Seventh Pay Commission: Know how Pak based cyber attackers lured Indian govt officials

New Delhi, June 4: At a time when Central government employees are waiting for the implementation of Seventh Pay Commission, a shocking information has come to light. Reportedly, a Pakistan based cyber attackers are luring Indian government officials with emails referencing Pay Commission.

This shocking revelation has been made by a cyber security firm FireEye.

7th CPC: Cyber attackers lure officials

"On May 18, 2016, the group registered a fake news website and sent spear phishing emails to Indian government officials. The emails referenced the Indian government's seventh Central Pay Commission, a topic of interest among officials," security firm has said in a statement.

The emails sent to officials were sent from, a fake news domain registered by the attackers, it added. The group attached a malicious Microsoft Word document to the emails, which pretended to be sent by an employee of a leading publication.

They requested the recipient to open the attachment about the seventh Pay Commission. The attachment is designed to create a backdoor, which FireEye calls the Breach Remote Administration Tool (BreachRAT).

Read more: 7th Pay Commission decoded: Know all about salary increment, past pay commissions

It allows the attacks to download and run new programmes, upload files from the victims' systems to the attackers' servers and a variety of other functions.

"FireEye has not previously observed this malicious tool used by these threat actors... Only one of the recipient email addresses was publicly listed on a website, suggesting that the actor harvested the other non-public addressees through other means," the statement said.

Read more: 7th Pay Commission: All you need to know about recent updates of 'salary increment'

The suspected Pakistan-based threat group has been active for several years, conducting suspected intelligence collection operations against South Asian political and military targets, it added.

The group is the same that FireEye revealed in March to have conducted cyber attacks against Indian targets and Pakistani dissidents since 2013, it said. 

OneIndia News

(With inputs from PTI)

Please Wait while comments are loading...