Module involved in hacking, remote unauthorized access to online competitive exams blown up; three arrested


Special Cell’s Intelligence Merger and Strategic Operations Unit (IFSO) has blown an organized module with the arrest of three people involved in hacking attacks and unauthorized access to online competitive trials. The three arrested, including the masterminds from Ahmedabad, Gujarat and the technical expert who used to work as a solver from Delhi.

Online certification is offered by a variety of companies on various courses that applicants need for a good placement. The usefulness of the online exam had seen a surge after the COVID-19 outbreak and the shutdown of educational institutions during the lockdown.

IT companies select candidates through certification

These certifications are provided by various reputable organizations in various fields such as CISCO Certifications, CompTIA Certifications, EC Council Certifications which play a crucial role in the selection and payment of a candidate in IT as well as other industries. The number of points achieved in these competitive tests shows the career progress of these IT experts in their professional world.

The institutions that run the online tests take various steps to ensure the overall sanctity of the test. Artificial intelligence is used to keep an eye on the candidate’s pupil movement.

In this way, the institution ensures that the exam is only attempted by the candidate himself and that no outside help is used. IFSO has received information from a reliable source that there are several services available on the dark web in which some hackers claim to hack and get the desired score by accessing the device used by the examinee. For this they demand large sums of money from the aspirants.

Gang modus operandi

A bait was arranged to crack a deal for an online certification exam. The decoy created the requirement for the CompTIA A + Certification (Core1) exam. The hacker was contacted via VoIP communication and the requested amount of money was transferred to the account provided by the alleged person.

The alleged person asked the bait candidate to download an Iperius Remote software which he used to gain control of the participant’s laptop and attempt the exam on October 25. The bait candidate was declared to have passed the exam with a score of 736, that online certification exams are manipulated by hacking and accordingly a case was registered in a special cell according to the relevant legal provisions and an investigation was initiated.

During the investigation, the alleged person’s phone number, bank account and internet usage were traced as far as Ahmedabad and identified as D. Shah, who was arrested on November 24th in Ahmedabad, Gujarat. His cell phone and laptop were confiscated.

The defendant has given the candidates a 100 percent guarantee

The defendant’s father owns an institute called Grass Solutions in Ahmedabad that provides IT courses. After detailed questioning and analysis of the accused Shah’s equipment, it turned out that his father R. Kumar was also involved in this brawl, and the duo gave the candidates a 100% guarantee that the online certification exams would be acquitted in return for consideration.

It was found that through the Ahmedabad and Gujarat training center they were targeting applicants who wish to obtain these certifications without having the required knowledge and skills in the field.

Hired professional to run the racket

They assured them that they would get the number of points they wanted and asked for money for it. The duo announced that to try the exam they had hired another professional, A. Allam, a resident of Shaheen Bagh, Delhi, who hacked the websites of the various exams like Amazon Web Services (AWS), Azure, Comptia A + , PMP, CISM, CEH (Cyber ​​Ethical Hacking) etc. through remote access using apps.

Candidates’ online certification exams were held by this exam solver, A. Alam, who attempted the exam remotely after having access to the candidate’s laptop / PC that was made available to him remotely over the internet. The defendant D. Shah’s father was also arrested on November 25th.

The defendant has the highest level of IT certification in the area of ​​networking

It was also learned that Alam has a center called 7networkservices in Noida. Another analysis shows that Alam used to work with the same MO. He contacts aspirants through different modes like WhatsApp, Telegram or from his institute and tries different certification exams by hacking into the safe modes of certification procedures. A.

Alam has top-level network IT certifications, is Cisco CCNP certified, and has over twelve years of experience as a world-class network implementation and design engineer. Alam was experienced in understanding, developing, and reverse engineering complex software and hardware. Alam operates seven network services that train students for top IT certifications to be placed in top IT companies, and provides services for installing and configuring network devices such as firewall, router, etc. along with routing protocols such as EIGRP, OSPF, BGP, ODR, VTP, etc.

The company also operates a YouTube channel

The company also operates a YouTube channel that focuses on the most current configuration and implementation of key network components. Alam also offers students a 100 percent guarantee of success for top IT certifications. The previous investigation showed that they had supported / bypassed more than 200 aspirants in carrying out such online competition tests.

What did the confession reveal?

The interrogation of the defendants and the investigations carried out have revealed the methods they have used. First, they asked the candidate to download remote access software such as Ultra-Viewer, Anydesk, Iperius Remote, etc.

Using the remote desktop, they installed various software on the client system that was not recognized by the auditing company’s security software. In order to avoid detection by the Proctor or other controls and deliberations, the institutes used the software, which can disguise itself as real operating system processes / files. They could see the candidate’s screen and control the device with this software. Then the exam was attempted by any domain expert according to the requirements and the desired score.

ALSO READ | Ahmedabad: Former bank clerk cheats 7 people from Rs 1.5 lakh


About Author

Comments are closed.