months.
According to a survey conducted by Sophos Survey titled The Future of Cybersecurity in the Asia Pacific and Japan, about 52 per cent of domestic Indian companies said they fell victim to a cyber attack in the last 12 months. Of these successful breaches, 71 percent of organisations admitted it was a serious or very serious attack, and 65 percent said it took longer than a week to remediate
Cybersecurity experts predict that artificial intelligence and machine learning-driven malware along with state-sponsored cyber attacks will be the most serious threats to business's cybersecurity over the next few years.
Source : https://www.indiatoday.in/technology/news/story/domino-s-india-database-likely-hacked-1-million-credit-card-details-leaked-along-with-mail-ids-cell-numbers-1792305-2021-04-18
Shoulder Surfing is a direct observation technique, such as looking over someone’s shoulder to get passwords, PINs, other sensitive personal information and even overhearing your conversation when you give your credit-card number over the phone.
Writing your passwords on papers or storing it on hard disk Strangers search for papers or the disk for passwords where they could be written.
Brute Force Attack
Another way of stealing the password is through GUESSES. Hackers try all the possible combinations with the help of personal information of an individual. They will try with the person’s name, pet name (nickname), numbers (date of birth, phone numbers), school name… etc..
This method is known as ‘Brute Force Attack’.
Hackers also try with all possible dictionary words to crack your password with the help of some software tools. This is called as "Dictionary attack".
Possible Risks / Vulnerabilities with Passwords are :
- Passwords could be shared with other person and might be misused.(Most commonly done)
- Passwords can be forgotten.
- Stolen password can be used by an unauthorized user who may collect your personal information.
- Easy Passwords such as with name, date of birth, mobile numbers could be guessed by anybody and misuse them.
- If you use same password for all accounts, It would be 90% of easy chances to the hackers to crack all account passwords.