Search This Blog

Showing posts with label bengaluru police. Show all posts

Railway Protection Force (RPF) bust a multi-crore ticket fraud

Bengaluru: The Railway Protection Force busted a multi crore ticket booking fraud and apprehended two miscreants who hacked the railway booking website and used the ANMS Tatkal software to book tickets.

The ticketing racket seems to have been working all around the nation and the police as well as RPF are making all efforts to snub the fraud and catch all the agents involved in the fraudulent scheme.

The accused arrested by the police are Gulam Mustafa (26),  from Jharkhand, and Hanumantharaju M (37), from Peenya.

Akhilesh Kumar Tiwari, post commander RPF, South Western Railway told that Hanumantharaju was arrested last year and Mustafa on Jan 8th.

Upon questioning, Mustafa said to deccanherald that, "in 2017, he had created an Indian Railway Catering and Tourism Corporation (IRCTC) agent ID to book an e-ticket. He later joined hands with the other accused and hacked the booking portal through ANMS software and created 563 fake IDs and started booking e-tickets illegally."

He even rented out the hacked ANMS software, which led to the department incurring losses up to crores of rupees. He also had in his possession a Pakistan-based DARKNET software and Linux software to hack central government websites, bank accounts etc. He had gained access to government websites and banned websites.( by deccanherald) 

Hanumantharaju worked for Mustafa in selling the e-tickets illegally. The RPF couldn't file the report under IT act, so instead they filed the complaint with the city Police under IPC Section 419 (cheating by personation) and 420 (cheating).

The accused are still under RPF custody but will soon be moved to the city Police station,  Rajagopala Nagar Police Station.
The IRCTC mobile app can be download by anyone and used to book tickets online within two minutes, five tickets per month for personal usage. The accused made hundreds of IRCTC accounts to book several tickets.

Websites tricking buyers with fake high-end products!

Bengaluru: The city's Cyber Crime Police Station (CCPS) has been receiving cases of a new modus operandi, where sellers on websites fraud people by delivering them fake products instead of the plush ones they ordered. Victims of this "gifts scam", as it is being called have lost from Rs 2,000 to Rs 10,000 , with around five cases being filed per day.

People are being scammed on websites as well as a popular Facebook marketplace where exorbitant and high quality products are advertised but the buyers receive fake, low-quality or copy products. In response, police did raid a go-down but no constructive steps have been taken as shutting down the alleged websites or finding the miscreants.

“Two days ago, a go-down was raided at Ramanagara where fake products were stored. They would advertise good-quality products and cheat customers with fake ones. This year, two cases were cracked - the second one by the CID cyber cell,” says K N Yeshvanth Kumar, cybercrime inspector in-charge of the Cyber Crime Police Station.

The buyers are being duped on various purchases, Essesse Satheesh, a product developer accounts- "I purchased a second hand Apple Watch but received a fake and lost Rs 16,000." Another buyer wanted to file a complaint to the police, to see the site shut down, "I had lost only Rs 2,000, but more than getting my money back, I want to inform the police that the website is fake and that others should not fall for it".

Bengaluru has only one cybercrime police station with a tally of 8,200 cases this year, and in 2018 CCPS registered 5,036 cases and officials says that this number could easily go up to 10,000 if more cyber crime police stations are not introduced in the city; to open more of these has been repeatedly proposed to no effect.

Since 2017, only 3,000 of 12,000 cases have been disposed. “The numbers may seem alarming but that is because one station caters to the whole city. The CCP stations will come in soon but cannot say when,” said Additional Commissioner of Police (Crime) Sandeep Patil.

Bengaluru's Police Accounts Hacked: Culprits changed Twitter ID’s

BENGALURU: In the last four days, five of Bengaluru’s Traffic Police Twitter accounts have been cracked where the hacker alleged access to the accounts, posting spams and changing their usernames.

While the police exhort about strengthening cyber security and the need to use strong unique passwords to safeguard online accounts, their own accounts are being hacked by simple password guessing techniques.

Jayanagar Traffic Police was the first account to be hacked at around 10 pm on Friday, followed by ACP South East Division and soon KR Puram, Shivajinagar and Airport traffic police twitter accounts too were hacked by Sunday.

This is not the first time when Bengaluru’s traffic police have been made a victim of cyber crime - Elliot Alderson, a French based hacker broke into the city’s traffic police website in march this year exposing directories. Even other government sites are not well protected, the Aeronautical Development Agency’s (ADA) TRACES account of the Income Tax Department was hacked with impunity with the culprit still unidentified.

Though, in this case, the culprits simply second-guessed common passwords. A man called up various traffic police stations, claiming to be from the IT Department and asked account details and passwords to reset them. It is suspected that one of the staff members fell for the con and shared the password.

The black hat tried the password on other accounts and voila, it worked!

After breaching their twitter handles, the miscreants posted spam messages from these accounts and changed their usernames resulting in Shivnagar Traffic police handle being renamed as ‘SHIVAJINAGAR CINEMA’ and KR Puram became ‘KR PURAM T BOLIWOOD’.

These consequences could have been avoided by quick thinking and strong passwords. Cyber security experts repeatedly identify the use of strong, unique passwords so that malicious cyber threats can’t find or guess your password. SplashData, a password security company estimates that approximately 10% of individuals used at least one of the 25 worst passwords on this year's list, and approximately 3% used the worst — 123456.

Additional commissioner of police (traffic) BR Ravikanthe Gowda said they have filed a complaint with city cyber crime police and told officials to immediately change passwords to secure their accounts (quoting TOI). They also reported the hacking to twitter awaiting a response.

An officer said they are unable to take back control of their accounts on grounds of lack of trained men for the job.

Bengaluru has only one cyber crime police station with a tally of 8,200 cases this year, though to open more of these has been repeatedly proposed to no effect.