HOME space ABOUTCERTIn space KNOWLEDGEBASE space TRAINING space ADVISORIES space VULNOTES space space Facebook space Twitter
WLine
DigitalIndia
WLine
csk
WLine
Full Member FIRST
Line
Full Member APCERT
Line
Global Research Partner APWG
Line
About CERT-in
Line
point point Client's /Citizen's Charter
Line
point point Roles & Functions
Line
point point Advisory Committee
Line
point point Act/Rules/Regulations
Line
point point Press  
Line
point point Recruitment NEW
Line
point point Tender  NEW
Line
point point Download Brochure
Line
point Subscribe Mailing List
Line
point Contact Us
Line
Reporting
point
Incident Reporting
Line
Vulnerability Reporting
Line
Feedback
Line
KnowledgeBase
Line
Point Guidelines
Line
Point Presentations
Line
Point White Papers 
Line
Point Monthly Security Bulletin 
Line
point Point Annual Report 
Line
Line
Line
line
Line
Advisories
Line
VulnerabilityNotes
Line
RelatedLinks
Line
point Point World CERTs
Line
point Security Sites
line
point Security Tools
line
point Antivirus Resources
line
FAQ
line
Archive
line
line
line
line
line
Line
Line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
line
spacer
Home - Current Activities
point

CURRENT ACTIVITIES

Large scale compromise of SME/SOHO router via exploiting Known vulnerabilities
(November 01, 2019)
A surge in compromising the router deployed at SME Sector and SOHO (Small office and Home) segment is seen. Attacker behind these attack campaign used the variants of some known malware for targeting these IOT devices.
[More >>]
Information stealing malware spreading via fraudulent emails purporting to originate from Income Tax Department
(September 19, 2019)
A phishing and malware campaign is active since at least September 12th and is targeting individuals as well as financial organizations. The campaign involves fake emails purporting to be sent from Indian Income Tax Department. Two variants of the emails have been observed. First variant includes an attachment with extension ".img" which contains a malicious ".pif" file. The second variant lures the users to download a malicious ".pif" file hosted on a Sharepoint page via a link of fraudulent domain incometaxindia[.]info . This domain has now been disabled.
[More >>]
Remote Access Trojan Spreading via Fake Income Tax calculator
(August 21, 2019)
A remote access Trojan (RAT) is spreading via crafted Microsoft Office Spread sheet file[s] which lure the victim as Fake Income tax calculator. Once victim open that document, it contains malicious macro embedded in it which start immediately execute.
[More >>]
Misconfiguration of iSCSI storage devices
(April 03, 2019)
It is reported that a number of iSCSI storage devices have been exposed to Internet without any authentication.
[More >>]
Global DNS Infrastructure Hijacking Campaign
(January 24, 2019)
It has been reported that a large scale DNS Infrastructure Hijacking attack campaign targeting domains belonging to government, telecommunications and internet infrastructure entities across the Globe. Where malicious actors redirected traffic from companies all over the globe through their own malicious servers, obtaining valid encryption certificates, and recording company credentials for future attacks. It is reported that the attackers have used DNS hijacking techniques to create a base for further attacks on the system.
[More >>]
Large scale compromising of Home router or SOHO router using Novidade exploit Kit
(December 13, 2018)
It has been reported that a large scale attack campaign targeting Home/SOHO routers using the exploit kit (named as Novidade) which it deliver to victim via malvertising, compromised website injection and instant messengers.
[More >>]
Surge in crypto mining activities through MikroTik Router
(October 09, 2018)
There are reports of large scale crypto mining done through thousands of compromised routers that injects a crypto miner on all websites visited by the owners. Using Crypto mining, attackers used the user system resources (Power, computation capacity) to mine crypt currency without user permission.
[More >>]
Safeguarding from SMShing income tax refund attacks
(August 07, 2018)
There have been increased reports of incidents related to fake SMS purportedly from Income Tax department as the filing of Income Tax Return nears. This SMShing campaign uses popular URL shortening services such as bit.ly,goo.gl,ow.ly and t.co etc.
[More >>]
New "PyRoMineIoT" Miner and IoT Device Scanner Malware
(June 25, 2018)
It has been reported that a crypto-currency miner dubbed "PyRoMineIoT" has been spreading widely across different countries.
[More >>]
Prowli Malware Targeting Servers, Routers and IoT Devices
(June 12, 2018)
It has been reported that a traffic manipulation and crypto currency mining campaign affecting servers, modems and internet-connected devices across the world.
[More >>]
Fake Fortnite Apps
(June 06, 2018)
It has been reported that several malicious applications which masquerade as the popular game Fortnite for Android.
[More >>]
Cryptocurrency-Mining Malware Targeting IoT devices
(May 31, 2018)
Cybercriminals have been actively using cryptocurrency-mining malware to exploit consumer hardware graphics processing units (GPUs) and take advantage of processing power of devices.
[More >>]
Increased HIDDEN COBRA activity
(May 30, 2018)
US CERT has shared reports about the ongoing malware activity of the alleged North Korean based threat group called HiddenCobra /lazarus.
[More >>]
New VPN Filter Malware targeting networking devices
(May 30, 2018)
A widespread use of a sophisticated multi-stage modular malware system dubbed "VPNFilter" has been reported with versatile capabilities to support both intelligence-collection and destructive cyber attack operations.
[More >>]
Roaming Mantis/XLoader/MoqHao
(May 28, 2018)
A resurgence in the Roaming Mantis malware campaign is reported by updating the attack vectors and targeting a wider community by adding support for 27 other global languages including European and Middle Eastern in a bid to broaden its geographic range.
[More >>]
Previous   |  Next >>
point
Indian Computer Emergency Response Team - CERT-In, Ministry of Electronics and Information Technology, Government of India.
Website Policies |  Terms of Use |  Help Last Updated On November 12, 2019