14 DAY TRIAL // I for one didn't expect to see this! I mean, why would anyone hack a Police site? It's like stealing a doughnut from a cop and expect not to get cuffed! It's preposterous! What these guys have done is not only something one could have never imagined, but also a total mockery of the Police. But enough ranting, let me get to the facts - The Indian site belonging to their National Police Academy has been used by phishers.
As F-Secure informs, the SVP National Police Academy in Hyderabad had a classic Bank of America phishing site operating on their servers! The Police Academy has been notified by the F-Secure team and it's expected that they will soon solve this problem. The site is not available at the moment, but let's hope that when it will be up, it will be more secure. Now, phishing occurs everyday on the web, so compromising a website for such purposes is not such a 'big hit'. However, doing that to a Police Academy website, that even has classes about cyber-crime - well, I don't think it could get far worse than that! They have been humiliated.
But a question still remains. Their site is ranked 1.319,113 by Alexa, so this makes me wonder why these guys did it. Why would you make a phishing site out of a webpage that doesn't attract too many visitors anyway? When you want to phish, you should go big; if nobody visits your website, then the chances of you getting any data are very slim. That's unless the victims are led to the page, via spam, which would make things even worse...
Well, now this is certainly going to be a huge stain on their reputation! This clumsiness is the stuff of movies (Police Academy to be more exact) - I mean, how can you expect anything to be safe or secure, if the ones that teach security aren't even able to keep themselves safe! This is just another case of a "defenseless defender" - I, for one, would really have doubts about studying in such an institution, seeing how sloppy they are!