Above Google Chrome screen shot captured before visitors clicked on NCM’s governmentcontacts.com link [between Feb 2012 and Oct 2014].
Above Google Chrome screen shot captured after visitors clicked on NCM’s governmentcontacts.com link: unsecured browsers were redirected to malicious web site 18.104.22.168. This browser hi-jacking continued during 2012, 2013 and 2014. Screen shot captured Dec 2012, ten months later…
evuln.com/tools/malware scanner report showing the last modification time of malicious redirects on NCM’s governmentcontacts.com was Feb 2012. Above screen shot captured May 2013, fifteen months later…
Users were warned that proceeding to NCM’s governmentcontacts.com would very likely infect their systems with malicious software designed to steal information: e.g. passwords, business data, messages, credit card numbers, or cause identity theft, permanent file deletion, financial loss, and/or loss of operating system control. Above screen shot captured July 2013 seventeen months later….
Several accounts may have been compromised during this prolonged period of time, which persisted far beyond the usual, expected or normal response time, without stopping or being taken down. Above screen shot captured Sept 2014, thirty one months later…..
The NCM Software Development Inc GOVPAGES.ca product [same name as NCM’s GOVPAGES.ca malware hosting server] is endorsed by 12 Canadian Premiers, the Conference Board of Canada’s Anne Golden/President/CEO and Canadian Federation of Independent Business’s Catherine Swift/President and CEO.
NCM Software Development Inc a corporate client of the Government of Canada since the early 1990’s, has been caught in the embarassing position of hosting known malicious software on it’s discredited GOVPAGES.ca host server during 2012, 2013 and 2014.
Without question, cyber security is a shared responsibility. The timely sharing of relevant cyber threat information increases the overall security and resilience of Canada’s public and private sector cyber infrastructure.
Cyber incident reporting is shared among information specialists and between the ‘Information Protection Centre/Shared Services Canada’, the ‘cyber threat evaluation centre’ and, the ‘communications security establishment Canada’. http://www.publicsafety.gc.ca/cnt/ntnl-scrt/cbr-scrt/ccirc-ccric-prtnrs-eng.aspx