Cyber Crime
Ukrainian Police Unmask Massive Bot Farm: Fake News & Fraud Schemes Exposed
Ukrainian law enforcement authorities have successfully disrupted a massive bot farm responsible for spreading fake news about the ongoing Russian invasion, leaking personal information of Ukrainian citizens, and promoting fraudulent schemes.
The operation, which involved 21 searches, led to the arrest of more than 100 individuals, suspected to be part of the orchestrated disinformation campaign.
The Raid: Unraveling the Bot Farm
The Cyber Police and National Police of Ukraine collaborated to uncover and dismantle the nefarious bot farm. The police seized an array of equipment, including computer systems, mobile phones, over 250 GSM gateways, and approximately 150,000 SIM cards, all of which were allegedly used to conduct the illicit operations.
According to a police statement, the attackers employed specialized equipment and software to create and manage thousands of bot accounts across various social media platforms. These accounts were then used to disseminate advertisements that violated Ukrainian norms and legislation.
Charges and Ongoing Investigation
The investigation revealed that insiders in Vinnytsia, Zaporizhzhia, and Lviv were involved in the bot farm. Law enforcement authorities are pursuing charges related to interference with electronic communications, unauthorized sale of information stored on computers, and knowingly spreading false safety threat notifications. The investigations into the extent and reach of the disinformation campaign are still ongoing.
ALSO READ: Search All India Police Station Phone Numbers & Mail ID Through This Search Engine
History of Disinformation Campaigns
The revelation of the bot farm comes as no surprise, as Ukraine has been combating similar disinformation campaigns since the Russian invasion began in February 2022. In the past, the country has uncovered and shut down multiple bot farms responsible for creating over a million fake social media accounts.
Even before the war, security researchers had identified a Russian influence campaign known as “Secondary Infektion” that spread misinformation about Ukrainian President Volodymyr Zelenskyy, including false allegations that the former comedian had affiliations with Nazi ideology.
CYBER CRIME
Thane’s Biggest Cyber Theft: Hackers Swipe Rs 25 Crore from Company’s Escrow Account
MUMBAI: In a major cybercrime incident that has sent shockwaves through the city, unidentified hackers successfully infiltrated the escrow bank account of a Thane-based company, resulting in a staggering loss of approximately Rs 25 crore.
Escrow accounts, typically held by third parties, serve as temporary repositories during transaction processes between two parties.
The Thane Cyber Cell, responsible for investigating the case, revealed that the hackers managed to breach the payment gateway of the targeted company, gaining access to its database. By manipulating the database, the cybercriminals significantly increased the wallet balances and utilized merchant credentials to log into the company’s portal. Subsequently, they executed multiple transactions to various bank accounts.
“Through their nefarious activities, the hackers illicitly gained control over the company’s well-known national bank escrow account, transferring around Rs 25 crore to multiple unknown accounts,” stated an official from the Thane Cyber Cell.
Authorities in Thane initially became aware of the incident on April 14 when the company’s employees noticed discrepancies in their debit and credit accounts.
“After conducting a thorough investigation, the company’s officials determined that their financial portal had been hacked,” explained a police officer. “The culprits managed to breach the system of the company’s financial portal, surpassing the wallet balance limit and utilizing merchant keys to conduct numerous financial transactions across various unidentified accounts.”
ALSO READ: Search All India Police Station Phone Numbers & Mail ID Through This Search Engine
This fraudulent scheme was executed by the hackers again on April 21 and April 22, further exacerbating the financial losses suffered by the company.
An officer from the Shrinagar police station revealed, “The hackers established four fictitious companies, exploiting them as conduits to transfer funds from the targeted company’s escrow bank account to numerous undisclosed account holders. Some of these transactions were halted following the report filed with the National Payment Corporation of India (NPCI). Unfortunately, a significant portion of the fraudulent transactions had already been completed.”
The Thane police, along with the Cyber Cell, are now intensifying their efforts to identify and apprehend the perpetrators behind this audacious cyber heist. The investigation aims to uncover the full extent of the breach, ascertain any potential vulnerabilities, and implement robust measures to prevent similar incidents in the future.
KEY HIGHLIGHTS
- Unknown hackers orchestrated one of the largest cyber heists in Thane, siphoning off approximately ₹25 crore from a company’s escrow bank account.
- The hackers successfully breached the payment gateway of the targeted company, manipulating its database to increase wallet balances and gain access to the company’s portal.
- Utilizing merchant credentials, the cybercriminals executed multiple transactions to various unidentified bank accounts.
- The fraudulent activities took place on April 14, April 21, and April 22, with the hackers transferring funds through the company’s escrow bank account to several unknown account holders.
- Some transactions were halted after being reported to the National Payment Corporation of India (NPCI), but a significant portion had already been completed by then.
- Thane Cyber Cell and local police authorities are actively investigating the case, aiming to identify and apprehend the perpetrators.
Follow The420.in on
Telegram | Facebook | Twitter | LinkedIn | Instagram | YouTube
CYBER CRIME
Global Movie Frenzy Turns Dark: Scammers Exploit Barbie and Oppenheimer Hype
Hollywood enthusiasts worldwide are eagerly awaiting the release of two highly anticipated films, “Barbie” and “Oppenheimer,” featuring star-studded casts that have garnered massive fan followings. However, amidst the excitement, cybercriminals are capitalizing on the buzz surrounding these movies to steal money and personal information from unsuspecting fans.
Leading cybersecurity firm Kaspersky has uncovered a disturbing trend in which scammers are employing phishing scams to prey on the enthusiasm surrounding movie releases. Their primary objective is to deceive individuals and illegally acquire their hard-earned money and sensitive personal data.
Kaspersky’s research has identified one of the fraudulent pages that is enticing users with exclusive offers on Barbie dolls, coinciding with the release of the movie.
In addition to the regular dolls, users are lured into purchasing limited-edition movie-related dolls, such as those modeled after the film’s lead actress, Margot Robbie, priced at around 12 pounds sterling.
Once users have made their selection, they are redirected to a purchase form that prompts them to provide personal identification details, including their name, address, phone number, and banking information.
Unfortunately, unsuspecting users unknowingly submit their money and personal information directly into the hands of fraudsters. This scam not only poses significant financial risks but also raises serious concerns about privacy, as the stolen data could potentially be sold on the Dark Web Market, warns the Kaspersky report.
“We must remain vigilant and exercise safe online habits to fully enjoy the Barbie and Oppenheimer experience while safeguarding ourselves from the cyber threats that lurk in the digital world,” advises Olga Svistunova, a security expert at Kaspersky. While the anticipation for these movies is exhilarating, it is crucial not to overlook the risks associated with fraudulent schemes.
Unfortunately, the scammers did not stop at targeting Barbie enthusiasts. They also exploited the popularity of “Oppenheimer” by offering fans the opportunity to stream the movie for free. However, their ulterior motive was to steal users’ banking information and money.
This tactic, frequently employed by scammers, involves requesting a nominal fee of one dollar or euro for registration. Users are then required to link their bank card to proceed with the registration process, unknowingly granting the scammers authorization to make unauthorized and difficult-to-cancel debits from their accounts.
As cyber threats continue to evolve, it is crucial for fans to remain vigilant and exercise caution when engaging with online promotions and offers related to these movies. Genuine promotions and official channels should be the primary sources for information and purchases related to “Barbie” and “Oppenheimer.”
ALSO READ: Search All India Police Station Phone Numbers & Mail ID Through This Search Engine
To ensure maximum security, it is advisable to keep the following tips in mind:
- Be wary of suspicious websites or links that offer exclusive deals or freebies related to the movies.
- Verify the authenticity of the website or platform before making any financial transactions or providing personal information.
- Avoid sharing sensitive personal information, such as banking details, with untrusted sources.
- Regularly update and use reputable antivirus software to protect against potential cyber threats.
- Stay informed about the latest cybersecurity practices and be cautious of phishing attempts.
By staying alert and practicing safe online habits, fans can fully enjoy the excitement surrounding “Barbie” and “Oppenheimer” while protecting themselves from malicious cyber activities that can spoil the experience.
Follow The420.in on
Telegram | Facebook | Twitter | LinkedIn | Instagram | YouTube
CYBER CRIME
‘Man-in-the-Middle’ Cyber Heist: How Change Of One Letter Cost Pune Engineering Firm Rs 22 Lakh
PUNE: In a suspected case of a ‘man-in-the-middle’ cyber attack, a Pune-based engineering supplies firm has suffered a substantial financial loss of more than 24,000 Euros (approximately more than Rs 22 lakh).
According to the Pune City police, the cybercriminals exploited a minute difference in the email address of a French company’s sales manager to deceive the Pune-based firm. The incident occurred earlier this year, and the police have initiated a thorough investigation to uncover the extent of the cyber fraud.
The Sequence of Events Unfolded
The Founder and CEO of the Pune-based engineering supplies firm, which caters to Indian companies in the mining, construction, and manufacturing sectors, lodged an FIR with the Wanawadi police station last week.
The probe conducted by the police has revealed that the alleged ‘man-in-the-middle’ attack took place over a span between January and March of this year.
According to cyber investigators, the Pune-based company had placed an order worth more than 51,000 euros with a French engineering major in January. The order was sent to the email address of the sales manager of the French company, with whom the Pune-based firm had maintained a longstanding business relationship.
Deceptive Communication and Payment
The French company promptly responded to the order with a pro-forma invoice as an acknowledgment. However, a few days later, the Pune-based firm received an email claiming that their regular bank account and SWIFT code with the Paris-headquartered bank were unavailable. The email instructed the firm to make the payment to a new account held by a Lisbon-based bank.
Trusting the communication and unaware of the deception, the executives of the Pune-based firm transferred an advance payment of 24,589 euros to the fraudulent account in Lisbon. Weeks later, when inquiring about the shipment status of the equipment, the Pune-based company was informed by the French entity that they were still awaiting payment. This raised suspicions, leading the firm to review the previous communication in detail.
ALSO READ: Victim Of A Cyber Attack? Now Dial 1930 & 155260 To Register Complaint And Get Your Money Back
Unraveling the Fraud
Upon closer examination, it was discovered that the email informing the change in bank account details had originated from a fraudulent email address that differed from the legitimate address by just one letter — “a” instead of “e”. Realizing the cybercrime that had befallen them, the Pune-based company approached the Pune City police to file a formal complaint.
ALSO READ: Step By Step Guide: How To File Cybercrime Complaint Online In India
Ukrainian Call for Global Cooperation
The growing threat of Kremlin-backed information operations has led Viktor Zhora, the leader of Ukraine’s cyber security agency, to call for a coordinated, global approach to combat propaganda and disinformation online. Such campaigns pose significant challenges to accurate information dissemination and can affect public perception during conflicts and political events.
Accusations and Counterclaims
While Ukrainian authorities are actively combating disinformation, the Kremlin has accused pro-Ukrainian hackers of spreading false alerts about air raids and missile strikes on Russian cities. In February, text messages, radio broadcasts, and sirens warned Russian citizens of non-existent attacks, highlighting the scale of the disinformation war between the two nations.
Ukrainian Scareware Scammer Arrested
In an unrelated operation, Spanish authorities arrested a Ukrainian hacker who had been evading US law enforcement for over a decade. The fugitive was allegedly involved in a massive scareware operation that spanned from 2006 to 2011. The scam involved infecting victims’ computers with malware, causing pop-up messages that falsely warned of virus infections and extorted payments of up to $129 for a fake security program. The international arrest underscores the commitment of law enforcement to pursue cybercriminals across borders.
The crackdown on the massive bot farm and the arrest of a Ukrainian scareware scammer demonstrate the seriousness with which law enforcement agencies are addressing cybercrime and disinformation. As the digital landscape continues to evolve, countries like Ukraine call for a unified effort in countering propaganda and safeguarding accurate information dissemination in the online realm.
Follow The420.in on
Telegram | Facebook | Twitter | LinkedIn | Instagram | YouTube
