Agape Blog

Dr. Sachin Pandey briefs Dy. Chief Minister Chaggan Bhujbal Ji on Agape’s Security Solutions.

Dy. Chief Minister Mr. Chaggan Bhujbal Ji engrossed in deep discussion with Agape Team.

Our CEO Dr. Sachin Pandey showing Agape’s in-house products to Dy. Chief Minister Shri. Chaggan Bhujbal.

Agape Inc CEO Dr. Sachin Pandey Welcome’s Home Minister of Maharashtra Mr. jayant Patil.

The discussion continues…

Dr. Sachin Pandey showing Forensic Software developed in Agape’s R&D Unit to Home Minister of Maharashtra Mr. jayant Patil.

Agape CEO Dr. Sachin Pandey giving demo on Hard Drive Duplication Products to  Minister of Finance Maharashtra Shri. Dilip Valse Patil.

Dr. Sachin Pandey showing Forensic Software developed developed in Agape’s R&D Unit to Minister of Finance Maharashtra Shri. Dilip Valse Patil.

Few Words of humor with Minister of Finance Maharashtra and our CEO.

It should be projected that those occupied in the rebellious side of asymmetric warfare would be profoundly contingent on existing and widely deployed communications tools.

As the expertise gulf between what you can organize yourself and what large corporations with access to capital markets can field one would expect those systems to be co-opted for every conceivable purpose.

Technology is intimately connected to power, both used as a force for the powerful as well as a mechanism for the redistribution of power. While I individually believe peaceful remonstration and social defiance are the preferable ways to speak truth to power that won’t listen, crowd sourced intellect, and surveillance techniques indisputably are and certainly will be used by those with vicious agendas as well.

It’s worth reflecting in these conditions that, more oppressive regulatory regimes will not prevent the use of our technological tools against us, that the long term solutions to problems like this will not involve more regulation or the use of force of arms but rather the construction of political and economic frameworks that include a voice for those who are presently marginalized and therefore seek to make their point via violence and destruction.

Continuity of knowledge and society does have merit. However, there are times when this view of technology must be discarded, because it can be terribly wrong and lead us to a primary misunderstanding of the potential significance of technology in social, political and economic change. However technological change isn’t success but rather a troubling matter. Therefore it is rightly said, ‘A fool having a sophisticated tool is still a fool’. Ultimately it depends on the psychology of an individual on how he uses this man made technology i.e. for construction or destruction…..

Sherwin Azavedo
Manager: Cyber Crime Complaint

TOLL FREE NO: 1800-209-6789 (To complain Cyber Crime Online)

Credit card holders are always cautious while using their credit card. The owner lacks control over transaction which weakens his accountability. Fraud involving credit card transaction is the resultant of these limitations. It is increasing day by day as the market of e-commerce expands. Credit Card holder strongly denies many transactions due to his weak answerable position in comparison to banks and payment gateways. In the present scenario all the security techniques are implemented only in network level or authentication between the bankers and payment gateways. Due to these limitations banks face severe problem in credit card dispute. There are thousands of cases reported and pending in court against different banks in India. The bank dispute and grievance department accepts that more than 76 percent of card holder denies transaction and claims fraud against the bank.

Fig: Credit card fraud reported in Fraud Management Services

In Agape’s Fraud Management Services department, there are about thousands of cases reported on credit card fraud during transaction. Among these cases, about 68 percent of the cases are those in which clients are claiming that they have not used their card at all or used without their consent. The rest of cases are payment gateway dispute and refund of money.
There is a need to think and develop new strategic security techniques which will provide strong authentication and full control to the user during the credit card transaction. Users feel equivalent to the wallet transaction and liable to their own risk. The user should authenticate or provide permission before transaction. This will create a layer of trust with banks and promote secure e-commerce.

Author: Prabhat Tiwari
Manager-Fraud Management Services

Last month’s attacks have provided the first, tragic, test of who were right about the net, encryption and terrorism. Innumerous number of terrorist attacks is coming to life lately and is posing a threat to the security of the nation at large. These militants are not oldies who lacked the knowledge and capabilities of the web, but they are now one of the hi-techies who are highly skilled & understand the potential power & creativity of the internet a.k.a CYBER WORLD.

The terrorists who wreaked mayhem in a city like Mumbai for over 60 hours last week were juvenile, proficiently trained and armed to the teeth. Their gadgets included satellite phones, mobile phones with Internet connectivity and global positioning system equipment. In India, one of the main drawbacks for long last crime suffering is the inability or you can say the incapacity or know how to cope with the growing technology around us. Leave alone the common man; the police even are not well equipped & trained with the necessary sophisticated tools to fight terrorism. Carrying a simple mobile phone with outdated weapons, when their adversary armed with the latest piece of equipment that technology provides on the loose & also a mobile system with inbuilt GPS tracking system to monitor each and every action happening around them. This kind of slackness creates security loopholes which endangers the life of every individual.

The ultimate solution is to deploy “e-intelligence management system” to cut off the security crisis & economic loss and threat to life these act brings which indirectly causes instability & mental distress among the people. Agape’s e-intelligence management solutions are providing cutting edge tools and techniques to monitor the transmission of digital data. After initializing the necessary security measures, these types of threats will not go undetected and there will be an environment of faith & trust in countries like India.

Author: Sherwin Azavedo
Manager: Cyber Crime Complaint

Location Tracking & Remote Data Destruction

Few laptop manufacturing companies are providing the PC Trace software’s, a location tracking program residing in your computer, determines the location of your computer and sends you location information via email. The PC Trace software provides accurate tracking results including the laptop’s public and private IP addresses, as well as hostnames. The tracking results enable identification of the thief’s name, phone number and address, in addition to the physical location of the stolen laptop.

The PC Trace software determines the location of the laptop by analyzing its network configuration information, including the Internet Protocol (IP) addresses and hostname. This technology provides an accurate, pinpoint location anywhere in the world, and the results are sent to you automatically, with no monitoring whatsoever, to protect your privacy.

In addition, it also allows you to remotely destroy sensitive data in the event your laptop is lost or stolen. When a laptop is stolen, the data must be verifiably destroyed to protect data and reduce corporate liability related to data breaches.

During the remote data destruction process, The PC Trace software’s destroys only the area of the disk drive that Windows reserves for storing user data, including but not limited to user documents, emails, temporary files, Internet cache, cookies, photos, chat history, music, application settings and so on. The PC Trace software does not destroy operating systems or programs, so that the thief can continue to use the stolen laptop until his/her arrest.

The PC Trace software’s for Laptops provides:

• Global Location Tracking
• Remote Data Destruction

Benefits:

· Protect data - Destroy sensitive data and trade secrets in case your laptop is stolen

· Reduce corporate liabilities – Minimize the corporate liabilities associated with data breaches

· Reduce internal theft - Reduce theft caused by “inside jobs”

· Protect hardware assets – Know the exact location of your laptops.

Author:  Mrinal Rawat

Executive: Fraud Management Services.

Credit card fraud is increasing enormously though it is in its childhood stage. Most of the cases received on credit card fraud at cyber crime complaint cell in Agape Inc. are unauthorized use of credit card. Money is credited on the account of card holder without his/her knowledge or items are purchased without his/her consent.

There are no definitive global figures on losses from credit card fraud - most financial institutions are tight-lipped on the subject — an FBI report from 2005 indicated that credit cards represented the majority of the total $315 billion (Rs1,283,310 crore) U.S. financial fraud loss for that year, while a recent European study found that more than 22 million adults fell victim to credit card scams in 2006. Figures from the Banque de France, the country’s central bank, showed a credit card fraud loss of 236 million euros, or $319 million, for 2005.

The increase in Internet fraud could be expected because more businesses are accepting online transactions. The problem is that the criminals are targeting the customers more than the technology. It is not about hacking into computers as much as it is about tricking users into revealing their card or account details.

As far as banks and credit card companies are concerned, online theft is the same as its equivalent in the physical world: If someone steals your card information, the bank or card issuer will normally cover most or all of unauthorized charges. That is why many card issuers are putting new security measures in place. “Verified by Visa” is a free service where your purchases are protected with participating online merchants by a password, as is MasterCard’s new SecureCode service.

Card companies are hoping the extra layer of security will reduce some of the more popular types of identity theft, both online and offline, that fraudsters are now employing.

Instead of these security users have less control over his card in terms of authentication. During money transaction or the credit card number transaction control should be defined by the user itself as we do in physical transaction. The security professional must think on the secure authentication techniques which will provide more control to the user itself.

Dear team,

I am greatly thankful to the fraud management team at AGAPE for taking my case (orkut profile hacked) seriously.

I had filed a complaint at various places but could not receive any help from them. But after registering my complaint at AGAPE, within a week I received a mail from the fraud management team giving the details of my hacked ID. It was unbelievable. A million thanks for such an incredible job.

I give my high regards for such an effort done by you.

888888

Dear Sir,

I would like to express my thanks in getting my fake orkut profile blocked.

This has really helped me cause I was been terribly impersonated on orkut for months which had adverse effect on me and my family as there was a lot of personal information in the profile.

Thanks a lot for considering my case sensitive and helping me get back to my normal life.

888888

Hi,
You have done really good work. I tried to get this job done by many other means but nothing worked. Thank you so much for your assistance and the time you spent. God bless you.

Regards,
8888888

Dear Sir,

Thanks a lot for your support, pls note that I am able to open my e-mail id, now I want to change the password, I am trying to change that, but when I click on to change password it ask for previous passord & new passord,

I entered *********** as previous password, & a new passord, but it not changing and showing that the previous password entered is in correct.

Pls help.

Best Regards,

88888888

Note: Name of the client is not shown due to privacy & security reasons.

Identity theft - also know as identity fraud, ID theft and ID fraud - is fraud perpetrated by a criminal who assumes someone else’s identity in order to profit illegally.

There are different types of identity theft - but in simple terms, someone pretends to be you in order to sign up for goods and services in your name - or they may simply use your details to access your already existing bank and/or credit card accounts.

You will probably be completely unaware of this until you receive a bill for something you haven’t ordered or your credit card statement arrives with a number of high value purchases of which you have no previous knowledge.

While 80% of Americans who use the internet, make financial transactions online, which give hackers a lot of opportunity to exploit there skill, there is still widespread concern with becoming a victim of on line fraud and Identity theft.

Surveys within the last twelve months, 9.3 million Americans were victims of identity theft.

How does identity theft occur?

Identity thieves can steal your personal information directly of in directly. Most thieves still obtain personal information through traditional rather than electronic channels. In the cases where the method was known, 68.2% of information was obtained off-line versus only 11.6% obtained online.

a. Stealing your personal belongings like wallet and purses, containing identification cards, bank information or credit cards.

b. Hacking into email accounts, or into social networking sites wherein your personal information can be accessed easily.

c. Complete “change of address” forms to divert mail to other locations.

d. Through bank and credit card statements, pre-approved credit cards, telephone calling cards and tax information.

e. The Scamsters can also obtain your credit report by posing as a landlord, employer who someone else who might have a legitimate need for, including a legal right to personal information.

f. The information can be obtained from your business or personnel records from your place of employment.

g. Even when you are connected to the Internet through broadband service, you are more vulnerable to “hackers” who may try to obtain financial and other personal identity information that is stored in your computer.

What identity thieves can do with this information?

Once identity thieves have your personal information, they use it in a variety of ways.

a. They may call your credit card issuer to change the billing address on your credit card account. The imposter then runs up charges on your account. Because your bills are being sent to a different address, it may be some time before you realize there’s a problem.

b. They may open new credit card accounts in your name. When they use the credit cards and don’t pay the bills, the delinquent accounts are reported on your credit report.

c. They may establish phone or wireless service in your name.

d. They may open a bank account in your name and write bad checks on that account.

e. They may counterfeit checks or credit or debit cards, or authorize electronic transfers in your name, and drain your bank account.

f. They may file for bankruptcy under your name to avoid paying debts they’ve incurred under your name, or to avoid eviction.

g. They may buy a car by taking out an auto loan in your name.

h. They may get identification such as a driver’s license issued with their picture, in your name.

i. They may get a job or file fraudulent tax returns in your name.

j. They may give your name to the police during an arrest. If they don’t show up for their court date, a warrant for arrest is issued in your name.

How do you prevent identification theft?

The best way of dealing with Identity theft is to prevent it from happening in the first place. Protect yourself by protecting your identity document, drivers licence and personal information.

The following tips may help you keep your peace of mind.

a. Always keep your ID (identity book), passport and drivers licence safely.

b. Before you disclose any personal information find out how it will be used. Find out if the information will be kept confidential.

c. When you are requested to fill in personal details on documents, ensure that the company you are dealing with is legitimate. Verify if the representative posing on behalf of the company does indeed work at the company in question.

d. Keep a record of your accounts and follow up if they do not arrive on time.

e. Guard your mail from theft. Remove post from your letter box after it has been delivered. If you are going to be away from home, ask a neighbour to collect your post for you.

f. If you move to a new place of residence, change your address on your accounts without delay.

g. Do not use predictable passwords such as your date of birth or telephone number on your accounts.

h. Carry only the amount of information that you will actually need in your handbag.

i. Do not give out personal information on the phone, through the post or over the Internet unless you have initiated the contact or know whom you are dealing with.

j. >Keep items with personal information in a safe place. Tear or shred documents such as credit applications, bank statements and receipts.

k. If you have service work done at your home or employ outside help, do not leave personal information lying around.

l. If you live with housemates ensure that your personal information is kept safely.

m. Give your ID only when absolutely necessary. Ask to use other types of identification when possible.

n. Request a copy of your credit report from each of the major credit reporting agencies every year. Make sure it is accurate and includes only those transactions you have authorized.

If you’re planning to buy a new smartphone, you might want to read this post.

Independent Security Evaluators (ISE) researchers have discovered a security flaw in the operating system of a high-profile smartphone, this time it’s a vulnerability in the G1, also known as the Google phone. This is the second time in about 15 months that ISE researchers have discovered a security flaw smartphones. Charlie Miller, a well-known security researcher and hacker and principal security analyst at ISE, discovered that in putting together the operating system for the G1, known as Android, Google used some older open-source software that had known flaws, resulting in a vulnerability in Android itself.

Here is Miller’s description of the problem:

A user of an Android phone who uses the web browser to surf the internet may be exploited if they visit a malicious page. Upon visiting the malicious site, the attacker can run any code they wish with the privileges of the web browser application. We have a very reliable exploit for this issue for demonstration purposes. This exploit will not be released until a fix is available.

The Android security architecture is very well constructed and the impact of this attack is somewhat limited by it. A successful attacker will have access to any information the browser may use, such as cookies used for accessing sites, information put into web application form fields, saved passwords, etc. They may also change the way the browser works, tricking the user into entering sensitive information. However, they can not control other, unrelated aspects of the phone, such as dialing the phone directly. This is in contrast, for example, with Apple’s iPhone which does not have this application sandboxing feature and allows access to all features available to the user when compromised.

Miller and other ISE researchers last year found one of the first security problems with the iPhone, a flaw that enabled attackers to compromise the phones using a malicious Web page. The attack allowed an attacker to read the victim’s SMS messages, address book, call log and other stored data.

Jonathan Zdziarski, who has been an iPhone hacker has already demonstrated lot of bugs in Apple’s iPhone. And now the G1, barely two months old is being ripped apart for security concerns. It has been known that Google is aware of the problem with the G1 and is working on a fix.

The field of information security has grown and evolved significantly in recent years. Every organization that provides services to people, be it governments, military, corporates, financial institutions, hospitals, or private businesses, amass a great deal of confidential information about their employees, customers, products, research, etc. Today, most of this information is collected, processed and stored on electronic computers and transmitted across networks to other computers. This increases the risk of unauthorized access or use of the sensitive information. And this is where implementation of the information security policies becomes very important.

There are many information security professionals around the globe, serving their best for safeguarding their client information. And awards and recognition by your peers always boosts you confidence and helps to take on more challenges.

Recently, Executive Alliance announced the winners for the Information Security Executive (ISE) of the Year and Project of the Year North America Awards for 2008. Executive Alliance is the creator and provider of premium leadership recognition forums worldwide. Over 50 industry leaders and project teams from across the United States were honored in the areas of Academic, Government, and Commercial for their achievements in information security. Christopher Leach, Chief Information Security Officer and Senior Vice President of ACS, was awarded with the ISE People’s Choice Award. He received the award from the community of peers attending the event who voted him as the executive with the most exemplary attributes of a leader in the security industry.

Such awards always help any individual or team as their work is acknowledged and judged by someone who knows the industry inside out. More such initiatives would definitely help in promoting Information Security as a strong career option for the next generation.