AGL 38.55 Decreased By ▼ -0.01 (-0.03%)
AIRLINK 200.83 Decreased By ▼ -6.94 (-3.34%)
BOP 10.19 Increased By ▲ 0.13 (1.29%)
CNERGY 6.57 Decreased By ▼ -0.51 (-7.2%)
DCL 9.68 Decreased By ▼ -0.31 (-3.1%)
DFML 39.90 Decreased By ▼ -1.24 (-3.01%)
DGKC 97.67 Decreased By ▼ -5.79 (-5.6%)
FCCL 35.10 Decreased By ▼ -1.25 (-3.44%)
FFBL 86.00 Decreased By ▼ -5.59 (-6.1%)
FFL 13.95 Decreased By ▼ -0.65 (-4.45%)
HUBC 130.45 Decreased By ▼ -8.98 (-6.44%)
HUMNL 14.00 Decreased By ▼ -0.10 (-0.71%)
KEL 5.64 Decreased By ▼ -0.33 (-5.53%)
KOSM 7.30 Decreased By ▼ -0.56 (-7.12%)
MLCF 45.60 Decreased By ▼ -1.68 (-3.55%)
NBP 66.38 Decreased By ▼ -7.38 (-10.01%)
OGDC 221.50 Decreased By ▼ -1.16 (-0.52%)
PAEL 38.45 Increased By ▲ 0.34 (0.89%)
PIBTL 8.96 Decreased By ▼ -0.31 (-3.34%)
PPL 196.85 Decreased By ▼ -9.00 (-4.37%)
PRL 38.85 Decreased By ▼ -1.00 (-2.51%)
PTC 25.60 Decreased By ▼ -1.02 (-3.83%)
SEARL 104.50 Decreased By ▼ -5.74 (-5.21%)
TELE 9.06 Decreased By ▼ -0.17 (-1.84%)
TOMCL 36.41 Decreased By ▼ -1.80 (-4.71%)
TPLP 13.64 Decreased By ▼ -0.13 (-0.94%)
TREET 25.20 Decreased By ▼ -1.25 (-4.73%)
TRG 58.10 Decreased By ▼ -2.44 (-4.03%)
UNITY 33.55 Decreased By ▼ -0.59 (-1.73%)
WTL 1.73 Decreased By ▼ -0.15 (-7.98%)
BR100 11,896 Decreased By -402.5 (-3.27%)
BR30 37,383 Decreased By -1494.9 (-3.85%)
KSE100 111,070 Decreased By -3790.4 (-3.3%)
KSE30 34,909 Decreased By -1287 (-3.56%)

ISLAMABAD: The National Telecommunication and Information Security Board (NTISB) has warned that Hostile Intelligence Agencies (HIAs) have accelerated their hacking attempts against officers especially senior officers by exploiting the human psychology/allure of curiosity to call back an unfamiliar number.

The board has issued an advisory regarding hacking attempts of HIAs using spoofed messages.

The advisory noted that of late, the HIAs have accelerated their hacking attempts against officers especially senior officers by exploiting the human psychology/allure of curiosity to call back an unfamiliar number, which if successful, can lead to the launch of sophisticated attacks including extraction of sensitive information and gaining unauthorized access to targets’ device.

The modus operandi of HIAs is that target may receive a one ring/missed call from a familiar number to trick people into returning missed call or SMS, which is exploited by HIAs in following ways: (a) Impersonation of trusted contacts of reputable organizations/ individuals for further luring in the victims to exploit their mobile phones; (b) mobile numbers of military/defense forces personnel (since most of the contact lists had been leaked/hacked over a period of time from mobile phones of military/defense personals) are being used by HIAs to send spoofed SMS/WhatsApp messages to selected targets; (c) missed call or sharing of a well-crafted message to trick the victims to disclose their sensitive information or click on suspicious links/attachments; and (d) spoofed numbers can be generated from various websites/applications.

Most spoofing services append the originator’s country code for international callings; therefore, in some sloppy hacking attempts those numbers are appended with the Indian country code (+91) as well.

The board has enumerated a few best practices as a basic remedy to avoid any undesirable episode which include; (a) do not respond to unknown calls/messages. Do not pick up/call back to calls from unknown numbers/source and do not respond to unknown messages. Also, carefully examine the number of caller/message sender for spoofing.

Treat missed calls and SMS from unfamiliar numbers with suspicion; especially if they are from international numbers; (b) enable Two-Factor Authentication (2FA).

Utilize/enable 2FA for WhatsApp and other relevant platforms to add an extra layer of security to your accounts/applications; (c) avoid Clicking Suspicious Links. Refrain from clicking on links received via SMS or WhatsApp unless confident about their authenticity; and (d) update and Secure Devices. Keep mobile devices and applications up to date with the latest security patches/updates to mitigate vulnerabilities.

Copyright Business Recorder, 2023

Comments

Comments are closed.