The million dollar question that is lingering on everyone’s mind nowadays is not about demonetization or Mr.Modi but it’s all about Legion hackers.
Who is Legion? What is legion? Where is Legion?
The hacker or a group of hackers have hacked the Twitter accounts of Rahul Gandhi, Barkha Dutt, Vijay Mallya Have already announced their next target as Lalit Modi. They have become active on Twitter and are supposedly threatening everyone in India who they believe is corrupt.
“Okay Brothers we’re back. #legion. Support our cause to expose the rats in our system,” the Legion recently tweeted. The “group” also exhorts that people should expose the corrupt persons by leaking their details to Legion through an email id. The mail is hosted on SIGAINT, a fairly secure email service available to public.
Who are Legion Hackers?
Unfortunately (or fortunately), there is no clear-cut answer to this question! It could be anyone, but they seem a bit more knowledgeable than your average computer engineering student. Delhi Police, which is probing the Rahul Gandhi hack, claims that according to Twitter his account was accessed from five countries: United States, Sweden, Canada, Thailand and Romania. Some have theorized that this means the Legion hackers are based in five countries, a highly possible but extremely unlikely proposition.
How are they doing it?
Again the answer will be ‘No clear idea’. Still when one analyzes their modus operandi, the common factor seems to be the servers managed by Net4 India. Although Net4 India has denied any hack in its systems and so has the NDTV. But the way it seems so far, it is clear that Legion did not gain direct access to Twitter accounts by attacking Twitter servers.
In other words, when Legion got into the accounts of Rahul Gandhi and others, it had genuine passwords. How it got those passwords is the mystery that is explained by the fact that Legion compromised the mail servers of its intended victims.
The group recently claimed that the Indian banking system was already compromised, claiming to have access to data from NPCI (National Payment Corporation of India) and IDRBT (Institute for Development and Research in Banking Technology) servers.
Whatever they may be after or whoever they are, the bottom line that we all look for should be that India’s data security system is in need of a major overhaul.
In an interview with The Washington Post on Monday — through an encrypted instant-messaging software, “Legion” said the group has access to servers like that of Apollo Hospitals and it was unsure about releasing data from those servers because it might cause “chaos” in India.
We are waiting!