Cyber Crime
Top 10 Daily Cybercrime Brief by FCRF [30.07.2024]: Click here to Know More
Important global cybercrime news has been curated by Futurecrime Researchers to keep you informed about various types of digital fraud occurring worldwide and to provide insights into the best mitigation strategies. Read below to learn more in detail.
1. RBI Alerts on Cybersecurity Risks and Frauds from Digitalization
The RBI’s Currency and Finance report for 2023–24 highlights cybersecurity and fraud risks due to increased digitization, despite benefits like innovation and competition. A survey of banks and NBFCs revealed concerns about financial stability, data privacy, and third-party risks, emphasizing the need for balanced regulation of FinTech firms.
2. India’s Cybersecurity Agency Issues Advisory on Microsoft Outage and CrowdStrike
CERT-In has warned of phishing attacks targeting users affected by the recent Microsoft Windows outage caused by a faulty CrowdStrike update. Scammers are exploiting the outage by sending phishing emails, impersonating CrowdStrike staff, and distributing malware disguised as recovery tools, risking data leaks and system crashes.
3. Cybercriminals Push Victims Towards Preapproved Loans
In Hyderabad, cyber criminals are coercing victims to take pre-approved loans and transfer the funds under the guise of verification for drug trafficking and money laundering investigations. Victims, including a bank employee and a techie, were scammed out of Rs 5 lakh and Rs 2.5 lakh, respectively.
4. Delhi Cyber Criminal Arrested for Defrauding Woman of Rs 84.5 Lakh
In Theni, police arrested a cyber criminal from Delhi for defrauding a woman of Rs 84.5 lakh by posing as Mumbai police. The scam involved claims of hawala transactions linked to her Aadhaar. The police are searching for two accomplices, and they have frozen Rs 87 lakh in the suspects’ accounts
ALSO READ: Rau’s IAS Held ‘Illegal Classes’ in Basement; MCD Allegedly Ignored Complaints
5. Hyderabad: New Study Reveals Aadhaar-SIM Cyber Scam
A Hyderabad study reveals cyber criminals use outdated Aadhaar photos to obtain fraudulent SIM cards. It found gaps in verification, with 89% of alternate numbers unlinked to Aadhaar. The study recommends robust identity verification, online identification methods, and customer education to combat SIM card fraud, urging vigilance and prompt reporting
INTERNATIONAL
6. Critical Vulnerability in Acronis Cyber Infrastructure Actively Exploited
Acronis has warned of a critical security flaw (CVE-2023-45249) in its Cyber Infrastructure product, exploited in the wild. The vulnerability, due to default passwords, affects versions below specific builds. Users are advised to update to patched versions released in October 2023 to mitigate risks.
7. FraudGPT & WormGPT: Dark AI Models Redefining Cyber Threats, Warn Experts
Cybercriminals are leveraging generative AI tools like FraudGPT and WormGPT for sophisticated scams, including phishing and malware attacks. Experts emphasize the need for proactive measures, user education, and AI-based threat detection to combat these threats. The rise in online fraud highlights the urgency of enhancing cybersecurity efforts and awareness.
ALSO READ: Vikas Divyakirti Faces Backlash as MCD Shuts Down Drishti IAS Classes for Violations
8. How France safeguarding the 2024 Olympics from Unprecedented Cyber threats?
As the Paris 2024 Olympics approach, cybercriminals are targeting the event with an “unprecedented” level of cyber threats. Key concerns include DDoS attacks, phishing, and fraud. French authorities and cybersecurity partners are employing a robust strategy to safeguard critical IT infrastructure and raise awareness among stakeholders.
9. New Regulations Aim to Reduce Cyber-Bullying
In response to increasing cyber-bullying, four central government departments in China issued a new regulation effective August 1, requiring internet platforms to enhance their early warning systems. The regulation mandates the use of AI and big data to verify online content, aiming to curb rumors, defamatory comments, and other harmful content.
10. ‘Stargazer Goblin’ Uses 3,000 Fake GitHub Accounts to Spread Malware
The threat actor Stargazer Goblin operates a vast network of over 3,000 fake GitHub accounts to distribute various malware through a Distribution-as-a-Service (DaaS) model, earning $100,000 in a year. The network uses fake activity to avoid detection and spread malware like Atlantida Stealer and RedLine. GitHub accounts are also linked to extortion attacks and a vulnerability allowing access to sensitive data from deleted forks.