vulnerability

Tier3 Cyber Alerts
Blog & News

PPRA.ORG.PK – Hacked Cyber Alert

Tier3 monitoring teams have detected that Public Procurement Regulatory Authority (PPRA) official website ppra.org.pk was earlier this morning by a hacker group "The Crash Rulers" . It is the same group that supposedly hacked Pakistan ...
Read More

US – launched cyberattacks on Iran’s Systems

US officials say their attacks on Iranian military computers disabled systems that control missile and rocket launchers. The United States military launched cyberattacks against Iranian missile control systems and a spy network on Thursday after ...
Read More

Hackers attack Pakistani Govt’s passport application tracking site

Scanbox framework used to hack Pakistani Govt’s passport application tracking site http://tracking.dgip.gov.pk Experts uncovered a watering hole attack against the Pakistani Govt’s passport application tracking site, hackers used the Scanbox Framework to steal visitors’ data ...
Read More

WhatsApp Hacked – Vulnerable App used for Surveillance

Hackers were able to use the vulnerability and install other malware on phones. After 2 Weeks WhatsApp confirms its 1.5 Billion users need an upgrade. WhatsApp the most popular messenger app, is also owned by ...
Read More

Fileless Malware Attacks -The Growing threat to Pakistani Enterprises

Fileless malware attacks are increasing every day.They can nowadays be seen as the perfect crime of opportunity. The initial vector of these attack can be a seemingly innocuous business email with a link to an ...
Read More

Authorities Issue Alert Warning of Potential for Cyber Attacks

In a latest security alert email sent by PKNIC (registrar of all .PK domains ) to its customers, it is reported that there has been an increase in cyber attacks on Pakistani IT installations in ...
Read More

Worst passwords for 2018?

Even if security experts continue to make awareness campaign, people continue to use bad passwords exposing their data to the risk of hack. Bad habits are hard to die, 123456 is the most used password ...
Read More

How to Protect yourself from bank fraud and cyber crime in Pakistan?

1. Do not give any personal information (name, address, bank details, email or phone number) to organisations or people before verifying their credentials. Always question unsolicited calls, texts or emails requesting your personal or financial ...
Read More

DEBIT / CREDIT CARD FRAUD in Pakistan. A guide on what to do ?

Payment/ bank card fraud involves the compromise of any personal information from credit, debit or store cards. The personal information stolen from a card, or the theft of a card itself, can be used to ...
Read More

Bank Islami denies losing $6 million in country’s ‘biggest cyber attack’

Karachi-based Bank Islami acknowledged on Sunday of suffering a security breach of its payment cards system but denied reports of having lost an alleged $6 million in what local press have called the biggest cyber-attack ...
Read More
February 17, 2017

New Ransomware Cerber bypasses firewalls and anti-virus files

Typically, the malware trying to bring security solutions fail or prefer them not to communicate and work rolled up, revealing a particular antivirus product on the infected machine.
February 12, 2017

Indian hackers claimed to have hacked Islamabad, Peshawar, Multan International and Karachi airport

The India - Pakistan cyber war intensifies as retaliatory ransomware attack cripples websites of Islamabad, Multan and Karachi airports
February 11, 2017

HACKING CAMPAIGN TARGETING MINISTRY AND EMBASSY SITES

malicious reconnaissance campaign that targets websites. It is unknown what is the intent behind the campaign as of this writing, however, the profile of the targets resembles those that are common targets of Advanced Persistent Threat (APT) actors. As the attack is currently active, it effectively turns compromised sites into attack surfaces against their visitors.
February 3, 2017

Russian hackers group ” Turla ” uses new JavaScript Malware KopiLuwak

The Russia-linked cyber espionage group known as Turla is using a new piece of JavaScript malware KopiLuwak , Kaspersky Lab reported on Thursday.
February 3, 2017

New Phishing Techniques – Amazon and PayPal fraudsters ‘up their game’ with fake messages

Our experts confirm spoofing contact details is easy to do. There are a number of websites who offer the service as a way to "prank" your friends.Not saying these sites are set up for criminals but are they taking into account that fraudsters are making use of the spoofing services.
February 2, 2017

Microsoft Power Point 2016, Java Code Execution

If the user have JAVA (or python or similar interpreters) an attacker can insert jar file or py file into the presentation and trigger it when mouse moves, for easier exploitation the attacker can use ppsx file which will load automatically in presentation mode and once the user opens the file and moves mouse it will trigger the payload.
January 22, 2017

Cyber Warfare: Trump’s Next Big Challenge

“Well, I think cyber security, cyber warfare will be one of the biggest challenges facing the next president…” As President-elect Donald Trump continues on his journey […]
January 22, 2017

Want to Get Hacked? Use This Email Provider.

Yahoo! hasn’t had the best year: failing to disclose that hundreds of millions of accounts were leaked years ago just as your organization experiences another hack […]