Nitin Pandey at RESTCON

Transcript

1. NITIN PANDEY– August 30, 2020 CYBER THREATS IN INDIA ARE

   WE REALLY PREPARED?

2. INCREASING CYBER CRIMES IN INDIA INDIA IS RAPIDLY STEPPING TOWARD

   DIGITALIZATION IN THE GOVERNANCE OF PRIME MINISTER MODI. GOVERNMENT INITIATIVES SUCH AS DIGITAL INDIA ARE BRINGING TECHNOLOGICAL POWER IN INDIA. WE EXPLORE USING INTERNET AND MADE LIFE EASY AND COMFORTABLE. WE EXPLORE THE UNKNOWNS AND COMMUNICATE WITH VIRTUALLY ANYONE, ANYTIME, ANYWHERE ACROSS THE GLOBE. DIGITAL SPACE HAS OPENED DOORS TO CYBER CRIMINALS AND MOSTLY WOMEN ARE THEIR TARGET. CYBER CRIME HAS EMERGED AS A MAJOR CHALLENGE FACING LAW ENFORCEMENT AGENCIES IN THE COUNTRY, WOMEN AND CHILDREN REMAIN AT RISK.

3. INCREASING CYBER CRIMES IN INDIA CYBER CRIME IS HAPPENING EVERYDAY!

   CYBER ATTACKS ARE:  UNEXPECTED  UNSEEN  UNAPPROACHABLE  UNKNOWN DO YOU FEEL SAFE?

4. INDIA RANKS NO. 1 SOURCE: 3DAYHACK

5. WE RANK NO. 1

6. IN INDIA, EVERYDAY CASES OF CYBER BULLYING, EXTORTION, FRAUDS, HARASSMENT

   ARE INCREASING RAPIDLY, ESPECIALLY AGAINST WOMEN & TEENS. CYBER THREATS ARE RAPIDLY INCREASING WHY HAPPENING?

7. LOOPHOLES IN LAW ENFORCEMENT LAW ENFORCEMENT AGENCIES OF INDIA ARE

   OUTDATED, UNTRAINED AND MOST CYBER CELLS ARE INCAPABLE IN SOLVING CYBER CRIME RELATED CASES ONE OF THE MAJOR REASONS IS LACK OF AWARENESS IN CITIZENS AGAINST CYBER THREATS LACK OF AWARENESS WHY HAPPENING?

8. STATISTICS

9. OUR PRIVACY IS A MAJOR CHALLENGE WE ARE LIVING IN

   VIRTUAL WORLD WHERE OUR EACH AND EVERY ACTIVITY IS BEING MONITORED BY THE APPS WE USE. THINK TWICE BEFORE SHARING ANYTHING PUBLICLY & INSTALLING ANY APP.

10. CHINESE APPS BANNED MUCH APPRECIATIVE STEP TAKEN BY GOVERNMENT OF

    INDIA

11. A GOOD MOVE TO PROTECT OUR PRIVACY

12. IS IT SUFFICIENT TO PROTECT OUR PRIVACY & DATA? NO!

13. DATA PRIVACY MAXIMUM USES OF SMART PHONES AN ADVANTAGE TO

    COMPANIES

14. GAME & SOCIAL MEDIA ADDICTION IN CHILDREN & TEENS

15. PARENTAL GUIDANCE IS MUCH REQUIRED! ATTENTION SEEKING SYNDROME IS DEVELOPING

    IN CHILDREN AND TEENS. DESIRE TO BECOME A FAMOUS PERSON RELATIONSHIP TREND. CRAZE OF VERIFIED ACCOUNT (BLUE TICK BADGE)

16. DO NOT TRUST EVERYONE BLINDLY!  A BLUE TICK BADGE

    DOES NOT MEAN THE PERSON IS AUTHENTIC.  TERMS LIKE “CYBERCOP” “CYBEREXPERT” IS USERNAMES ARE BEING USED BY CYBER CRIMINALS. SHUBHAMCYBERCOP IS A PERFECT EXAMPLE.  DO NOT PAY MONEY FOR ACCOUNT VERIFICATION (BLUE TICK BADGE) TO ANYONE.  CROSS CHECK THE BACKGROUND OF ANY INDIVIDUAL BEFORE SHARING ANY EDIVENCE WITH THEM. DO NOT TRUST ON PROMOTIONAL NEWS ARTICLES. LOOK WHAT THEY HAVE DONE IN CYBER SECURITY DOMAIN.

17. DATA PRIVACY & SAFETY OUR ALL ACTIVITIES ARE BEING MONITORED

    BY APPS PRIVACY IS AT RISK KIDS & WOMEN ARE BEING TARGETED GAMES LIKE PUBG ARE MAKING CHILDREN & TEENS VOILENT AND AGGRESSIVE SOME APPS ARE HIGHLY DANGEROUS LIKE “FACEAPP”

18. PERSONAL DATA PROTECTION BILL IS MUCH REQUIRED IN INDIA IN

    2017, MINISTRY OF IT & E HAD FORMED A COMMITTEE TO STUDY ISSUES RELATED TO DATA PROTECTION. COMMITTEE WAS CHAIRMED BY RETD SUPREME COURT JUDGE JUSTICE B.N. SRIKRISHNA. COMMITTEE SUBMITTED THE DRAFT PERSONAL DATA PROTECTION BILL IN JULY 2018. GOVERNMENT OF INDIA SHOULD PASS THE PERSONAL DATA PROTECTION BILL OF INDIA AS SOON AS POSSIBLE.

19.  NOW-A-DAYS, DUE TO COVID-19 PANDEMIC, EVERYONE IS DEPENDENT ON

    INTERNET. SCHOOLS, COLLEGES, OFFICES AND ALMOST EVERYTHING IS WORKING VIRTUALLY & THAT IS THE MAIN REASON BEHIND RAPID INCREASE IN CYBER CRIME DURING LOCKDOWN.  NOW CULPRITS ARE TAKING ADVANTAGE OF IT TO BULLY, HARASS, ABUSE, BLACKMAIL CITIZENS. WOMEN AND CHILDREN ARE EASY TARGETS BECAUSE THEY ARE “UNAWARE ABOUT THE SAFETY MEASURES & PROCEDURES OF REPORTING A CYBER CRIME”.  MASSIVE AWARENESS NEEDS TO BE CREATED AMONG WOMEN AND CHILDREN REGARDING THE SAFE USE OF MOBILE PHONES, COMPUTERS AND THE INTERNET.

20. MALICIOUS LINKS ON NAME OF COVID-19 DO NOT CLICK ANY

    UNKNOWN LINK WHICH IS CLAIMING OFFERS, DISCOUNTS, FREE GIFTS, COVID TESTS, JOB OFFERS OF WORK FROM HOME BECAUSE IT COULD BE A PHISHING PAGE OR MALICIOUS LINK OR A MALWARE OR A RANSOMWARE AND ONCE YOU CLICKED ANY MALICIOUS LINK, YOUR ACCOUNT CAN BE HACKED, YOUR FILES CAN BE ENCYPTED BY RANSOMWARES, SPYWARES COULD GET INSTALLED SILENTLY AND SO ON…

21. DIGITAL FOOTPRINTS EVERY CRIME CRIMINAL SHOULD REMEMBER THAT “DIGITAL FOOTPRINTS”

    REMAIN EVEN AFTER DESTROYING EVERYTHING. DELETED DATA OR ACCOUNTS CAN BE RETREIVED! ANONYMITY IS JUST AN ILLUSION!!

22. COMMON CYBER CRIMES INCREASING IN THIS PANDEMIC CYBER BULLYING PHOTO

    MORPHING CYBER STALKING PORNOGRAPHY SCAMS SUCH AS CHEAP CERTIFICATIONS, JOB OFFERS, CHEAP PRODUCTS AVAILABLE ON OLX/SOCIAL MEDIA.

23. HOW TO REPORT A CYBER CRIME?

24. 01 REPORT WOMEN/CHILD RELATED CRIME WOMEN & CHILDREN CAN VISIT

    CYBERCRIME.GOV.IN & DIRECTLY FILE AN ONLINE COMPLAINT. 02 REPORT ANONYMOUSLY IF YOU DO NOT WANT TO KEEP YOUR IDENTITY SAFE THEN THERE IS AN OPTION TO REPORT YOUR COMPLAINT ANONYMOUSLY. 03 REPORT OTHER CYBER CRIME THIS OPTION IS GIVEN TO REPORT OTHER CYBER CRIMES SUCH AS BANKING FRAUDS, ACCOUNT HACKS ETC. An initiative of Ministry of Home Affairs NATIONAL CYBER CRIME REPORTING PORTAL

25. DELHI M H U P M P H R T

    N R J cybercrime.gov.in INTERCONNECTED WITH EVERY POLICE STATION ACROSS THE NATION

26. HOW IT WORKS? cybercrime.gov.in portal STEP 1 STEP 2 STEP

    3 You file an online complaint at cybercrime.gov.in Your complaint goes to your nearest Police Station/Cyber Crime Branch You receive a call from your Police Station & need to visit the station in person for the written statement

27. ALWAYS KEEP ALL THE SCREENSHOTS, MESSAGES, CALL RECORDINGS AND/OR ALL

    TYPE OF EVIDENCES SECURELY & ENCLOSE THEM WHILE FILLING THE COMPLAINT FORM. NEVER EVER DELETE ANY EVIDENCE. KEEP ALL THE EVIDENCES SECURED

28. LOOPHOLES IN LAW ENFORCEMENT 04 SO MANY FAKE CYBER EXPERTS

    ARE WAITING FOR YOU TO APPROACH THEM. THEY MISUSE YOUR EVIDENCES OR COULD MAKE YOU A VICTIM AGAIN. 02 DISTRICT CYBER CELLS ARE INCAPABLE TO SOLVE CYBER CRIME CASES, ESPECIALLY IN RURAL AREAS. 03 MOSTLY LOCAL POLICE STATIONS/CYBER CELLS TRY TO CONVENCE THE VICTIM NOT TO FILE THE CASE BY MISGUIDING AND CONFUSING THEM 01 IT’S NOT NECESSARY THAT YOU GET RESPONSE AFTER FILING ONLINE COMPLAINT.

29. WHAT TO DO IF YOU DID NOT GET ANY RESPONSE?

    04 ]E-MAIL YOUR COMPLAINT TO THE POLICE STATION OR CALL THEM. 02 WE ALL HELP EVERYONE BY GUIDING THEM AND CONNECTING THEM TO GOVT LAW ENFORCEMENT AGENCIES. 03 TWITTER SOMETIMES REALLY HELPS. DM OR TWEET BY MENTIONING YOUR AREA’S POLICE STATION/OFFICER. 01 ALWAYS TRY TO STAY IN TOUCH WITH A CYBER SECURITY INDIVIDUALS.

30. PRECAUTIONS

31. KNOW YOUR RIGHTS! LEARN SOME OF IT ACT 2000 

    SECTION 67: DEALS WITH PUBLISHING OR TRANSMITTING OBSCENE MATERIAL IN ELECTRONIC FORM. AS PER ITAA 2008 IN WHICH CHILD PORNOGRAPHY WAS ALSO INCLUDED.  SECTION 66A:SENDING OFFENSIVE MESSAGES THROUGH COMMUNICATION SERVICE, CAUSING ANNOYANCE ETC THROUGH AN ELECTRONIC COMMUNICATION OR SENDING AN EMAIL TO MISLEAD OR DECEIVE THE RECIPIENT ABOUT THE ORIGIN OF SUCH MESSAGES (COMMONLY KNOWN AS IP OR EMAIL SPOOFING) ARE ALL COVERED HERE. PUNISHMENT FOR THESE ACTS IS IMPRISONMENT UP TO 3 YEARS OR FINE.  SECTION 66B: DISHONESTLY RECEIVING STOLEN COMPUTER RESOURCE OR COMMUNICATION DEVICE WITH PUNISHMENT UP TO 3 YEARS OR ONE LAKH RUPEES AS FINE OR BOTH  SECTION 66C: ELECTRONIC SIGNATURE OR OTHER IDENTITY THEFT LIKE USING OTHERS‟ PASSWORD OR ELECTRONIC SIGNATURE ETC.  SECTION66D: CHEATING BY PERSONATION USING COMPUTER RESOURCE OR A COMMUNICATION DEVICE SHALL BE PUNISHED WITH IMPRISONMENT OF EITHER DESCRIPTION FOR A TERM WHICH EXTEND TO THREE YEARS AND SHALL ALSO BE LIABLE TO FINE WHICH MAY EXTEND TO ONE LAKH RUPEE

32. KNOW YOUR RIGHTS! LEARN SOME OF IT ACT 2000 

    SECTION66E: PRIVACY VIOLATION – PUBLISHING OR TRANSMITTING PRIVATE AREA OF ANY PERSON WITHOUT HIS OR HER CONSENT ETC. PUNISHMENT IS 3 YEARS IMPRISONMENT OR 2 LAKH RUPEES FINE OR BOTH.  SECTION66F: CYBER TERRORISM – INTENT TO THREATEN THE UNITY, INTEGRITY, SECURITY OR SOVEREIGNTY OF THE NATION AND DENYING ACCESS TO ANY PERSON AUTHORIZED TO ACCESS THE COMPUTER RESOURCE OR ATTEMPTING TO PENETRATE OR ACCESS A COMPUTER RESOURCE WITHOUT AUTHORIZATION.  SECTION 72: PUNISHMENT FOR BREACHING PRIVACY AND CONFIDENTIALITY.  SECTION 72A: PUNISHMENT FOR DISCLOSING INFORMATION DURING LAWFUL CONTRACT.  SECTION 354D: THIS SECTION DEALS WITH STALKING. IT DEFINES STALKER AS A MAN WHO FOLLOWS A WOMAN AND TRIES TO CONTACT SUCH WOMAN, MONITORS EVERY ACTIVITY UNDERTAKEN BY WOMEN WHILE USING DIGITAL MEDIA.

33. INSTAGRAM MOST OF CYBER CRIMES AGAINST WOMEN & CHILDREN HAPPENS

    ON INSTAGRAM, THEREFORE ALWAYS KEEP YOUR INSTAGRAM ACCOUNT PRIVATE & ONLY ALLOWS THOSE FOLLOWING REQUESTS WHOM YOU KNOW PERSONALLY. FACEBOOK & OTHER SOCIAL MEDIA PLATFORMS DO NOT SHARE POSTS PUBLICLY. SHARE WITH FRIENDS ONLY. DO NOT ACCEPT FRIEND REQUESTS OF STRANGERS. DO NOT INSTALL & KEEP UNNECASSARY APPS AVOID INSTALLING APPS WHICH YOU DO NOT NEED SUCH AS COLLAGE MAKERS, PICTURE EDITING APPS. READ THE NEGATIVE REVIEWS ESPECIALLY BEFORE INSTALLING APPS. ALWAYS KEEP YOUR OS & APPS UPDATED SOME SECURITY TIPS FOR WOMEN & TEENS TWO WAY AUTHENTICATION (2FA) ALWAYS ENABLE TWO WAY AUTHENTICATION FOR EVERY SOCIAL MEDIA APPS YOU USE. IT PROTECTS YOUR ACCOUNT FROM GETTING HACKED.

34. SOME SECURITY TIPS

35. QUESTIONS ?

36. +91 7705049191 Instagram: @initinpandey [email protected] THANK YOU Facebook/Twitter: @initinpandey LinkedIn:

    @initinpandey1 CONTACT ME FOR ANY QUERY -NITIN PANDEY CYBER SECURITY PROFESSIONAL CHAIRMAN OF NATIONAL INFORMATION SECURITY COUNCIL FOUNDER OF HACKERS DAY http://nitinpandey.tech