MPCRPDC zonal office Cashier’s ID and password hacked

The ID as well as the password of cashier posted in the MPCRPDC (Madhya Pradesh Central Region Power Distribution Company) zonal office at Sultania road was hacked by an unidentified accused. From this hacked account, online bill payments of electricity for 829 customers have been made in the past three months by that unidentified accused.

After learning about this hacking incident, the officials analyzed the data and found that the hackers have fraudulently caused loss to the department of INR 18.5 lakh. The hackers have made all online transactions either before working hours get started, or once the office got closed.

This hacking incident has been reported to the Shahjehanabad police on May 27, 2019. Then a case was registered by the police on fraud charges against the unidentified hackers under the relevant sections of the IPC as well as IT Act, and the investigations get started.

Zaheer Khan, SHO of Shahjehanabad, said that the complainant Aftab Beg, Sultania zone manager of MP discom office that was located at Bada Bagh of Shahjehanabad, in his complaint on May 27 stated that Uma Batham, the cashier, informed him that while matching cash transactions of the online bill payments done during closing the office on May 23, 2019, that she found that a few transactions have been made by using her ID as well as password before office got opened on that day.

The transactions made by the hackers showed that customer's power bills were paid, but money has not got deposited in the bank account of the company. SHO of Shahjehanabad said that when Beg came to know about this incident, he ordered audit of the transactions. In that audit, the officials found that 829 online transactions have been punched from the ID and password of Batham from Feb. 2, 2019, to May 23, 2019.

The police said that nothing can be determined at this moment. People from department will be questioned, as well as people handling online deposit section also will be quizzed as there is possibility that account ID and password might got passed directly or indirectly. Another more likely possibility is the cyber criminals have done this act, and thus the cybercrime branch would also be roped in for investigating the case.

» SPAMfighter News - 6/19/2019