india Archives | DNS Security & Threat Intelligence Blog | Shreshta

Digital Arrest Scam – How scammers use fake documents & exploit legal fears

Shreshta Threat Research — Tue, 15 Oct 2024 08:09:36 +0000

One of the latest cyber crime campaigns doing the rounds in India is the Digital Arrest Scam. The scammers use fake arrest warrant documents and threats to intimidate people into revealing personal information or paying money. The objective of the scammer is to scare and instill fear in the mind of the victim and act […]

The post Digital Arrest Scam – How scammers use fake documents & exploit legal fears appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

Zerodha users targeted with a pig-butchering scam

Vivek Halappanavar and Swapneel Patnekar — Wed, 11 Sep 2024 08:04:56 +0000

Threat researchers at Shreshta have uncovered a pig-butchering scam targeting Zerodha users. The phishing websites are impersonating Zerodha, a reputed stockbroking and financial services company, duping investors into investing in fake crypto and investment schemes. What is a pig-butchering scam? A pig butchering scam, a.k.a. “Sha Zhu Pan” or Shazhupan, (Chinese: 杀猪盘), translated as Killing […]

The post Zerodha users targeted with a pig-butchering scam appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

APAC DNS Forum

Vivek Halappanavar — Sat, 03 Aug 2024 07:25:01 +0000

Our CEO Swapneel Patnekar recently delivered a presentation titled “Who is living off your domain name?” at the ICANN APAC DNS Forum 2024. About APAC DNS Forum The Asia Pacific Domain Name System Forum is a meaningful platform for the regional DNS community to network, exchange ideas, and explore collaboration opportunities in relation to the […]

The post APAC DNS Forum appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

DNS KeyTrap vulnerability

Swapneel Patnekar — Sat, 17 Feb 2024 12:21:32 +0000

DNS KeyTrap vulnerability is a critical flaw in the design of DNSSEC (DNS Security Extensions). A single DNS packet can exhaust the CPU, causing a Denial of Service in a DNSSEC validating recursive resolver. Security researchers at the German National Research Center for Applied Cybersecurity ATHENE uncovered the critical flaw, which has been assigned and listed as CVE-2023-50387 and CVE-2023-50868 […]

The post DNS KeyTrap vulnerability appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

Scams luring faster Ola electric scooter delivery date on the rise

Vivek Halappanavar — Fri, 09 Feb 2024 10:06:32 +0000

Shreshta Threat Intelligence has uncovered scams luring faster Ola electric scooter delivery date. The threat actors are launching phishing campaigns impersonating OLA , deceiving consumers into purchasing Ola electric scooters by promising a faster delivery date. Executive Summary As per our analysis, we conclude with high confidence that the attackers are launching phishing websites impersonating […]

The post Scams luring faster Ola electric scooter delivery date on the rise appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

Having Teen Patti fun? Beware of malware apps!

Swapneel Patnekar — Sat, 03 Feb 2024 08:55:01 +0000

Having Teen Patti fun? Beware of malware apps! Shreshta Threat Intelligence team have detected many websites providing Teen Patti game downloads infected with malware. About Teen Patti Teen Patti is a gambling card game. Teen Patti originated in India and is popular throughout South Asia. It evolved from the English game of three-card brag, with […]

The post Having Teen Patti fun? Beware of malware apps! appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

Fake Google Play Store

Swapneel Patnekar — Thu, 18 Jan 2024 12:47:11 +0000

Executive Summary While malicious and fake apps in the Google Play Store is common, Shreshta Threat Intelligence team has detected multiple fake Google Play Store websites which impersonate the Google Play Store. This gives an impression to the user, that they are visiting the Google Play Store. If the user clicks on the Install button, […]

The post Fake Google Play Store appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

Crypto Scams in India

Swapneel Patnekar — Thu, 18 Jan 2024 12:36:48 +0000

Executive Summary Crypto Scams in India are growing at a rapid rate. At the end of December 2023, Financial Intelligence Unit India (FIU IND) issued show cause notices to nine offshore Virtual Digital Assets Service Providers – Binance, Kucoin, Huobi, Kraken, Gate.io, Bittrex, Bitstamp, MEXC Global and Bitfinex. Also, it wrote to the Ministry of […]

The post Crypto Scams in India appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

Online Shopping frauds in India

Swapneel Patnekar — Wed, 17 Jan 2024 20:55:11 +0000

Executive Summary Since October 2023, our threat intelligence team has been tracking online shopping frauds in India, targeting e-commerce platforms such as DMart, JioMart, Flipkart, Amazon, Tata Croma and Tata 1mg. These deceptive websites lure users with substantial discounts, enticing offers, and prizes in an attempt to extract Personally Identifiable Information(PII) and payment details of […]

The post Online Shopping frauds in India appeared first on DNS Security & Threat Intelligence Blog | Shreshta.

National Crime Records Bureau – Your browser has been locked

Swapneel Patnekar — Fri, 12 Jan 2024 07:43:19 +0000

Executive Summary Threat actors use every method to achieve their motives. The motives vary from financial, espionage, destruction, etc. The Police Trojan website is a classic example of a website impersonating the National Crime Records Bureau with a fake message “Your browser has been locked” and using scareware techniques to make users pay for accessing […]

The post National Crime Records Bureau – Your browser has been locked appeared first on DNS Security & Threat Intelligence Blog | Shreshta.