PUNE: A city-based business firm has fallen prey to a man-in-the-middle (MITM) attack and lost Rs7.2 lakh to some fraudsters with an account in a Hong Kong-based bank between April and June this year.
An MITM attack is a type of cyberattack where a malicious actor inserts himself or herself into a conversation between two parties, impersonates both of them and gains access to information that the two sides were trying to send to each other.
Cybercrime police station inspector Jayram Paygude told TOI that the firm’s accountant and Nana Peth resident, Sagar Deepak Pandit (40), lodged the complaint on Tuesday.
“The company deals with various engineering products and also manufactures a few items. It has many suppliers of engineering equipment. The company has business-to-business (B2B) mail and other communication facilities on its website,” the officer quoted the complaint as stating.
“From April, the company started receiving some mails. The sender’s e-mail id was almost similar with one of its offshore engineering product suppliers,” he said.
In June, the company received a mail demanding immediate payment of 10098 US dollar and provided a detailed bill. The mail also mentioned a bank account number, which was different from the one used by the company’s regular supplier.
“The company officials wrote a mail to the supplier, saying that the name of the bank and account number were different. The unidentified persons intercepted the mail and replied that the company has changed its bank and the account number,” Paygude said.
After receiving the mail, the Pune-based company made the payment through Internet banking. The company then verified the transaction with its supplier, who denied receiving any payment. “The company’s official then lodged the complaint,” he said.
An MITM attack is a type of cyberattack where a malicious actor inserts himself or herself into a conversation between two parties, impersonates both of them and gains access to information that the two sides were trying to send to each other.
Cybercrime police station inspector Jayram Paygude told TOI that the firm’s accountant and Nana Peth resident, Sagar Deepak Pandit (40), lodged the complaint on Tuesday.
“The company deals with various engineering products and also manufactures a few items. It has many suppliers of engineering equipment. The company has business-to-business (B2B) mail and other communication facilities on its website,” the officer quoted the complaint as stating.
“From April, the company started receiving some mails. The sender’s e-mail id was almost similar with one of its offshore engineering product suppliers,” he said.
In June, the company received a mail demanding immediate payment of 10098 US dollar and provided a detailed bill. The mail also mentioned a bank account number, which was different from the one used by the company’s regular supplier.
“The company officials wrote a mail to the supplier, saying that the name of the bank and account number were different. The unidentified persons intercepted the mail and replied that the company has changed its bank and the account number,” Paygude said.
After receiving the mail, the Pune-based company made the payment through Internet banking. The company then verified the transaction with its supplier, who denied receiving any payment. “The company’s official then lodged the complaint,” he said.
Quick Links
Lok Sabha Election Schedule 2019Lok Sabha Election NewsDelhi Capitals teamMI team 2019Rajasthan Royals 2019RCB team 2019Maharashtra Lok Sabha ConstituenciesBJP Candidate ListBJP List 2019 TamilnaduShiv Sena List 2019AP BJP List 2019Mamata BanerjeeBJP List 2019 MaharashtraPriyanka GandhiBJP List 2019 KarnatakaAMMK Candidate List 2019BJP List 2019 WBLok Sabha Elections in Tamil NaduBSP List 2019 UPNews in TamilLok Sabha Poll 2019Satta Matka 2018PM ModiMahagathbandhanNagpur BJP Candidate ListChandrababu NaiduTamil Nadu ElectionsUrmila MatondkarNews in TeluguMadras High CourtTejashwi YadavArvind KejriwalTejasvi SuryaPawan KalyanArvind KejriwalYogi AdityanathJaya PradaSatta King 2019Srinagar encounter
Get the app