The recently discovered Duqu Trojan has received considerable attention from the security research community. Here's why. What is Duqu? It's a Remote Access Trojan (RAT) that is designed to steal data from computers it infects. A lot of security analysts believe that it is a precursor to the next Stuxnet and poses a grave threat to the industrial control systems that manage equipment at critical infrastructure facilities such as power plants and water treatment facilities.
What exactly is the link between Stuxnet and Duqu? Duqu and Stuxnet share a lot of common code and functions. While Stuxnet binaries have been floating around for some time, the actual source code itself has not been publicly available....
Read More...
A powerful new computer virus that some are calling the "Son of Stuxnet" has been discovered, and researchers are concerned about its potential for attacking critical infrastructure computers around the world.
The annual cyber crime survey carried out in cities across the country reveals that the cost of cyber crime suffered by Indians is around Rs34,110 crore, annually. Norton Cyber Crime Report 2011 reveals that in India, around 29.9 million people fell victim to cyber crime last year, whereas global statistics touched 431 million.
State-owned telecom companies BSNL and MTNL will operate and maintain asecure network being built to ensure confidentiality between government departments across the country. The Centre had earlier planned to bring in the security agenciesto run the Rs 600-crore network. The network will connect nearly 5,000 government departments at the Centre as well as in the states. ..
The US military's plans to create a cyberwarfare firing range in which to test cyber weapons and train the cyber warriors of tomorrow is to continue, with a further $10.77m of funding just announced. This network is to be populated by software "replicants", playing the parts of human sysadmins, users etc – innocent bystanders in the devastating digital warfare taking place around them.
An ATM skimmer gang stole more than $400,000 using skimming devices built with the help of high-tech 3D printers, federal prosecutors say.
Many of the ATM skimmers profiled in my skimmer series are carefully hand-made and crafted to blend in with the targeted cash machine in both form and paint color. Some skimmer makers even ask customers for a photo of the targeted cash machine before beginning their work.
The skimmer components typically include a card skimmer that fits over the card acceptance slot and steals the data stored on the card’s magnetic stripe, and a pinhole camera built into a false panel that thieves can fit above or beside the PIN pad. If these components don’t match just-so, they’re more likely to be discovered and removed by customers or bank personnel, leaving the thieves without their stolen card data....
A cyber security report earlier this year had suggested that the worldwide web-based attacks in 2010 were up 93 percent from 2009.
The US already signing a cyber security collaboration pact with India this July, the 28-nation American-led political and military alliance is of the view that it can collaborate with the South Asian information technology superpower in protecting the cyber world, one of the global commons....
CRIME : Hacks Are Organized Crime, Must Have Stiffer Penalties
Nuclear warheads could be next Stuxnet target
Sep 9, 2011
Code in Stuxnet worm can be modified with right skills, says security expert
Due to the complexity and sophistication of the code contained within the Stuxnet worm, the possibility of it being used to take control of a nuclear warhead is high. Check Point Israel security evangelist, Tomer Teller, confirmed the code in Stuxnet could be modified to launch new SCADA attacks. Nuclear warheads are controlled by computers so if someone managed to slip a worm inside a facility that will reach the warhead component, they could launch it and than aim it back at the country’s facility....
Read More..
Russia's biggest retail bank is testing something that the old K.G.B. might have loved, an automated teller machine with a built-in lie detector intended to prevent consumer credit fraud. New customers could talk to the machine to apply for a credit card, with no human intervention required on the bank's end. The machine scans a passport, records fingerprints and takes a three-dimensional scan for facial recognition.
First of all thank you for the excellent audit done… I have worked with several audit company but no one is checking things like this…and even its very much required… Thank you for your time and efforts done for effective audit.
Yusuf Gandhi Project Manager Silver Touch Technologies Ltd.
……the workshop on ‘Business Continuity & Disaster Recovery Planning’ was very well received by the Managers and Engineers and we wish to place on record the professionalism and in-depth technical skills displayed by your team. Arun Kumar Malik VP Business Excellence Airtel ES – Carriers
The training was very well received by the CICP officers….. The training material, comprehensive coverage about the entire spectrum and the administrative details organized by you are worth emulating by trainers. This training would be a springboard for CICP officers to delve deeper into the depth of Business Continuity & Disaster Recovery. Col G D Suri Officiating DDG OS CICP TG Central Ordnance Depot Delhi Cantt
Your team did a wonderful job. Apart from audit, IT Security Training was made interesting by your trainers and well appreciated by the participants and helped in enhanced awareness. Network Scanning and Audit, conducted by your auditors was commendable, provided valuable inputs and was an eye opener. VA Analysis was very valuable to plug vulnerabilities. Please convey our thanks to the team for sincere dedicated efforts. ……..we plan to have fruitful association in future also. P L Rajani, DGM (IT) NTPC-Badarpur New Delhi - 110044
…… very well received by the Delhi Police Officers and we wish to place on record the professional and in-depth technical skills displayed by you and your team. Anurag Jain Deputy Coordinator Cyber Crime Training Program
…..with reference to your indigenously developed product, I thank you for the effort made at your end. I wish your team success in your future endeavours. Alok Vijayant Director IDG, NTRO Govt of India
The training was well received by the CICP officers and we wish to place on the record the professionalism and in-depth technical skills displayed by you. We wish AKSIT success in all their endeavors and hope to continue similar interactions in future too. Jaideep SuriOffg DDG OS CICP TG CICP Tech Group
AKS Information Technology Services Private Ltd provided IT Security Awareness training to the Officers and Staff of Cabinet Secretariat….. The training was very well received by the Officers and Staff of Cabinet Secretariat and we wish to place on record the professionalism and in-depth technical skills displayed by you and your team. Dr. Shubhag Chand Technical Director Cabinet Secretariat Rashtrapati Bhawan
Your team did a commendable job. Network Scanning and Audit was commendable. VA Analysis and Desktop Audit was very valuable to plug the vulnerabilities and secure the network. Please convey our thanks to the team for sincere dedicated efforts. Dr. Shubhag Chand Technical Director Cabinet Secretariat Rashtrapati Bhawan
…….. convey my deeply felt gratitude for your contribution to the technical seminar on Mil Cyber Space and Security. You have done a commendable job in making the seminar a success which has been appreciated by all. Col Atul Kumar Commanding Officer 23 Inf Div Ord Unit,
…….. My compliments to team of M/s. AKS Information Technology Services Private Limited. They have indeed done commendable job under all odds. CK Jain Director (E), DD News New Delhi
