The National Telecommunication and Information Security Board (NTISB) has issued an advisory regarding a malicious Indian domain that is being used to collect personally identifiable information of Pakistanis.
According to the advisory, a malicious Indian domain applyforme.pk has been identified that pretends to be legitimate and advertises Ministry of Defence vacancies.
Analysis reveals that the domain is operating allegedly to deceive Ministry of Defence job applicants and extract personally identifiable information. Such information can be used to entrap citizens and conduct cyber espionage campaigns. NTISB has advised users to refrain from such domains.
It has highlighted that the official website for applying to Ministry of Defence jobs is mod.gov.pk. NTISB has asked users not to reveal personal or financial information on websites.
Other recommendations issued by NTISB include:
- Verifying a link by checking the domain name of the site.
- Checking the security of the website (https) before sending or entering any sensitive information online.
- Paying attention to the website’s URL. Malicious websites may look identical to a legitimate site, but the URL may use a variation in spelling or a different domain.
- In case, a user is not sure whether the website is legitimate then try to verify by contacting the concerned organization directly.