India’s COVID-19 tally crosses 7 lakh-mark with 22,252 fresh cases, toll rises to 20,160

Bengaluru, May 21: The COVID-19-induced lockdown saw a spurt in crybercrimes in India with Kerala recording the highest number during the period, according to an analysis of IT security solutions provider K7 Computing.

The report analyses various cyberattacks within India during the pandemic and reveals that threat actors targeted the States with COVID-19-themed attacks aimed at exploiting user trust.

The sudden surge in the frequency of attacks witnessed from February 2020 to mid-April 2020 indicates that scamsters across the world were exploiting the widespread panic around coronavirus at both the individual and corporate level, the company said in a statement.

These attacks aimed to compromise computers and mobile devices to gain access to users confidential data, banking details and cryptocurrency accounts.

The key threats seen during this period ranged from phishing attacks to rogue apps disguised as COVID-19 information apps that targeted users sensitive data.

Phishing attacks were noticed more in Tier-II and Tier-III cities while the metros fared better.

Smaller cities saw over 250 attacks being blocked per 10,000 users.

Users from Ghaziabad and Lucknow seem to have faced almost six and four times the number of attacks, respectively, as Bengaluru users.

In Kerala, regions like Kottayam, Kannur, Kollam, and Kochi saw the highest hits with 462, 374, 236, and 147 attacks respectively, while the state as a whole saw around 2,000 attacks during the period, the highest thus far in the country.

This was followed by Punjab with 207 attacks and Tamil Nadu at 184 attacks, the statement said.

A majority of the recorded attacks were phishing attacks with sophisticated campaigns that could easily snare even the most educated users, it said.

These attacks were aimed at heightening users fears and creating a sense of urgency to take action.

The report noted phishing attacks where scamsters posed as representatives of the United States Department of the Treasury, the World Health Organisation, and the Centres for Disease Control and Prevention.

Users were encouraged to visit links that would automatically download malware on the host computer such as the Agent Tesla keylogger or Lokibot information-stealing malware, infamous banking Trojans such as Trickbot or Zeus Sphinx, and even disastrous ransomware.

Other attacks included infected COVID-19 Android apps like CoronaSafetyMask that scam users with promises of masks for an upfront payment; the spyware app Project Spy; and seemingly genuine apps that are infected with dangerous malware like banking Trojans such as Ginp, Anubis and Cerberus, it was stated.

Guwahati, Feb 13: Hours after Assam's updated citizenship data disappeared from the website 'nrcassam.nic.in', an FIR was filed against a former NRC official for allegedly failing to submit the password to the sensitive document before quitting her job.

Talking to news agency on Thursday, NRC state coordinator Hitesh Dev Sarma said the complaint against former NRC project officer was filed under Official Secrets Act in Paltan Bazar police station here, as she "did not provide the password to the document, despite written reminders".

"She failed to surrender the password even after tendering her resignation on November 11 last year. She was a contractual employee and no longer authorised to hold the password, after quitting her job. An FIR has been filed against the former NRC project officer on Wednesday for violating the Official Secrets Act," he said.

Sarma also stated that the NRC office had written to her on several occasions for submitting the password, but did not get any response.

"We knew (she had resigned) and, therefore, sent several letters to her for handing over the password. But as she did not respond all these months, we filed a complaint against her yesterday for violating the Official Secrets Act.

"We must know if she has tampered with the sensitive information, after resigning," he added. The NRC state coordinator, however, refuted allegations of "malafide intent" involved in the matter.

"...this (cloud service provided by IT major Wipro) was not renewed by the earlier coordinator. So, the data went offline from December 15 last year. I assumed charge only on December 24," Sarma, who had gone on leave for a weeks after being appointed as the NRC state coordinator, clarified.

He also said that the state coordination committee had discussed the issue in its meeting on January 30 and wrote to Wipro during the first week of February.

"Once Wipro makes the data live, it will be available to the public. We hope that people will be able to access it in the next 2-3 days," Sarma claimed.

Reacting to the development, Wipro had said: "The IT Services Contract was not renewed by the authorities upon its expiry in October, 2019. However, as a gesture of goodwill, the company continued to pay the hosting service fee until January-end, 2020."

In another FIR filed with state criminal investigation department on Wednesday, NGO Assam Public Works (APW) alleged that former NRC Assam coordinator Prateek Hajela tampered with the final NRC list - published on August 31, 2019.

APW member Rajib Deka, in his complaint, accused Hajela of disobeying orders and directions of the Supreme Court, forgery of public register and committed offences under cyber laws for altering or changing public records by misusing his powers and position.

The NGO also said that after publication of the final list, several social networks and sections of the media had reported anomalies, insisting that many 'doubtful' persons were able to insert their names in the final list.

The Centre on Wednesday asserted that NRC data in Assam was safe even though some technical issues have been detected, which would be resolved soon.

Senior journalist-cum-RTI activist Saket Gokhale had sent an application to the NIC, the IT wing of the government, seeking a copy of the contract with Wipro.

"The Assam NRC data suddenly vanishing from the website (& the lack of data security) is incredibly shady. I've filed an RTI with the NIC specifically asking about details of the contract with Wipro, name of the cloud service provider, & all contracts signed for hosting this," he tweeted, while attaching a copy of the RTI application.

Leader of the Opposition in Assam Assembly and Congress leader Debabrata Saikia has also written to the Registrar General of India, requesting him to look into the fiasco urgently.

"It is a mystery as to why the online data should vanish all of a sudden, especially as the process to file appeals was yet to begin, all because of the go-slow attitude adopted by the NRC Authority. There is, therefore, ample scope to suspect that disappearance of online data is a malafide act," he had insisted.

New Delhi, Feb 13: Tibetan spiritual leader the Dalai Lama has congratulated AAP supremo Arvind Kejriwal for his party's stupendous victory in the Delhi Assembly polls, saying the people of the national capital will continue to benefit from his leadership.

Responding to the Dalai Lama's statement, Kejriwal in a tweet on Wednesday said, "Am humbled by the kind words and blessings from His Holiness The Dalai Lama. Thank you very much @DalaiLama."

Referring to the Happiness Curriculum for government schools in Delhi, the Dalai Lama said he has a deep admiration for the efforts the AAP government has made towards "shaping better, happier human beings with improved values".

"These measures will have a positive impact on children's overall education, as well as helping the poor to fulfil their dreams of improving their lives," he said.

He also lauded the AAP government's initiative to incorporate aspects of inner mental development into the school curriculum.

"Through such initiatives, you are showing a path to the rest of India," the Dalai Lama added.

In a near-repeat performance of 2015, the Aam Aadmi Party on Tuesday retained power with a stunning victory, winning 62 of the 70 assembly seats and leaving the BJP with just eight seats.