framework

Tier3 Cyber Alerts
Blog & News

How to Protect yourself from bank fraud and cyber crime in Pakistan?

1. Do not give any personal information (name, address, bank details, email or phone number) to organisations or people before verifying their credentials. Always question unsolicited calls, texts or emails requesting your personal or financial ...
Read More

DEBIT / CREDIT CARD FRAUD in Pakistan. A guide on what to do ?

Payment/ bank card fraud involves the compromise of any personal information from credit, debit or store cards. The personal information stolen from a card, or the theft of a card itself, can be used to ...
Read More

Bank Islami denies losing $6 million in country’s ‘biggest cyber attack’

Karachi-based Bank Islami acknowledged on Sunday of suffering a security breach of its payment cards system but denied reports of having lost an alleged $6 million in what local press have called the biggest cyber-attack ...
Read More

Pakistani hackers attack institutions in EU and the US

The Pakistani hacker group is attempting to attack government organizations using the infrastructure it also uses to send spam to malware. According to researchers from Palo Alto Networks Unit 42, the group Gorgon Group is ...
Read More

Afghan diplomats in Pakistan suspicious of targeted “Cyber attacks” by state-backed APT Groups

Afghan diplomats in Pakistan have been warned they are believed to be victims of "government-backed" cyber attacks trying to steal their email passwords.Afghan embassy sources told the BBC two staff members and a generic account received ...
Read More

Fake News & Social Media Propaganda – Impact and Effects on Election Campaigns and polls in Pakistan

Fake News & Social Media Propaganda – Impact and Effects on Election Campaigns and polls in Pakistan When Channel4 investigated Cambridge Analytica, the company’s bosses boasted of helping swing last year’s presidential election in Kenya ...
Read More

Careem Taxi Service System Hacked – Millions of Users affected

Careem on Monday warned its users that their personal data had been compromised in a massive cyber-security breach.The company stated that sensitive information like customers' names, email addresses, phone numbers and trip history data had ...
Read More

UK launched cyber-attack on Daesh : criticizes Russia for unacceptable cyber-behaviour

The UK Govt announced that it has conducted a "major offensive cyber-campaign" against the Islamic State (Daesh) group, the director of the intelligence agency GCHQ has revealed. This operation has hindered the group's ability to ...
Read More

Iran- based Cyber Hackers group TEMP.Zagros targets Asia and Middle East regions

Experts at FireEye have uncovered a new massive phishing campaign conducted by TEMP.Zagros group. This group is targeting Asia and Middle East regions. These Iranian hackers were most active in this period, researchers uncovered a ...
Read More

NACTA Launches Chaukas (چوکس) Mobile Apps – A part of Tat’heer Drive

National Counter Terrorism Authority (NACTA) Pakistan has launched CHAUKAS Mobile Apps. This is second major project under Tatheer drive after launch of SURFSAFE web portal last year. These mobile apps are launched as part of TATHEER ...
Read More
February 11, 2017

HACKING CAMPAIGN TARGETING MINISTRY AND EMBASSY SITES

malicious reconnaissance campaign that targets websites. It is unknown what is the intent behind the campaign as of this writing, however, the profile of the targets resembles those that are common targets of Advanced Persistent Threat (APT) actors. As the attack is currently active, it effectively turns compromised sites into attack surfaces against their visitors.
February 6, 2017

Anonymous Hacktivist group hacks 10,613 Tor Websites On Dark Web

Hacktivist group Anonymous hacks the company servers Freedom Hosting II and lay down some 10,000 web pages based on Tor, representing almost 20% of the web deep. Hackers claim that at least half of the web pages were child pornography.
February 2, 2017

Microsoft Power Point 2016, Java Code Execution

If the user have JAVA (or python or similar interpreters) an attacker can insert jar file or py file into the presentation and trigger it when mouse moves, for easier exploitation the attacker can use ppsx file which will load automatically in presentation mode and once the user opens the file and moves mouse it will trigger the payload.
January 27, 2017

New malware-campaign: Chrome displays a message “font not found” to its users

Experts of the company Proofpoint warn users of Windows and Chrome browser: hackers have come up with a new trick and now disguise their attacks under […]
January 25, 2017

IT Companies move to target ‘terrorist content’ online

The move by the technology companies, which is expected to begin in early 2017, aims to assuage government concerns and derail proposed new federal legislation over social media content that is seen as increasingly driving ‘recruitment’ and ‘radicalization’, while also balancing free speech issues.In Pakistan , people can use Surf Safe Pakistan web portal to report terrorist and extremist content online.
January 25, 2017

NTISB: Cyber security alert issued in Pakistan

Government officials warned that the emails being sent from Mumbai, (India) and USA addresses could hack all the information from the device.
January 24, 2017

Forensic Analysis: Botnet Attacking – WordPress Sites Of Pakistan

CK uses a well known shell as a backdoor which is known as the WSO shell. It stores the backdoor in a file called wp-ajax.php which is made to look like a legitimate WordPress core file.It is affecting wordpress websites all around the world and specially in Pakistan on industrial scale.
January 22, 2017

Cyber Warfare: Trump’s Next Big Challenge

“Well, I think cyber security, cyber warfare will be one of the biggest challenges facing the next president…” As President-elect Donald Trump continues on his journey […]