Cabinet Division has advised to Government ministries and divisions to put strict safety precautions against malicious mails .In regard to these order departments should make sure that sensitive and private information does not seep out at any cost.
The reason behind this warning was a malicious email with the subject “Indian Army kidnaps Pakistan Army officer Lt Col (retired) M Habib from Nepal of spy swap” and it was sent to various officers and staff of government departments from a spoof email.
Malware inside the email
An consultative issued by the National Telecom and Information Technology Security Board sated
The email include in ‘Inpage exploit’. Downloading and opening the Inpage file executes a malware in [the] background that result[s] in hacking of the computer,
The advisory further informed that the attachment in the mail was named as “Kulbhusan Yadav Vs MdHabib SpySwap.inp” and was sent from an email id called “Editor.farida&down.com.” The malware can damage all versions of Inpage Urdu till 2012.
The advisory give details the potential risk from the email by uttering that it
Reads user’s PC information like operating system details, directory files list, network, IP, windows services information, route and interfaces detail from the victim’s computer,
Furthermore, the malware can take the victim’s store user ids and passwords and could be in charge of their computer. This is pretty analogous to ransomware.
It knows how to read information and data from the user’s open windows and proceed as a key logger to dig out information such as passwords and a file moocher. Once the malware finds the way inside your computer; it would be able to mechanically run itself on start-up.
Call for Action
It has been strongly suggested by the advisory to inaugurate and install strong anti-virus software lie Avira, Kaspersky and Avast.
There is also recommendation to shun the usage of Inpage and to avoid the usage Microsoft Word with Urdu language and Urdu word processor 1.1 to government’s ministries and divisions.
There is officially notice to not open an email unless they are sure of its matter and content and of course the sender. They have got stern instructions to reinstall Windows in case any potential risk they sense in systems and to immediately disconnect their computer from the internet in case the user is competent to predict the cipher and any signs of a malware attack.
Source The Nation