Nature of the Incident
Impact and Risk Assessment
The fraudulent domain and email ID are entirely unauthorized and do not belong to Cressanda Railway Solutions Limited. The perpetrators are using these fraudulent assets to impersonate the company and misrepresent facts to key government clients, specifically Eastern Railway and a Government Department of Maharashtra. Any correspondence, invoices, representations, or commitments made from the fraudulent email ID or domain are declared fraudulent, non-binding, and completely disowned by the company.
Immediate Corrective Actions Taken
Client Alerts
The company has issued urgent official communications to Eastern Railway and the relevant Maharashtra Government departments to alert them of this impersonation and advise them to disregard any communication from the fraudulent domain.
IT System Security
The company has immediately terminated all administrative and network access provided to M/s Ocean IT Solutions and Mr. Kamlesh. A comprehensive, independent cybersecurity audit of the official IT infrastructure has been initiated.
Legal Action
The company is in the process of filing a formal complaint with the Cyber Crime Cell against the perpetrators under the Information Technology Act, 2000, and Indian Penal Code. The company is also initiating strict legal proceedings for trademark infringement and corporate identity theft.
Disclosure Authorization
#Tags: #CressandaRailway #CyberFraud #SEBIRegulation30 #RegulatoryCompliance #Negative