InfoSecBulletin Cybersecurity for mankind
Indian government websites have been used by scammers to place ads that send visitors to online betting sites. TechCrunch found about 50 “gov.in” website links from Indian states like Bihar, Goa, Karnataka, Kerala, Mizoram, and Telangana that were sending visitors to online betting sites.
Some of these websites belong to state police and property tax departments. The links were on search engines like Google, making the ads easy to find online.
CVSS 10.0 Flaw
Critical flaw in Siemens OZW Web Servers Enable Unauthenticated RCE
Microsoft Patch Tuesday May 2025: 72 flaws, 5 Actively Exploited Zero-Day
OTP glitch disrupted NID services across the country
Google to pay Texas $1.4 billion for location tracking practices
YouTube geo-blocks at least 4 Bangladeshi TV channels in India
Microsoft Patches Four Critical Azure and Power Apps Vulns
Qilin Ransomware topped April 2025 with 45+ data leak disclosures
SonicWall Patches 3 Flaws in SMA 100 Devices
Top Ransomware Actively Attacking Financial Sector: 406 Incidents Disclosed
Critical (CVSS 10) Flaw in Cisco IOS XE WLCs Allows RRA
The websites redirect users to an online betting platform that is claimed to be the most popular in Asia and the number one cricket betting app in India. They allow users to bet on games, including cricket tournaments like the Indian Premier League.
It’s not clear how the scammers planted the ads on Indian government pages or for how long the links were redirecting to the online betting platforms.
Scammers hacked several websites in Goa, including the Goa Teacher’s Eligibility Test (GTET) website, the Infotech Corporation of Goa’s recruitment application website, and the SC/ST free laptop scheme website, to put online betting ads and redirection links reported by “heraldgoa.in”
According to newsbytesapp, there’s a scam involving online betting ads on Indian government websites, redirecting visitors to betting platforms.
TechCrunch alerted India’s Computer Emergency Response Team of the matter. The Indian cyber agency acknowledged the receipt of the email, and on Thursday CERT-In confirmed it escalated the matter.
“We have taken up with the concerned authority for appropriate action,” the agency said in an email response. It is not clear if the flaw allowing the backdoor access to state government websites has been fixed tech crunch report read.
(Media Disclaimer: This report is based on research conducted internally and externally using different ways. The information provided is for reference only, and users are responsible for relying on it. Infosecbulletin is not liable for the accuracy or consequences of using this information by any means)
