AGL 38.18 Decreased By ▼ -0.22 (-0.57%)
AIRLINK 142.98 Increased By ▲ 7.98 (5.91%)
BOP 5.07 Decreased By ▼ -0.02 (-0.39%)
CNERGY 3.77 Decreased By ▼ -0.02 (-0.53%)
DCL 7.56 Decreased By ▼ -0.03 (-0.4%)
DFML 44.48 Increased By ▲ 0.03 (0.07%)
DGKC 76.25 Decreased By ▼ -1.15 (-1.49%)
FCCL 26.95 Increased By ▲ 0.07 (0.26%)
FFBL 52.00 Decreased By ▼ -0.97 (-1.83%)
FFL 8.52 Decreased By ▼ -0.02 (-0.23%)
HUBC 125.51 Increased By ▲ 1.71 (1.38%)
HUMNL 9.99 Increased By ▲ 0.05 (0.5%)
KEL 3.74 Increased By ▲ 0.01 (0.27%)
KOSM 8.15 Increased By ▲ 0.07 (0.87%)
MLCF 34.75 Increased By ▲ 1.05 (3.12%)
NBP 58.71 Increased By ▲ 0.22 (0.38%)
OGDC 154.50 Increased By ▲ 4.55 (3.03%)
PAEL 25.15 Increased By ▲ 0.45 (1.82%)
PIBTL 5.93 Increased By ▲ 0.08 (1.37%)
PPL 118.31 Increased By ▲ 6.66 (5.97%)
PRL 24.38 Increased By ▲ 0.48 (2.01%)
PTC 12.00 Decreased By ▼ -0.10 (-0.83%)
SEARL 56.00 Decreased By ▼ -0.89 (-1.56%)
TELE 7.05 Increased By ▲ 0.05 (0.71%)
TOMCL 34.99 Decreased By ▼ -0.16 (-0.46%)
TPLP 6.98 Decreased By ▼ -0.07 (-0.99%)
TREET 13.98 Decreased By ▼ -0.18 (-1.27%)
TRG 46.10 Decreased By ▼ -0.13 (-0.28%)
UNITY 26.00 Decreased By ▼ -0.08 (-0.31%)
WTL 1.21 No Change ▼ 0.00 (0%)
BR100 8,822 Increased By 86.7 (0.99%)
BR30 26,723 Increased By 466.7 (1.78%)
KSE100 83,532 Increased By 810.2 (0.98%)
KSE30 26,710 Increased By 328 (1.24%)

ISLAMABAD: Hackers from India and North Korea are said to be attacking Pakistan’s most valuable data including that of financial services, defence, and Ministry of Foreign Affairs (MoFA).

According to a letter sent to all the ministries and their attached departments, Pakistan’s Cyber Space remains a target of cyber offensive activities of global security giants. Cyberattacks are increasing in intricacy and magnitude of impact across all organisations which possess the most valuable data including financial services, government, education and health sectors, etc.

Threat intelligence report for the period (November 22, 2022 to January 1, 2023) is as follows: (i) analysis reveals that attack vectors have not targeted Secure ISP users; (ii) major attack vectors for targeting institutes are macro-enabled files, phishing, dropping payloads, domain phishing, Microsoft office base payloads; (iii) 35x malicious samples identified targeting critical information infrastructure including Ministry of Foreign Affairs (MoFA), Prime Minister Office (PMO), Defence Organizations, PAF, Army, banks and educational institutions;(iv) 21x suspicious domain names impersonating ministries, defence services, educational institutes and Anti-Virus service providers were identified; and (v) India and North Korea were among key initiators of targeted cyberattacks.

The suspicious file/ domain names are: (i) IBO- Lodhran.doc (target GoP-CTD);(ii) USDeptof-Statefundallocationsfor Pakistan. Dox (target GoP-CTD);(iii) Prime Minister’s visit to Turkiye.doc (target PM Office &MoFA );(iv) 4x doc file(RFQQUOTA-TION.doc s6604166915347 892625382 RFQQUOATION.doc, NEWOR-DER.doc, 59NEW_ORD-ER.doc)( GoP&Defence Services);(v) 3x impersonating domains (mofs-gov.org,mailv.mots-gov.org, mailpakbj.online (target Ministry of Finance);(vi) nbpfunds.online 68.65.122.49 (National Bank of Pakistan); and (vii) Bloggerboy.buzz 64.190. 113.97 orangeholister.buzz (target Pakistan Government and military, etc.

Copyright Business Recorder, 2023

Comments

Comments are closed.