CERT-In Warns Organisations About Potential Spike in Cyber-Attacks on VPN

In the Federal cyber-agency to CERT-In on Tuesday warned of the increased cyber-attacks, including ''social engineering hits'', on the virtual private networks (VPN)is the being used by the organisations these days to the facilitate work at home for their employees in view of the nationwide lockdown to combat the COVID-19 outbreak. The fresh advisory, Computer Emergency Response Team of India (CERT-In) warned about social engineering attacks where cheats pose as genuine back-end support and obtain sensitive data from gullible employees.


These trend are emerged due to the increase of online activity during to the ongoing lockdown to contain the spread of COVID-19. In The coronavirus pandemic are led many the organisations worldwide to restrict their employees from the coming to the work in office & are advised to them to maintain social distancing & to continue working from the safe environment of their homes.



In the Organisations are using to enterprise VPNs for the communicating through the emails, video conferencing & other chat tools. In The VPN enables are communication through the secure online the servers using to the encryption of the data," the CERT-In said. In the large number of the organisations using the VPN for business continuity, it is said, attackers are finding vulnerabilities to the target organisations for the various cyber attacks.


There organisations should be the set up a in the system in coordination with their information technology to the staff in secure to the VPN service to maintain business confidentiality, integrity & availability,in the CERT-In, a federal agency to combat cyber attacks to guard the Indian cyber space, said.


They are suggested in that the organisations should be sensitise their employees against in the increased phishing to attempts where the cyber criminals are send emails or text messages posing as genuine person and take sensitive information.The Pandemics is like to COVID-19 could lead to social engineering attacks. Employees are need to be alerted about such as attacks, where in the fraudsters could pose as a genuine organisation and send emails to the obtain in sensitive personal or organisation-level information," it said.


It is also suggested some counter-measures & best practices for the using VPNs, it included increased scrutiny of the unauthorised activity is using log analysis to detect attacks in a timely manner & respond to incidents. They also check their systems for the distributed denial of the service (DDoS) attacks to the VPN servers. In this, a cybercriminal blocks the service of the online system to the intended user by triggering a malicious activity.


The attacker could conduct various DDoS attacks leading to the crashing of the VPN server. Such as attacks could be also limit or cut-off system administrators from the servers leading to the further compromise of the internal attack," it said.It is also recommended to the multi-factor authentication (MFA) for the using VPN accounts in order to the avoid any unauthorised activity during work from the home, organisations should enable a MFA solution on all VPN accounts leading to better the data security".


In any case, MFA cannot be implemented by the employees should be advised to the use strong passwords to the block any account takeover attacks," it said. In the agency reiterated that the latest software patches should be used & advanced security configurations to the deployed to keep the VPN safe.It also to advised that all the IT teams of various organisations should test the VPN server for mass usage & encourage the rate limiting so that priority is given to users who require these higher bandwidth".

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *