What's new

FBR was hacked because it was using pirated software

313ghazi

ELITE MEMBER
Joined
Mar 14, 2017
Messages
12,932
Reaction score
45
Country
Pakistan
Location
United Kingdom
The Federal Board of Revenue (FBR) was using a pirated version of the Microsoft Hyper-V software which enabled the hackers to easily breach the tax authority’s system.


Advertisement


According to media reports, a preliminary internal investigation into the recent cyberattack on FBR has revealed that the use of pirated software was one of the reasons why FBR’s system got hacked.



ALSO READ


PCB Finalizes Coaches for All Six Domestic Cricket Associations



The probe also disclosed that last year in January, Alice Wells, the then chief US diplomat for South Asian affairs, during a four-day visit to Pakistan, accused FBR of using a pirated software and warned the FBR about the possibility of a cyberattack on the tax authority’s system due to the use of a pirated software.


In response to the allegations, the FBR issued an absurd clarification, stating that it was unaware of the situation since Pakistan Revenue Automation (Pvt.) Ltd (PRAL) was the service provider for FBR.


On 12 March last year, PRAL issued a tender, seeking bids for the supply, installation, and configuration of network equipment, servers, data center precision cooling, upgrade and support for storage area network and backup solution, and Microsoft Windows for its Data Center in Custom House, Karachi.


Although PRAL set 13 April 2020 as the deadline for the submission of the bids, it has not yet disclosed the name of the firm that won the bid.



ALSO READ


ADB To Provide $235 Million Loan for Development of Highways



Recently, hackers breached the Microsoft Hyper-V software used by the FBR and took down the official website of the tax authority along with all of its subdomains.


Although FBR restored its official website and all of its tax-related functions, hackers put the FBR’s data on sale on a Russian forum for $30,000.

Advertisement


Following the cyberattack, Finance Minister Shaukat Tareen had issued stern directions to the FBR to carry out a complete appraisal of its system’s vulnerabilities in order to prevent similar incidents in the future.


Speaking exclusively with ProPakistani, Umair Ali Zafar, Principal Security Engineer at Ebryx, explained that hackers sent emails containing malicious documents in the attachments to FBR officials. These emails looked like they came from valid email addresses of the Govt of Pakistan, the Ministry of IT, and Telecom, but they were actually spoofed. The documents were crafted to gain the interest of the receiver, but when opened, infected the system.


Zafar added once a system got affected, it was used to gain access to other systems on the network, which led to the breach of the whole organization. At least since last Tuesday, the access to 1500+ systems of FBR was being sold online while threat intelligence about these emails was circulating since at least early July.


==========================

Not only were the idiots using pirated software, after having promised to replace said software 2 years ago - they also opened spoof emails. Ridiculous.

 
. .
Although FBR restored its official website and all of its tax-related functions, hackers put the FBR’s data on sale on a Russian forum for $30,000.

Good for transparency but why do these Russians have Indian accents when they spam call Pakistanis?
 
.
The Federal Board of Revenue (FBR) was using a pirated version of the Microsoft Hyper-V software which enabled the hackers to easily breach the tax authority’s system.


Advertisement


According to media reports, a preliminary internal investigation into the recent cyberattack on FBR has revealed that the use of pirated software was one of the reasons why FBR’s system got hacked.



ALSO READ


PCB Finalizes Coaches for All Six Domestic Cricket Associations



The probe also disclosed that last year in January, Alice Wells, the then chief US diplomat for South Asian affairs, during a four-day visit to Pakistan, accused FBR of using a pirated software and warned the FBR about the possibility of a cyberattack on the tax authority’s system due to the use of a pirated software.


In response to the allegations, the FBR issued an absurd clarification, stating that it was unaware of the situation since Pakistan Revenue Automation (Pvt.) Ltd (PRAL) was the service provider for FBR.


On 12 March last year, PRAL issued a tender, seeking bids for the supply, installation, and configuration of network equipment, servers, data center precision cooling, upgrade and support for storage area network and backup solution, and Microsoft Windows for its Data Center in Custom House, Karachi.


Although PRAL set 13 April 2020 as the deadline for the submission of the bids, it has not yet disclosed the name of the firm that won the bid.



ALSO READ


ADB To Provide $235 Million Loan for Development of Highways



Recently, hackers breached the Microsoft Hyper-V software used by the FBR and took down the official website of the tax authority along with all of its subdomains.


Although FBR restored its official website and all of its tax-related functions, hackers put the FBR’s data on sale on a Russian forum for $30,000.

Advertisement


Following the cyberattack, Finance Minister Shaukat Tareen had issued stern directions to the FBR to carry out a complete appraisal of its system’s vulnerabilities in order to prevent similar incidents in the future.


Speaking exclusively with ProPakistani, Umair Ali Zafar, Principal Security Engineer at Ebryx, explained that hackers sent emails containing malicious documents in the attachments to FBR officials. These emails looked like they came from valid email addresses of the Govt of Pakistan, the Ministry of IT, and Telecom, but they were actually spoofed. The documents were crafted to gain the interest of the receiver, but when opened, infected the system.


Zafar added once a system got affected, it was used to gain access to other systems on the network, which led to the breach of the whole organization. At least since last Tuesday, the access to 1500+ systems of FBR was being sold online while threat intelligence about these emails was circulating since at least early July.


==========================

Not only were the idiots using pirated software, after having promised to replace said software 2 years ago - they also opened spoof emails. Ridiculous.

The mind boggling stupidity of our Babuus never ceases to amaze me. And by that I mean every red-taper in the country.
 
. .
tenor.gif


Oh c'mon this is embarrassing!
 
. .
Its all because of utter morons in abundance in all institutes. Mostly sifarashi or bought job with money, what else can be expected from incompetent and nalaiq idiots. Top all that up with an arrogant n dumb bureaucracy that has its head deep up its own ***.
 
.
Oh c'mon you must be kidding me. A govt body related to Financial aector and using pirated software. Utterly embarrassing i will not be shocked they even have infosec dept. If they have infosec dept then shove the pirated copy up there unseen holes
 
Last edited:
.
A bit unrelated, will it piss of Bill Gates that we use pirated software? He's very chummy with IK and helped us a lot in polio eradication, methinks he'll be mad af.
 
.
After reading most of the comments here I feel no surprise that people here love to fire their mouths (or rather their keyboards) than use their brains. A person like me, on the other hand, wonders why the IT administration did not procure VMware/Hyper-V licenses; and the only logical answer is: Budget (VMware costs around USD 10,000/socket and Hyper-V is not too far off; a deployment such as FBR may need hundreds of thousands of USD worth of licenses for their systems each year)!

It is not like any of the IT guys would be getting bonuses or rewards for using pirated software but rather the lack of funds due to which some or all the systems were being run on Pirated Software. And yet, even with pirated software (Hyper-V) it makes no sense how the systems could get compromised as the administrator still had the option to apply offline patches and besides, there is a concept of multi-vendor and multi-layered security approach to prevent access to critical systems. This way, even if 1 vendor solution is compromised, the other solution protects the systems while patches are released for vulnerabilities in the first system and vice versa.
 
. .
If you can't procure Windows licenses due to cost... why not use Linux based systems?
 
.
This is what happens when unqualified people are hired for IT Jobs and the good talent is hired by other countries.
 
.
If you can't procure Windows licenses due to cost... why not use Linux based systems?
You are assuming the people who installed an un-licensed system for a mission critical government department really know their way around. No sir you are assuming to much. These are the lowest grade rubber stamp people who enter government service. They wouldn't even know the spelling of Linux. They'd be like sudo who?
 
.

Pakistan Affairs Latest Posts

Back
Top Bottom