Future Group’s E-Commerce Site Hacked, Halting Online Sales

December 22, 2010

Future Group’s ambitions to enhance online sales have hit a significant setback. Its main e-commerce platform, FutureBazaar, has experienced a cyber attack and has been unavailable for the past two days. CEO Rajiv Prakash referred to the incident as a “denial of service attack,” stating, “The website has been down for the last couple of days and is currently inaccessible to consumers.” The company is actively addressing the situation internally and taking legal steps against the perpetrators. “We have filed a complaint with the Cyber Crime Branch in Mumbai. We are working diligently to restore the site, and it should be operational soon,” Prakash reassured. To mitigate financial losses, the company is maintaining its phone commerce service, enabling customers to make purchases through that channel. While Prakash did not disclose the estimated daily losses from the outage, the portal represents a key growth area for the group. Future Group aims to achieve at least 10% of…

Future Group’s E-Commerce Platform Compromised, Hindering Online Operations

December 22, 2010

Future Group, an influential player in the retail sector, is facing a significant setback in its efforts to enhance online sales. The company’s flagship e-commerce portal, FutureBazaar, has reportedly been compromised by a cyber-attack, rendering it non-operational for the last two days. Rajiv Prakash, CEO of FutureBazaar, characterized the incident as a “denial of service attack,” indicating that the site has been inaccessible to customers during this period.

In response to the breach, Future Group is mobilizing internal resources to rectify the situation while concurrently engaging with law enforcement. Prakash confirmed that a formal complaint has been lodged with the Cyber Crime Branch in Mumbai. The company’s efforts are primarily focused on restoring service at the earliest possible moment. “We are diligently working to bring the site back online and anticipate that it will be resolved shortly,” Prakash stated.

To mitigate potential revenue losses in the interim, Future Group has activated its phone commerce system, enabling consumers to continue making purchases through this alternate channel. While Prakash refrained from discussing the specific financial implications of the downtime, it is noteworthy that FutureBazaar plays a crucial role in the company’s strategic plan, which aims for at least 10% of sales to come from online channels.

The attack on FutureBazaar underscores the vulnerabilities faced by businesses increasingly reliant on digital platforms. Experts suggest that tactics associated with the MITRE ATT&CK framework may have been deployed during this incident. Techniques linked to initial access, such as exploitation of vulnerabilities or phishing, could have opened the door to such a breach. Furthermore, methods related to persistence and denial of service may have been employed to sustain the attack and disrupt service.

As businesses continue to invest in e-commerce solutions, this incident serves as a critical reminder of the ever-evolving landscape of cybersecurity threats. Organizations must prioritize robust defensive strategies and stay informed about emerging threats to protect their operations and customer data effectively.

In light of recent events, it is essential for business leaders to remain vigilant and proactive in their cybersecurity measures. A comprehensive risk assessment and the implementation of best practices can significantly strengthen an organization’s resilience against similar attacks. As Future Group works to resolve this incident, the broader business community will undoubtedly be monitoring the situation closely, eager to glean insights that can fortify their own defenses.

Source link

Related Posts

Bank of America Website Targeted in Cyber Attack by Islamic Hackers

Sept 19, 2012

The Bank of America’s website faced intermittent outages on Tuesday due to cyber attacks claimed to be in retaliation for “Innocence of Muslims,” a controversial film that has sparked violent protests across the Middle East. The group “Cyber Fighters of Izz ad-Din Al Qassam” announced its intent to target the Bank of America and the New York Stock Exchange as part of a broader campaign against what they term “American-Zionist Capitalists.” Following recent successful attacks on YouTube servers by various Muslim groups, there has been a surge in threats of similar actions. The hackers stated, “As long as the supporters of the sacrilegious film attempt to penalize its cast and crew, this conflict will continue, and the cyber realm will remain treacherous for all enemies of Islam.” Reports of the attacks have emerged from across the nation.

Bharatiya Janata Party Website Hacked and Defaced by Anonymous Collective

September 19, 2012

The official website of the Bharatiya Janata Party (BJP.org) was hacked and defaced last night by members of the Anonymous Indian group. The hackers posted a series of messages and images expressing their disapproval of various government actions, including the approval of 51% FDI in multi-brand retail, the increase in diesel prices, corruption scandals, the cartoon controversy, and the Kudankulam Power Project.

They also called for public participation in the #OccupyIndiaground protest, scheduled for September 23, 2012 (this Sunday) at several key locations across India, including India Gate in Delhi, Freedom Park in Bangalore, Marine Beach in Chennai, Park Street Crossing in Kolkata, MG Road in Pune, and Subhash Park in Kochi.

The affected domains include:

Additionally, the group shared a YouTube video featuring a message from Anonymous, highlighting their concerns regarding the declining state of free speech in India and the government’s measures to restrict social media.

9 Million PCs Compromised by ZeroAccess Botnet

In recent months, the Win32/Sirefef and Win64/Sirefef rootkit family, also known as the ZeroAccess Botnet, has significantly expanded its reach, infecting millions of computers worldwide. This botnet has updated its command and control protocols and now connects to over one million systems globally. Previously, it was noted for creating hidden partitions on hard drives and utilizing alternative data streams to conceal its presence. However, recent changes by its developers have shifted its infection tactics, moving away from kernel-mode components in the latest version. Security firms have been actively monitoring the increase in x64 version infections. SophosLabs has recently uncovered a significant change in the ZeroAccess botnet’s strategy, which now operates entirely in user-mode memory. Two distinct ZeroAccess botnets exist, each featuring both 32-bit and 64-bit versions, resulting in a total of four unique botnets. Each one operates independently, communicating through a specific hard-coded port number embedded in the bot executable.