now browsing by tag
Man Found Dead In Middle Township Soccer Field Porta Potty | #coronavirus | #kids. | #children | #schools | #parenting | #parenting | #kids
[ad_1] CAPE MAY COURT HOUSE, NJ — Police found a dead man Thursday in a Porta Potty at the Middle Township Public School’s Boyd Street Soccer Field. The preliminary investigation doesn’t suggest any foul play. Authorities received a report of an unresponsive person at the soccer field around 7 p.m. Thursday. A soccer game began […]
View full post on National Cyber Security
Human remains found in Saskatoon, case deemed homicide | #missingkids | #parenting | #parenting | #kids
This news feed is updated periodically. If the story you are looking for isn’t at the top, please scroll down. Human remains found in Saskatoon, case deemed homicide UPDATE: An […] View full post on National Cyber Security
#onlinedating | Rachael Leigh Cook found online dating ‘interesting’ after marriage split | #bumble | #tinder | #pof | romancescams | #scams
© FayesVision/WENN.com Rachael Leigh Cook made an “interesting” foray into online dating following the end of her marriage. The 40-year-old She’s All That star split with her husband of 15 […] View full post on National Cyber Security
#bumble | #tinder | #pof Bumble IPO: Stock Rumored to Can be found in 2021 | Fintech Zoom | Fintech Zoom | romancescams | #scams
Is a Bumble IPO coming to the market? Rumors say it’s. In accordance with sources, the company is talking to banks about going public. And it’s hoping to raise its […] View full post on National Cyber Security
Iron Age hillfort found in Chiltern Hills with help of ‘citizen scientists’ | #facebookdating | #tinder | #pof | romancescams | #scams
Image copyrightBeacons of the Past Image caption“Citizen Scientists” helped identify a hidden iron age hillfort in the southern Chiltern Hills, which cover Buckinghamshire and Oxfordshire An Iron Age hillfort hidden […] View full post on National Cyber Security
#minorsextrafficking | A baseless US conspiracy theory found a foothold in Europe. New research shows how | #parenting | #parenting | #kids
The baseless PizzaGate claim emerged during the 2016 election. Later that same year, a gunman showed up and fired an AR-15 inside the pizzeria, saying he was trying to rescue […] View full post on National Cyber Security
#childsafety | Police seek parents of toddler found wandering in Florida apartment complex | #parenting | #parenting | #kids
Police in Miramar, Florida, are asking the public for help locating the parents of a toddler found wandering alone near an apartment complex Sunday morning.© Provided by New York Daily […] View full post on National Cyber Security
- Hundreds of email IDs and plaintext passwords belonging to Indian organizations are available on the dark web.
- The emails may have been shared among crooks for quite some time, but this has just been discovered.
- It is time for crucial government entities to use 2FA, and even better, 2SV physical security keys.
Researcher Sai Krishna Kothapalli has found 3202 email IDs on the dark web, belonging to people working on the Indian government and various organizations of the state. The infosec expert has been collecting data from dumps on the dark web for the past four years, creating a humongous database of 1.8 billion email IDs and passwords. According to him, approximately 85% of the passwords he holds are in plain text form, while others have been dehashed by hackers throughout the years. After analyzing this trove of data, Kothapalli recently found some ending with “.gov.in”.
The 365 email IDs belong to employees of the ‘Indira Gandhi Centre for Atomic Research’. Trailing just behind is the ‘Bhabha Atomic Research Centre’ with 325 email IDs. In third place, there is the ‘Securities and Exchange Board of India’ with 157 emails. In total, the 3202 emails belonging to 12 entities, as shown in the graph below.
The researcher tried to correlate his findings with the “Have I Been Pwned” service and found no entries there, so this was a fresh discovery. The conclusion that he drew was that this data must be the product of a targeted phishing campaign since there were no recorded breaches. This means that the employees who have had their IDs and passwords stolen could be at risk of having their accounts taken over. The employees could have changed their passwords in the meantime, but the chances of stuffing attacks against other accounts belonging to the same people remain high.
The researcher is still investigating the data and is in the process of contacting the governmental organizations to alert them about his findings. He points out that when he started investigating this, he was approached by someone who posed as an NDTV reporter. After additional research, he discovered that the email accounts used to contact him had been compromised in the previous months and that the news from back in the time attributed this to North Korean hackers.
The North Korean hackers sent hacking emails to the former chairman of the Atomic Energy Commission of India(AECI) and the Secretary to the Government of India and the Director of the Bhabha Atomic Research Centre(BARC). pic.twitter.com/UCv01aCq2X
— IssueMakersLab (@issuemakerslab) November 2, 2019
So, could this all be the work of state-supported actors from North Korea? It’s quite possible, but nothing can be said with certainty until the investigation is concluded. Right now, the important part is to secure the email accounts by resetting the credentials as soon as possible. Also, and as the researcher points out in his report, it is high time for the government and its organizations to adopt two-factor authentication for the email accounts of their employees, or even better, physical security keys.
The post #deepweb | <p> Indian Government Emails Found Wandering on the Dark Web <p> appeared first on National Cyber Security.
View full post on National Cyber Security
Source: National Cyber Security – Produced By Gregory Evans Home > Security News > Government/Defense A command and control server used by the Iranian-associate group PupyRAT that is communicating with the mail server of a European energy sector organization for the last several months. Recorded Future’s Insikt Group reported PupyRAT, a remote access trojan, had […] View full post on AmIHackerProof.com
Source: National Cyber Security – Produced By Gregory Evans In the span of five days, reports of two Twitter Android app vulnerabilities have surfaced: one that could cause attackers to view nonpublic account information or control accounts, and another that reportedly allowed a researcher to look up details on 17 million accounts. In a Dec. […] View full post on AmIHackerProof.com