cyber crime management
TRANSCRIPT
Cyber Crime Management
by Dr. Triveni Singh
ASP, UP STF
Agenda
Major Frauds
Communication Media
Telecommunication Issue
Database Management
Legal and Regulatory Perspective
3
Major Frauds
Cheap Loans
BTS Tower
Jobs
Holidays
Fake E-Commerce Site
Insurance Frauds
5
PTI Coverage
ICICI Prudential - Mail Spoofing Case
Media Coverage
Media Coverage
Media Coverage
Media Coverage
Media Coverage
CasesS. No
No. of Victim
s
Total No. of
Arrests
Fraud Amount Date Description of Work
11500 87 1.25
Cr
12/08/2015
ICICI Prudential Case – Spurious Calls / Fake Calls Fraud (Mail Spoofing)
2 17 5 1 Cr
17/01/2015
BRL Shine.com Fraud
3 76 2 60 Lac 25/03/2015 IG Naukri.Com Fraud
4 1 3 - 29/03/2015 PCS Exam Fraud
5 2500 3 4 Cr 16/04/201
5 Online Billing System Fraud
Contd…
S. No
No. of Victims
Total No. of
Arrests
Fraud Amount
Date Description of Work
6 4560 21 23 Cr 09/05/2015 Telecom Tower Fraud
7 37 12 2.22 Cr 25/05/2015 CPMT Exam Fraud
8 5000 59 16 Cr 15/06/2015 Online Job Frauds (OTP)
9 200 1 85 Lakhs 16/01/2015 UP Sarvagramin Bank Fraud
(Phishing Site)
Contd..S. No
No. of Victim
s
Total No. of
Arrests
Fraud Amount Date Description of Work
10 1 1 - 26/08/2015 Social Profile Hacked
11 7 1 35 Lacs 24/09/2015 Piracy
12 922 2 1.85 Cr 07/10/2015 Fake Jobs Racket, Basti
13 3046 83 15 Cr 14/10/2015 Laxmi Nagar, Fake Call Centre Racket
14 247 2 5 Cr 12/09/2015 Results Manipulation, BSF Lower Service, Lucknow
S. No
No. of Victim
s
Total No. of
Arrests
Fraud Amount Date Description of Work
10 300 5 50 Lakh14th March
2016Cheque Cloning Case
11 5000 2 25 crore5th March
2016Fake Insurance Racket
12 1 2 53 lakhs 20th December Fake Job Racket
13 500+ 40 12 Crore5th January,
2016Fake Insurance Racket
14 350+ 20 Crore10th December
2015Fake Call Centre Racket
S. No
No. of Victim
s
Total No. of
Arrests
Fraud Amount Date Description of Work
10 125 3 53 Lakhs 10th March 2016 Job Racket
11 5000 121 25 crore 5th March 2016 Fake Insurance Racket
12 1 2 50 lakhs 15th March 2016 Cheque Cloning Racket
13 20 2 18 Lakhs 6th April, 2016 Bank of Baroda Fraud
14 350+ 8 20 Crore 13th May 2016 Railway Job Racket
Web Site
PRI
VoIP Call
Communication Media
Mobile PhonesLand LineVoIPPRI LinesWebsite
Paid Access
Employee
Hacking
1. Insurance Company2. Job Portals3. Bank4. Tour Operators5. Online Crawler.
Data VendorsDarkode
Database
Database Management
•IMEI•MAC Address•IP address
Spoofing
Website
Payment Gateway(Scan Document)
Whois
No KYC
Domain Registration
Technical Challenges
CallSMSMail
Whatsapp & VoIP Logs &Server
Telecommunication Issues
Source Port
Destination Port
NAT SeveralSDRIP Address
VoIP Logs
Mac Filtering
Logs
IP version 4 vs IP version 6
Mac Address
Port
Different Format of Different Operators
Regulatory Issues
PPI License by RBI (Minimum KYC)
Basic (Bank account) KYC
SIM (Telecom) KYC
No Physical Verification
No Central Database
Payment Gateway KYC
Banking Database of Different Vendors
A. IT Act 43 (A)B. IT Act 69 (1) (Interception monitoring and
Decryption
C. IT Act 67 (C)D. IT Act 72 (A) Disclosure
E. IT Act 85F. Company Act, 2013, Sec 477
1. Cyber Cafe Rules Implementation2. Jurisdictional Conflict3. MLAT/LR
Why to be serious??
A. ISO 27001B. PCI-DSS
FIR
Fraud ManagementFraud Management22
Thank You