New Delhi: Indian cyber-security agencies have detected a phishing fraud that "mimics" the official website of the Ministry of Defence to "harvest" the log-in credentials of officials to "steal" sensitive government documents. An advisory issued this week by the National Informatics Centre (NIC) has identified two phishing links -- mod.gov.in.aboutcase.nl/publications.html and mod.gov.in.army.aboutcase.nl/publications.html.
The communication has been accessed by PTI and it says both the URLs seek NIC-provided log-in credentials of government officials through a fake e-mail that comes attached with a "fake" document titled "Hackers Targeted Defence Personnel in Mass Cyber Attack". Once individual credentials like log-in IDs and passwords are punched, the links re-direct the users to a "login-error.html" page.
"Both the phishing URLs have mirrored the original MoD website (www.mod.gov.in) to lure end users into believing they are legitimate MoD websites," the communication says. The two links are "mimicking" the Department of Defence under the Ministry of Defence and the phishing campaign is primarily aimed at harvesting the NIC credentials of government officials to steal sensitive documents pertaining to the Indian government, the communication says.