AGL 38.60 Increased By ▲ 1.03 (2.74%)
AIRLINK 131.00 Decreased By ▼ -1.50 (-1.13%)
BOP 5.59 Decreased By ▼ -0.05 (-0.89%)
CNERGY 3.85 Increased By ▲ 0.08 (2.12%)
DCL 8.74 Decreased By ▼ -0.13 (-1.47%)
DFML 40.80 Decreased By ▼ -0.20 (-0.49%)
DGKC 88.69 Decreased By ▼ -1.47 (-1.63%)
FCCL 35.30 Increased By ▲ 0.22 (0.63%)
FFBL 66.50 No Change ▼ 0.00 (0%)
FFL 10.64 Increased By ▲ 0.49 (4.83%)
HUBC 109.34 Increased By ▲ 2.94 (2.76%)
HUMNL 14.66 Increased By ▲ 1.26 (9.4%)
KEL 4.79 Decreased By ▼ -0.07 (-1.44%)
KOSM 7.03 Increased By ▲ 0.18 (2.63%)
MLCF 42.47 Increased By ▲ 0.67 (1.6%)
NBP 59.50 Increased By ▲ 0.92 (1.57%)
OGDC 183.80 Increased By ▲ 2.55 (1.41%)
PAEL 25.63 Decreased By ▼ -0.07 (-0.27%)
PIBTL 5.90 Increased By ▲ 0.07 (1.2%)
PPL 147.81 Decreased By ▼ -0.59 (-0.4%)
PRL 23.52 Increased By ▲ 0.30 (1.29%)
PTC 16.49 Increased By ▲ 1.25 (8.2%)
SEARL 69.50 Increased By ▲ 0.71 (1.03%)
TELE 7.23 Decreased By ▼ -0.01 (-0.14%)
TOMCL 35.80 Decreased By ▼ -0.20 (-0.56%)
TPLP 7.83 Increased By ▲ 0.43 (5.81%)
TREET 14.25 Increased By ▲ 0.01 (0.07%)
TRG 50.58 Decreased By ▼ -0.27 (-0.53%)
UNITY 26.81 Increased By ▲ 0.41 (1.55%)
WTL 1.22 Increased By ▲ 0.01 (0.83%)
BR100 9,814 Increased By 46.2 (0.47%)
BR30 29,773 Increased By 372.9 (1.27%)
KSE100 92,364 Increased By 425.8 (0.46%)
KSE30 28,847 Increased By 103.3 (0.36%)

ISLAMABAD: Hackers from India and North Korea are said to be attacking Pakistan’s most valuable data including that of financial services, defence, and Ministry of Foreign Affairs (MoFA).

According to a letter sent to all the ministries and their attached departments, Pakistan’s Cyber Space remains a target of cyber offensive activities of global security giants. Cyberattacks are increasing in intricacy and magnitude of impact across all organisations which possess the most valuable data including financial services, government, education and health sectors, etc.

Threat intelligence report for the period (November 22, 2022 to January 1, 2023) is as follows: (i) analysis reveals that attack vectors have not targeted Secure ISP users; (ii) major attack vectors for targeting institutes are macro-enabled files, phishing, dropping payloads, domain phishing, Microsoft office base payloads; (iii) 35x malicious samples identified targeting critical information infrastructure including Ministry of Foreign Affairs (MoFA), Prime Minister Office (PMO), Defence Organizations, PAF, Army, banks and educational institutions;(iv) 21x suspicious domain names impersonating ministries, defence services, educational institutes and Anti-Virus service providers were identified; and (v) India and North Korea were among key initiators of targeted cyberattacks.

The suspicious file/ domain names are: (i) IBO- Lodhran.doc (target GoP-CTD);(ii) USDeptof-Statefundallocationsfor Pakistan. Dox (target GoP-CTD);(iii) Prime Minister’s visit to Turkiye.doc (target PM Office &MoFA );(iv) 4x doc file(RFQQUOTA-TION.doc s6604166915347 892625382 RFQQUOATION.doc, NEWOR-DER.doc, 59NEW_ORD-ER.doc)( GoP&Defence Services);(v) 3x impersonating domains (mofs-gov.org,mailv.mots-gov.org, mailpakbj.online (target Ministry of Finance);(vi) nbpfunds.online 68.65.122.49 (National Bank of Pakistan); and (vii) Bloggerboy.buzz 64.190. 113.97 orangeholister.buzz (target Pakistan Government and military, etc.

Copyright Business Recorder, 2023

Comments

Comments are closed.