NewKerala.com

Rajasthan Police Issues Urgent Cyberfraud Advisory for Institutions

The Rajasthan Police has issued a serious advisory warning institutions about sophisticated cybercriminals specifically targeting Network Attached Storage (NAS) devices. These attackers exploit weak passwords and outdated software to encrypt critical data and demand hefty ransoms. Chartered accountancy firms, consulting agencies, hospitals, and media organizations are among the primary targets due to the sensitive data they handle. The police advise immediate reporting to cyber stations and recommend security measures like multi-factor authentication, regular updates, and offline backups.

Key Points: Rajasthan Police Cyberfraud Advisory for NAS Device Security

  • NAS devices are primary target
  • Chartered accountants and IT pros at high risk
  • Ransomware locks critical data for extortion
  • Multi-factor authentication and strong passwords advised
2 min read

Rajasthan Police releases advisory to prevent institutions from cyberfraud attacks

Rajasthan Police warns institutions of targeted ransomware attacks on NAS devices. Learn protection tips and official helpline numbers.

"Cybercriminals identify vulnerable or publicly accessible NAS systems over the internet. - Rajasthan Police Advisory"

Jaipur, March 25

Acting under the directives of Rajasthan Director General of Police, Rajiv Kumar Sharma, a serious warning has been issued in the state regarding the security of digital data, officials said on Wednesday.

Based on observations by the Indian Cyber Crime Coordination Centre (I4C), it has emerged that cybercriminals are now specifically targeting institutions that use Network Attached Storage (NAS) devices.

These include chartered accountancy firms, consulting agencies, hospitals, IT and media professionals, as well as educational institutions.

Jaipur Deputy Inspector General of Police (Cyber Crime), Shantanu Kumar Singh, said that the modus operandi of these fraudsters is highly sophisticated.

Cybercriminals identify vulnerable or publicly accessible NAS systems over the internet.

By exploiting weak passwords or outdated software, these cybercriminals gain unauthorised access and then copy or encrypt (lock) critical data.

They subsequently demand hefty ransom payments, threatening to make sensitive data public, effectively denying institutions access to their own information.

According to the advisory released by the Rajasthan Police, chartered accountants and IT professionals are among the primary targets, as they handle highly confidential financial data of clients.

In addition, ransomware incidents have also been reported in media organisations and large hospitals.

Sharing tips to safeguard valuable data, cyber experts recommend that institutions should restrict direct internet access to NAS systems, implement multi-factor authentication, and use strong passwords to enhance security.

It is essential to regularly update software and apply all necessary security patches to prevent vulnerabilities.

Institutions should also maintain secure backups at regular intervals and store them offline or in protected locations, while ensuring proper data recovery mechanisms are in place to handle emergencies effectively.

Continuous monitoring of systems is crucial to detect any unusual activity.

Immediate action should be taken if suspicious behaviour is observed, and affected systems must be isolated from the network without delay to prevent further damage.

Institutions are also advised to seek assistance from cybersecurity experts whenever required, officials said, adding: "In case of any such incident, report immediately to the nearest police station or cyber police station, or file a complaint via the Cyber Crime Reporting Portal: https://cybercrime.gov.in. The complainant may also contact the Cyber Helpline at 1930 or the Cyber Helpdesk at 9256001930/9257510100," officials said.

- IANS

Share this article:

Reader Comments

S
Sarah B
Working for a media house in Delhi, we received a similar internal memo. It's frightening how these attacks are becoming so specific. Multi-factor authentication is not optional anymore, it's a must for all employees.
V
Vikram M
Good step by Rajasthan Police. But advisories are not enough. There should be mandatory cybersecurity audits for institutions handling sensitive public data, especially hospitals and CAs. Prevention is better than paying ransom. 👍
P
Priyanka N
As an IT professional, I see clients using 'password123' for everything! The weakest link is often human. Regular training for staff on basic cyber hygiene is just as important as the technical measures mentioned here.
R
Rahul R
Respectfully, while the advisory is good, the police cyber cells need more manpower and faster response times. Reporting is one thing, but getting timely help during an attack is another challenge altogether.
N
Nisha Z
Small educational institutes and clinics are most vulnerable. They can't afford big cybersecurity firms. Hope the government launches some subsidized or free security consultation for MSMEs. Our data is at risk too.
D
David E
The point about offline backups is crucial. Cloud is great, but a physical, disconnected backup is your last line of defense. Schedule it weekly, without fail. Don't

We welcome thoughtful discussions from our readers. Please keep comments respectful and on-topic.

Leave a Comment

Minimum 50 characters 0/50