Pakistani cyber security firm Tranchulas has reportedly been stealing information from the Indian government and defence establishments, reports ET Tech. The information came to light through a two year investigation by the US-based IT security firm FireEye. According to FireEye, Tranchulas, which claims to have helped the Pakistani government prepare for cyber warfare, sent emails to Indian government officials containing malicious code. The firm used terms like ‘Salary hike for government employees’, Devyani Khobragade’, and Sarabjit Singh’ in the subject line to entice government officials to open these mails. On opening the attachment, a malware would infect the computers and collect data and send it back to the attackers. FireEye mentions that the firm used VPSNOC, a Pakistan-based virtual private server service provider, which leased US hosting services to target Indian establishments exclusively. The malware has been active since early 2013 with the name of a Tranchulas employee, Umair Aziz, mentioned in its code, said FireEye. The firm mentioned it confronted Tranchulas over the issue in July 2013, post which it claims that different variants of the malware with modified names have surfaced. FireEye claims that the cyber attacks by the Pakistani firm were still active, however, the Indian government denied any knowledge of this. The Indian government states that it has seen cases of website hacking, but only websites that hold publicly known data. The government also acknowledged that it had seen many attacks targeting government and defence establishments, but mentioned it is ‘very hard to ascertain the actual source’. Consequences:…
