Cyber Crime
Top 10 Daily Cybercrime Brief by FCRF [28.07.2024]: Click here to Know More
Important global cybercrime news has been curated by Futurecrime Researchers to keep you informed about various types of digital fraud occurring worldwide and to provide insights into the best mitigation strategies. Read below to learn more in detail.
1. Panel Discovers Vulnerabilities Exploited by Hackers to Target Job Seekers
A high-level interministerial panel identified cyber scam vulnerabilities in India’s banking, immigration, and telecom sectors. Involvement of senior bank managers, unreturned visitors to Southeast Asia, and misuse of bulk SIM cards were highlighted. Four lakh mule accounts were frozen, with further action pending against bank employees and tracing unreturned visitors
2. IIT-K and NPTI to Collaborate on Cybersecurity for India’s Power Grid
IIT Kanpur and NPTI signed an MoU to enhance cybersecurity research and training for India’s power grid. They plan to establish an OT and SCADA Cyber Security Lab. Additionally, IIT-K’s Prashant Pathak co-discovered exoplanet Eps Ind Ab, six times Jupiter’s mass, 12 light-years away, using the James Webb Space Telescope.
3. IndusInd Bank Cyber Theft: INR 40 Crore Transferred to Various Mule Accounts
In a cyber heist at IndusInd Bank, INR 40 crore was stolen, with INR 32.89 crore recovered by Maharashtra Cyber Cell. Amid rising cyberattacks, India saw a 261% YoY increase in Q1 2024. Incidents included a $234.9 million security breach at WazirX and a possible data breach at BSNL.
4. Cyber Scheme Defrauds Foreign Nationals of $15 Million: 3 Remanded to 4-Day CBI Custody, 40 to Judicial Custody
A Delhi Court sent three individuals to four-day CBI custody and 40 others to judicial custody till August 9 for running illegal call centers that defrauded US nationals of $15 million, including $6.5 million from Michelle Finch. The accused impersonated Microsoft officials, and crucial evidence was found linking them to the crime.
ALSO READ: The Role of Digital Forensics in India’s New Criminal Laws
5. Bihar Cyber Fraud: Scammers Swindle Muzaffarpur Businessman of INR 89.90 Lakh by Claiming His Involvement in Money Laundering
A Muzaffarpur businessman was defrauded of Rs 89.90 lakh by cybercriminals posing as TRAI and police officials. They alleged his involvement in a money laundering case, tricked him into revealing his bank details, and withdrew the money. The Bihar Police’s cyber cell is investigating, with similar cases reported.
INTERNATIONAL
6. Olympic Cybersecurity Team Prepares for Hacker Attacks
The organizers of the Paris Summer Olympics are preparing for numerous cyberattacks amid high geopolitical tensions. Government, private-sector, and Olympic cybersecurity specialists, including US allies, have identified 500 critical entities for protection. Experts remain concerned about vulnerabilities in less-scrutinized companies and organizations.
7. North Korean Indicted for Cyberattacks on US Hospitals, NASA, and Military Bases
A North Korean operative, Rim Jong Hyok, was indicted for cyberattacks on U.S. hospitals, NASA, and military bases, deploying ransomware to extort payments and fund further attacks. U.S. authorities, collaborating with private partners, seized $600,000 in virtual currency, emphasizing the need for heightened cybersecurity vigilance.
ALSO READ: Techie Arrested for Rs 20 Crore Fraud Using Her Own Firm’s Loan App
8. UAE to Implement 3 New Cybersecurity Policies by End of 2024
Dr. Mohammed Hamad Al Kuwaiti, Chairman of the UAE Cybersecurity Council, announced three new cybersecurity policies to be issued by end of 2024, focusing on cloud computing, IoT security, and cybersecurity operations centers. The UAE aims to enhance its position as a global tech hub, countering cyber threats with advanced AI solutions.
9. French Authorities Initiate Operation to Eliminate PlugX Malware from Infected Systems
French authorities and Europol launched a “disinfection operation” to eliminate the PlugX malware, affecting victims in multiple countries. The operation, expected to last several months, follows Sekoia’s acquisition of a command-and-control server linked to PlugX. The malware, used by China-nexus threat actors, compromises hosts and air-gapped networks.
10. Malicious PyPI Package Targets MacOS to Steal Google Cloud Credentials
Cybersecurity researchers found a malicious PyPI package, “lr-utils-lib,” targeting macOS systems to steal Google Cloud credentials. The package, downloaded 59 times, checked if it was installed on specific macOS machines and sent harvested credentials to a remote server. The campaign highlights sophisticated tactics to infiltrate targeted systems.