#FactCheck - Viral Post of Gautam Adani’s Public Arrest Found to Be AI-Generated

Starting in mid-December, 2024, a series of attacks have targeted Chrome browser extensions. A data protection company called Cyberhaven, California, fell victim to one of these attacks. Though identified in the U.S., the geographical extent and potential of the attack are yet to be determined. Assessment of these cases can help us to be better prepared for such instances if they occur in the near future. 

The Attack

Browser extensions are small software applications that add and enable functionality or a capacity (feature) to a web browser. These are written in CSS, HTML, or JavaScript and like other software, can be coded to deliver malware. Also known as plug-ins, they have access to their own set of Application Programming Interface (APIs). They can also be used to remove unwanted elements as per customisation, such as pop-up advertisements and auto-play videos, when one lands on a website. Some examples of browser extensions include Ad-blockers (for blocking ads and content filtering) and StayFocusd (which limits the time of the users on a particular website).

In the aforementioned attack, the publisher of the browser at Cyberhaven received a phishing mail from an attacker posing to be from the Google Chrome Web Store Developer Support. It mentioned that their browser policies were not compatible and encouraged the user to click on the “Go to Policy”action item,  which led the user to a page that enabled permissions for a malicious OAuth called Privacy Policy Extension (Open Authorisation is an adopted standard that is used to authorise secure access for temporary tokens). Once the permission was granted, the attacker was able to inject malicious code into the target’s Chrome browser extension and steal user access tokens and session cookies. Further investigation revealed that logins of certain AI and social media platforms were targeted.

CyberPeace Recommendations

As attacks of such range continue to occur, it is encouraged that companies and developers take active measures that would make their browser extensions less susceptible to such attacks. Google also has a few guidelines on how developers can safeguard their extensions from their end. These include:

1. Minimal Permissions For Extensions- It is encouraged that minimal permissions for extensions barring the required APIs and websites that it depends on are acquired as limiting extension privileges limits the surface area an attacker can exploit.
2. Prioritising Protection Of Developer Accounts- A security breach on this end could lead to compromising all users' data as this would allow attackers to mess with extensions via their malicious codes. A 2FA (2-factor authentication) by setting a security key is endorsed.
3. HTTPS over HTTP- HTTPS should be preferred over HTTP as it requires a Secure Sockets Layer (SSL)/ transport layer security(TLS) certificate from an independent certificate authority (CA). This creates an encrypted connection between the server and the web browser.

Lastly, as was done in the case of the attack at Cyberhaven, it is encouraged to promote the practice of transparency when such incidents take place to better deal with them.

References

1. https://indianexpress.com/article/technology/tech-news-technology/hackers-hijack-companies-chrome-extensions-cyberhaven-9748454/
2. https://indianexpress.com/article/technology/tech-news-technology/google-chrome-extensions-hack-safety-tips-9751656/
3. https://www.techtarget.com/whatis/definition/browser-extension
4. https://www.forbes.com/sites/daveywinder/2024/12/31/google-chrome-2fa-bypass-attack-confirmed-what-you-need-to-know/
5. https://www.cloudflare.com/learning/ssl/why-use-https/

Introduction

Cyber slavery has emerged as a serious menace. Offenders target innocent individuals, luring them with false promises of employment, only to capture them and subject them to horrific torture and forced labour. According to reports, hundreds of Indians have been imprisoned in 'Cyber Slavery' in certain Southeast Asian countries. Indians who have travelled to South Asian nations such as Cambodia in the hopes of finding work and establishing themselves have fallen victim to the illusion of internet slavery. According to reports, 30,000 Indians who travelled to this region on tourist visas between 2022 and 2024 did not return. India Today’s coverage demonstrated how survivors of cyber slavery who have somehow escaped and returned to India have talked about the terrifying experiences they had while being coerced into engaging in cyber slavery.

Tricked by a Job Offer, Trapped in Cyber Slavery

India Today aired testimonials of cyber slavery victims who described how they were trapped. One individual shared that he had applied for a well-paying job as an electrician in Cambodia through an agent in Delhi. However, upon arriving in Cambodia, he was offered a job with a Chinese company where he was forced to participate in cyber scam operations and online fraudulent activities.

He revealed that a personal system and mobile phone were provided, and they were compelled to cheat Indian individuals using these devices and commit cyber fraud. They were forced to work 12-hour shifts. After working there for several months, he repeatedly requested his agent to help him escape. In response, the Chinese group violently loaded him into a truck, assaulted him, and left him for dead on the side of the road. Despite this, he managed to survive. He contacted locals and eventually got in touch with his brother in India, and somehow, he managed to return home.

This case highlights how cyber-criminal groups deceive innocent individuals with the false promise of employment and then coerce them into committing cyber fraud against their own country. According to the Ministry of Home Affairs' Indian Cyber Crime Coordination Center (I4C), there has been a significant rise in cybercrimes targeting Indians, with approximately 45% of these cases originating from Southeast Asia.

CyberPeace Recommendations

Cyber slavery has developed as a serious problem, beginning with digital deception and progressing to physical torture and violent actions to commit fraudulent online acts. It is a serious issue that also violates human rights. The government has already taken note of the situation, and the Indian Cyber Crime Coordination Centre (I4C) is taking proactive steps to address it. It is important for netizens to exercise due care and caution, as awareness is the first line of defence. By remaining vigilant, they can oppose and detect the digital deceit of phony job opportunities in foreign nations and the manipulative techniques of scammers. Netizens can protect themselves from significant threats that could harm their lives by staying watchful and double-checking information from reliable sources.

References

1. CyberPeace Highlights Cyber Slavery: A Serious Concern https://www.cyberpeace.org/resources/blogs/cyber-slavery-a-serious-concern
2. https://www.indiatoday.in/india/story/india-today-operation-cyber-slaves-stories-of-golden-triangle-network-of-fake-job-offers-2642498-2024-11-29
3. https://www.indiatoday.in/india/video/cyber-slavery-survivors-narrate-harrowing-accounts-of-torture-2642540-2024-11-29?utm_source=washare

‍

Introduction

In a world perpetually in motion, the currents of the information superhighway surge ceaselessly, molding perceptions, shaping realities, and often blurring the lines that tether truth to its moorings. At the heart of this relentless churn lies a conundrum that has become all too familiar, in which veracity is obscured by the shadow-play of misinformation. Emblematic of this dilemma is the narrative of Virat Kohli, a name that has become synonymous not only with cricketing brilliance but with the complexities of a modern era where digital echo chambers amplify half-truths and outright fabrications with alarming efficacy.

It is within this intricate fabric of the digital realm that the saga of Virat Kohli—a titan of cricket whose arsenal of strokes and strategic acumen have captivated audiences worldwide—takes on a dimension that transcends the sport. The speculative murmurs have been converted into roaring waves of misinformation, crafting a narrative that, while devoid of truth, assumes a disconcerting life. This digital osmosis, the transmutation from a quiet inkling to a deafening chorus of credibility, exemplifies the troublesome dynamic that has come to define our interactions with news media in the 21st century.

Fact check: Viral Misinformation

A viral post about Virat Kohli's mother suffering from liver issues has gone viral on social media. The claim came after Kohli withdrew from the India-England test series citing 'personal reasons'. Vikas Kohli, brother of Virat Kohli, clarified on Instagram that the viral news about their mother is false. He clarified that their mother is doing well and the viral claim is false. Vikas Kohli's Instagram page dismissed the viral claim, stating that he noticed the fake news and requested the media not to spread such news without proper information.

Fake Health Crisis

As this virulent strain of rumour regarding the health of Saroj Kohli, Virat Kohli’s mother, began to swell into the digital domain, it brought to the forefront a critical examination of the checks and balances within our networks of communication. Saroj, whose resilience and nurturing presence had been an anchor in the athlete's storied journey, undeservedly became the nucleus of a fictitious tale of despair, giving us pause to reflect on the ethical boundaries of storytelling in the world of clicks and views.

Vikas Kohli—the elder brother of Virat Kohli—took to social media, the very platform from which the falsehood originated, to stand as the bulwark against the spread of this groundless narrative. 

The Consequences

The consequences of such falsehoods and their rapid dissemination are manifold, affecting individuals and communities in profound ways. The motivations behind the proliferation of deceitful stories are as labyrinthine as the networks they traverse - from manipulation and economic incentives to the pursuit of sheer sensationalism or cynical entertainment, each strand intertwines to form an intricate web wherein truth struggles to assert itself.

Conclusion 

In the ceaseless expanses of the digital cosmos, where one can easily drift into the void of falsities, let the narrative of Virat Kohli stand as a sentinel, a reminder of our duty to navigate these waters with vigilance and to preserve the sanctity of truth. Amidst the vast ocean of content that laps in our consciousness, it is precisely this unwavering dedication to facts that will act as our compass, enabling us to discern the credible beacons from the deceptive mirages and ultimately ensuring that our discourse remains moored in the bedrock of reality.

References 

• https://www.thequint.com/news/webqoof/virat-kohli-mother-sick-liver-disease-fact-check
• https://indianexpress.com/article/sports/cricket/ind-vs-eng-virat-kohlis-brother-dismisses-fake-news-circulating-about-their-mother-9136144/
• https://www.outlookindia.com/amp/story/sports/ind-vs-eng-virat-kohlis-brother-slams-fake-news-on-their-mothers-health

‍