Loading stock data...
You are here
online betting platform redirectTechnology 

Scammers caught planting fake online betting ads on official Indian government websites

EquityExplained

TechCrunch Discovers Dozens of State Websites Linked to Online Betting Platforms

Some Indian government websites have inadvertently allowed scammers to plant advertisements capable of redirecting visitors to online betting platforms. A recent investigation by TechCrunch has uncovered around four dozen ‘gov.in’ website links associated with various Indian states, including Bihar, Goa, Karnataka, Kerala, Mizoram, and Telangana. These websites were found to be redirecting users to online betting platforms that claimed to offer games such as cricket tournaments, including the Indian Premier League.

How the Scam Works

The scammers appear to have exploited a security flaw in some Indian government websites’ web content management system software. The affected websites, which include those belonging to state police and property tax departments, were found to be hosting ads for online betting platforms. These platforms touted themselves as ‘Asia’s most popular’ online betting platform or ‘the number one online cricket betting app in India.’

Consequences of the Vulnerability

The presence of these scammy links on Indian government websites has significant consequences for users and the country’s cybersecurity landscape. The ads were easily discoverable through search engines, including Google, making it simple for users to stumble upon them while searching for legitimate information.

TechCrunch’s Discovery and Alert to CERT-In

After spotting the issue earlier this week, TechCrunch alerted India’s Computer Emergency Response Team (CERT-In) to the lapse and provided a few affected state government website links for reference. Shortly after, CERT-In acknowledged receipt of the email and confirmed that it had escalated the matter.

Response from CERT-In

In an email response, CERT-In stated: "We have taken up with the concerned authority for appropriate action." However, it is unclear whether the flaw allowing the backdoor access to state government websites has been fixed. It is also unknown how long the links were redirecting to online betting platforms before being discovered.

Similarities to Previous Security Flaws

This incident bears resemblance to a similar security vulnerability reported by TechCrunch in June last year. At that time, scammers had published ads for hacking services on U.S. government websites via a security flaw in the government’s web content management system software. Some of those ads appeared to have been available online for years.

Impact and Concerns

The presence of these scammy links on Indian government websites raises significant concerns about the country’s cybersecurity posture. The ease with which scammers can exploit vulnerabilities to plant advertisements capable of redirecting users to online betting platforms highlights a pressing need for more robust security measures in place. Furthermore, the fact that some of these websites belong to state police and property tax departments underscores the importance of ensuring the integrity of government websites.

Investigation Ongoing

The investigation into this incident is ongoing, and it remains to be seen whether further vulnerabilities will be uncovered. Meanwhile, users are advised to exercise caution when accessing government websites and to be vigilant against potential scams.

Timeline of Events

  • TechCrunch discovers around four dozen ‘gov.in’ website links associated with various Indian states redirecting to online betting platforms.
  • TechCrunch alerts CERT-In to the lapse and provides affected state government website links for reference.
  • CERT-In acknowledges receipt of the email and confirms that it has escalated the matter.

Key Takeaways

  • Indian government websites have inadvertently allowed scammers to plant advertisements capable of redirecting visitors to online betting platforms.
  • The vulnerability has significant consequences for users and the country’s cybersecurity landscape.
  • The ease with which scammers can exploit vulnerabilities to plant ads highlights a pressing need for more robust security measures in place.

Recommendations

  • Users should exercise caution when accessing government websites and be vigilant against potential scams.
  • Government agencies should prioritize strengthening their cybersecurity posture by implementing robust security measures.
  • Further investigation into this incident is necessary to determine the extent of the vulnerability and whether similar issues exist on other government websites.

Conclusion

The discovery of scammy links on Indian government websites underscores the importance of prioritizing cybersecurity in government websites. The ease with which scammers can exploit vulnerabilities to plant ads highlights a pressing need for more robust security measures in place. As the investigation continues, it is essential to remain vigilant and ensure that users are protected against potential scams.

Related Articles

  • TechCrunch’s previous report on scammers publishing ads for hacking services on U.S. government websites.
  • The importance of cybersecurity in government websites.
  • Strategies for strengthening government website security.

By submitting your email, you agree to our Terms and Privacy Notice.

Newsletters

  • TechCrunch Daily News
  • TechCrunch AI
  • TechCrunch Space
  • Startups Weekly

Subscribe to our newsletters for the latest tech news and updates.

Related posts