Cyber Threat Alert: Phishing Campaign Targets NIC Email Users in Sensitive Government Organisations

Tarun Karthick

Campbell Bay, 11 November 2023

In a concerning development, a surge has been reported in phishing attempts targeting NIC email users from various sensitive government organisations. Cybercriminals are employing a sophisticated phishing campaign, urging recipients to install malicious security patches on their computer systems.

The phishing emails, masquerading as official directives from the NIC security team, bear titles such as ‘NIC Update’ or ‘NIC Release Update.’ The deceptive messages aim to trick recipients into compromising their systems by installing fraudulent updates.

In response to this emerging threat, the Andaman and Nicobar Police have issued a crucial advisory to enhance cybersecurity measures among government officials and employees. The advisory includes the following key recommendations:

1. Exercise Caution with Email Attachments: Scrutinise all received emails that contain attachments. Refrain from installing any updates, programs, or patches without verifying their legitimacy from alternative sources.

2. Keep Systems Updated: Ensure that the operating system and antivirus software on your computer are regularly updated. Conduct routine system scans to identify and eliminate potential threats.

3. Verify URLs Before Clicking: Exercise caution when clicking on URLs in emails. Scrutinise and verify the legitimacy of links before accessing them to prevent falling victim to phishing schemes.

4. Disable Browser Password Storage: Avoid enabling the “Remember Password” option in browsers to minimise the risk of unauthorised access to sensitive information.

5. Limit Personal Information Sharing: Refrain from sharing unnecessary personal details, including addresses, email IDs, and phone numbers.

To seek assistance, report incidents, or gather information on cybersecurity, individuals are encouraged to contact the Cyber Cell in Port Blair. The Cyber Helpline can be reached at 1930 or 9531856083. Additionally, further resources and information are available at https://cybercrime.gov.in.