SCHOLARS CLUB

ased on the  analysis and discussion with  both auditee and auditing organisations , CERT-In has prepared the guidelines applicable for both auditee and  auditing organisations to conduct quality cyber security audits in pandemic situations. GUIDELINES FOR CONDUCTING CYBERSECURITY AUDITS IN THE PANDEMIC INDUCED DISRUPTION Indian Computer Emergency Response Team (CERT-In) has created a panel of cybersecurity auditing organizations for conducting cybersecurity audits, including compliance audits, vulnerability assessment and penetration testing of computer systems, networks & applications of various organizations of the Government and those in other sectors of Indian economy.

CORONAVIRUS PANDEMIC [COVID-19]  BASED CYBER ATTACKS Novel Coronavirus, originated in December 2019 is a viral disease spread  worldwide.   It has been reported that Threat Actors are using the COVID-19 pandemic as  a cyber attack vector for their own notorious gains.  Cyber criminals are taking advantage of victims increased craving for  information about the Novel Coronavirus due to fear and uncertainity  associated with it as the outbreak of the disease is progressing worldwide. ATTACK STAGES-  PRIMARY SET OF ATTACKS:  The Threat actors employed references related to COVID-19 in phishing  attacks to steal information and drop additional malware.  TACTICS AND ATTACK PROCEDURES INVOLVED POST INITIAL PHASE OF ATTACKS:  Threat actors devise following new strategies to target victims with scams  or malware campaigns: Use of Legitimate corporate branding in the name of COVID-19 to send  m...