Attacks on Indian Income Tax Department Continue Symantec previously reported a phishing attack on the Indian Income Tax Department. Phishing emails boasting of tax refunds were sent to users in an attempt to entice citizens to enter their credentials on a bogus website. Recently, new attacks have been observed in which the phishing website states that taxes can be paid online. As the fiscal year in India draws to an end, more people are rushing to pay taxes before the deadline.
There are two types of tax payments in India; namely, TDS (Tax Deducted at Source) and TCS (Tax Collected at Source). Customers can pay their taxes using the e-payment facility that requires sensitive information, such as personal information and bank or credit card details. Below is a screenshot of the phishing page: The phishing website has mimicked the legitimate one in order to steal customers’ sensitive information. However, the phishing page is not SSL encrypted—the legitimate page is. The attack was driven from IP- based domains hosted on servers located in the United States. Caution: • Please be very careful when handling suspicious emails and URLs that are seeking personal information. • Do not visit any links in email messages of dubious origin or intent. • Do not enter any of your details on these kinds of sites. • Please use the legitimate site of http://www.incometaxindia.gov.in/ for any help regarding an income tax refund in India. * Scammers Offering Tax Refunds (February 18, 2010) Fraudsters never seem to rest. They have now turned their attention towards phishing using the Indian Income Tax Department’s name and branding. It is the season of tax returns in India and it is well known that people will file their income tax returns for the end of the fiscal ... * The Phishing of Indian Job Sites (March 28, 2010) Despite the global economic slowdown, India witnessed a high number of new jobs in the country during the first quarter of 2010. With the job market looking positive, job sites seem to have benefited with more users accessing their websites. Below is a screenshot of a phishing website that takes advantage ... * Phishing Prepaid Debit Card Accounts (May 17, 2010) For the past month or so Symantec has been observing phishing websites that are spoofing a leading brand that provides prepaid debit card services to U.S. citizens. Legitimate prepaid debit cards help people to make purchases, pay bills, shop online, etc. without the need of a bank account. These services ... * Fraudsters Target the Reserve Bank Of India (May 6, 2010) As India’s fiscal year came to an end, Symantec had observed phishing attacks on the Indian Tax Department. Now, fraudsters have turned their attention to Indian banks. In particular, Symantec is seeing a significant rise in phishing attacks on Indian public sector banks. In March 2010 the number of ... * Mass Phishing of Retail Electronic Payment Brands (March 15, 2010) In the past couple of months, Symantec has observed a mass phishing attack on two major brands that provide retail electronic payment services for banks across the globe. Legitimate retail electronic payments using credit and debit cards are the most common means of financial transaction over the Internet, and so ... REQUESTING YOU... Actually i am a newbie in the network security field......could you please guide me all......how to become an expert in network security field so that we all will save our india from all these kind of attacks.. please contribute your valuable suggestions.......I am waiting for your response.... I M PROUD TO BE AN INDIAN .......CHEERS......... -- You received this message because you are subscribed to the Google Groups "nforceit" group. To post to this group, send an email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/nforceit?hl=en-GB.
