AGL 40.05 Decreased By ▼ -0.11 (-0.27%)
AIRLINK 129.74 Decreased By ▼ -1.99 (-1.51%)
BOP 6.68 Decreased By ▼ -0.01 (-0.15%)
CNERGY 4.62 Increased By ▲ 0.15 (3.36%)
DCL 8.85 Increased By ▲ 0.03 (0.34%)
DFML 41.91 Increased By ▲ 1.30 (3.2%)
DGKC 83.97 Decreased By ▼ -0.11 (-0.13%)
FCCL 32.70 Increased By ▲ 0.36 (1.11%)
FFBL 75.47 Increased By ▲ 6.86 (10%)
FFL 11.50 Increased By ▲ 0.15 (1.32%)
HUBC 110.50 Decreased By ▼ -1.26 (-1.13%)
HUMNL 14.65 Increased By ▲ 0.34 (2.38%)
KEL 5.40 Increased By ▲ 0.18 (3.45%)
KOSM 8.41 Decreased By ▼ -0.57 (-6.35%)
MLCF 39.89 Increased By ▲ 0.46 (1.17%)
NBP 60.45 Increased By ▲ 0.16 (0.27%)
OGDC 198.45 Increased By ▲ 3.51 (1.8%)
PAEL 26.63 Decreased By ▼ -0.06 (-0.22%)
PIBTL 7.71 Increased By ▲ 0.23 (3.07%)
PPL 158.00 Increased By ▲ 2.23 (1.43%)
PRL 26.69 Increased By ▲ 0.01 (0.04%)
PTC 18.40 Increased By ▲ 0.10 (0.55%)
SEARL 82.19 Decreased By ▼ -0.83 (-1%)
TELE 8.34 Increased By ▲ 0.11 (1.34%)
TOMCL 34.45 Decreased By ▼ -0.10 (-0.29%)
TPLP 9.14 Increased By ▲ 0.33 (3.75%)
TREET 17.32 Increased By ▲ 0.62 (3.71%)
TRG 61.30 Decreased By ▼ -1.15 (-1.84%)
UNITY 27.35 Decreased By ▼ -0.09 (-0.33%)
WTL 1.37 Increased By ▲ 0.09 (7.03%)
BR100 10,400 Increased By 213 (2.09%)
BR30 31,653 Increased By 316.8 (1.01%)
KSE100 97,328 Increased By 1781.9 (1.86%)
KSE30 30,192 Increased By 614.4 (2.08%)

ISLAMABAD: Hackers from India and North Korea are said to be attacking Pakistan’s most valuable data including that of financial services, defence, and Ministry of Foreign Affairs (MoFA).

According to a letter sent to all the ministries and their attached departments, Pakistan’s Cyber Space remains a target of cyber offensive activities of global security giants. Cyberattacks are increasing in intricacy and magnitude of impact across all organisations which possess the most valuable data including financial services, government, education and health sectors, etc.

Threat intelligence report for the period (November 22, 2022 to January 1, 2023) is as follows: (i) analysis reveals that attack vectors have not targeted Secure ISP users; (ii) major attack vectors for targeting institutes are macro-enabled files, phishing, dropping payloads, domain phishing, Microsoft office base payloads; (iii) 35x malicious samples identified targeting critical information infrastructure including Ministry of Foreign Affairs (MoFA), Prime Minister Office (PMO), Defence Organizations, PAF, Army, banks and educational institutions;(iv) 21x suspicious domain names impersonating ministries, defence services, educational institutes and Anti-Virus service providers were identified; and (v) India and North Korea were among key initiators of targeted cyberattacks.

The suspicious file/ domain names are: (i) IBO- Lodhran.doc (target GoP-CTD);(ii) USDeptof-Statefundallocationsfor Pakistan. Dox (target GoP-CTD);(iii) Prime Minister’s visit to Turkiye.doc (target PM Office &MoFA );(iv) 4x doc file(RFQQUOTA-TION.doc s6604166915347 892625382 RFQQUOATION.doc, NEWOR-DER.doc, 59NEW_ORD-ER.doc)( GoP&Defence Services);(v) 3x impersonating domains (mofs-gov.org,mailv.mots-gov.org, mailpakbj.online (target Ministry of Finance);(vi) nbpfunds.online 68.65.122.49 (National Bank of Pakistan); and (vii) Bloggerboy.buzz 64.190. 113.97 orangeholister.buzz (target Pakistan Government and military, etc.

Copyright Business Recorder, 2023

Comments

Comments are closed.