Tier3

Tier3 Cyber Alerts
Blog & News

Remote Work Guide – Pakistan

In response to the recent viral outbreak in Pakistan, many organizations are asking their employees to work remotely. This, though, brings new challenges to the workplace as workers and companies in Pakistan are adapting to ...
Read More

Remote Work & Telecommuting – 5 Step Cyber Security Guide

The work-from-home culture or remote work is already adopted by almost one in five workers from around the world, and these numbers are expected to only increase further both internationally or locally here in Pakistan ...
Read More

GALLIUM – TELCO companies attacked around world

A team of researchers from the Microsoft Threat Intelligence Center (MSTIC) has warned of an ongoing attacks by the GALLIUM cybercriminal group targeting telecommunication providers in Southeast Asia, Europe and Africa. Attackers exploit vulnerabilities in the WildFly open ...
Read More

PPRA.ORG.PK – Hacked Cyber Alert

Tier3 monitoring teams have detected that Public Procurement Regulatory Authority (PPRA) official website ppra.org.pk was earlier this morning by a hacker group "The Crash Rulers" . It is the same group that supposedly hacked Pakistan ...
Read More

US – launched cyberattacks on Iran’s Systems

US officials say their attacks on Iranian military computers disabled systems that control missile and rocket launchers. The United States military launched cyberattacks against Iranian missile control systems and a spy network on Thursday after ...
Read More

Hackers attack Pakistani Govt’s passport application tracking site

Scanbox framework used to hack Pakistani Govt’s passport application tracking site http://tracking.dgip.gov.pk Experts uncovered a watering hole attack against the Pakistani Govt’s passport application tracking site, hackers used the Scanbox Framework to steal visitors’ data ...
Read More

WhatsApp Hacked – Vulnerable App used for Surveillance

Hackers were able to use the vulnerability and install other malware on phones. After 2 Weeks WhatsApp confirms its 1.5 Billion users need an upgrade. WhatsApp the most popular messenger app, is also owned by ...
Read More

Fileless Malware Attacks -The Growing threat to Pakistani Enterprises

Fileless malware attacks are increasing every day.They can nowadays be seen as the perfect crime of opportunity. The initial vector of these attack can be a seemingly innocuous business email with a link to an ...
Read More

Authorities Issue Alert Warning of Potential for Cyber Attacks

In a latest security alert email sent by PKNIC (registrar of all .PK domains ) to its customers, it is reported that there has been an increase in cyber attacks on Pakistani IT installations in ...
Read More

Worst passwords for 2018?

Even if security experts continue to make awareness campaign, people continue to use bad passwords exposing their data to the risk of hack. Bad habits are hard to die, 123456 is the most used password ...
Read More
December 3, 2015

fpsc.gov.pk – XSS vulnerability

  Vulnerable Website Description: fpsc.gov.pk ::: FPSC :::. Apply online for jobs on fpsc.gov.pk, CSS 2008 Papers, CSS 2009 Papers, CSS 2010 Papers, Apply for General Recruitment […]
December 2, 2015

[Cyber Alert ] e.jang.com.pk – Xss vulnerable

Cyber Alert e.jang.com.pk – [Xss vulnerable] Vulnerable Website :Description: e.jang.com.pk Daily Jang ePaper | Urdu Newspaper | Pakistan News | Daily Urdu News. The Daily Jang free […]
December 2, 2015

bisedgkhan.edu.pk – XSS vulnerable

Vulnerable Website Description:bisedgkhan.edu.pk BISE DG.KHAN. Vulnerability Details: Verified Yes, at 01/12/2015 Type XSS
November 29, 2015

[ Cyber Alert ] pmd.gov.pk – XSS vulnerability

Vulnerable Website Description: pmd.gov.pk Pakistan Meteorological Department PMD. Vulnerability Details: Verified Yes, at 29/11/2015 Type XSS To know more about our cyber security services and cyber […]
November 28, 2015

financekpp.gov.pk. – XSS vuln

Vulnerable Website Description: financekpp.gov.pk Government of Khyber Pakhtunkhwa, Finance Department – Government of Khyber Pakhtunkhwa, Finance Department. Vulnerability Details: Vuln Url : /FD/129-fd-kpk/newsnotifications/notifications/226-judgment-of-peshawar-high-court-dated-28022013-in-writ-petition-no-304-p2013-proforma-regarding-identification-officersofficials-drawing-conveyance-allowance-despite-availing-the-facility-of-residential-accommodation-situated-within-their-work-premises?<svg/onload=prompt(/Tier3/)> Verified Yes, at 15/09/2015 Patched […]
November 28, 2015

fatada.gov.pk XSS vulnerability

Vulnerable Website Description: fatada.gov.pk FATA Development Authority. Vulnerability Details: Vuln URL : /wp-admin/admin-ajax.php?action=revslider_ajax_action&client_action=<h1>Tier3<br><br><br><br><img%20src=x%20onerror=prompt(String.fromCharCode(47,88,83,83,80,79,83,69,68,47))%20/><!– Verified Yes, at 16/09/2015 Patched No Latest check for patch 07/10/2015 (Check now) Type XSS […]
November 28, 2015

XSS – http://www.faisalabadpolice.gov.pk/

Vulnerable Website Description: http://www.faisalabadpolice.gov.pk/ City Police Faisalabad (Custodian of Your Rights). Vulnerability Details: Verified Yes, at 19/10/2015 Patched No Latest check for patch Never (Check now) Type […]
November 27, 2015

125 Pakistani Websites Vulnerable To Sql Injection Hacked

Pakistani Websites Vulnerable To Sql Injection Hack   Please Find below . We checked some websites and after 24 hrs have passed still deface is there, […]