Tuesday, 23 September 2008

IP spoofing by Indian Mujahideen Terrorists

By U Sudhakar Reddy
Terrorists are spoofing Internet Protocol addresses to mask their true identity and to befuddle the police.
Pranksters and eve-teasers are also resorting to spoofing of IP address as well as email.
Police find it very difficult to crack such cases. For instance, Cyber Crime cops believe that the Indian Mujahideen mail, which landed after the recent blasts in Bengaluru and Ahmedabad may have been sent from a spoofed IP address.
The Commissioner of Police, Mr B. Prasada Rao, asked the public to be cautious about such mischief by cyber criminals.
“IP spoofing is one form of online camouflage,” said a cyber forensic expert. “An attacker gains unauthorised access to a computer or a network and sends the message by spoofing the IP address of that machine. It is like impersonation.” Sleuths have noted that fired employees, rivals, pranksters, hackers and junk mailers mostly use the spoof technique.
A senior police officer said that terrorists were using the new method since sleuths had traced them when they used internet cafes for chatting and mailing.
“Now they are spoofing IP address in addition to email spoofing to mislead the police,” he said.
Experts say IP spoofing attacks can be limited through network filtering at the router. Encryption and authentication will also reduce spoofing threats.
“In email spoofing falsified headers are used to mislead the recipient on the origin of message,” said an expert.
“This is mostly done by spammers. Sometimes users receive undelivered messages which they had never sent. This shows that the email was spoofed and a message was sent to others,” the expert said.

No comments: