Cyber Security Attacks in Pakistan

Cyber Security in Pakistan

Pakistan has experienced a dramatic increase in cybercrime, raising concerns about the country’s cyber security. The National Response Centre for Cyber Crime was established as part of the government’s efforts to fortify its infrastructure for cyber security. The center is in charge of responding to, looking into, and punishing cybercrime within the nation.

The National Cyber Security Authority was created by the government to oversee and coordinate national cyber security initiatives. The Prevention of Electronic Crimes Act 2016 is one of the laws and regulations the government has passed to combat cybercrime. The government is promoting the adoption of encryption and other security precautions in order to stop cybercrime, and it is collaborating with private service providers to keep an eye out for suspicious activity.

Cyber Crimes in Pakistan (2018 – 2022)

1. Targeted Ransomware Attack on the Pakistan National Bank:

In June 2022, a targeted ransomware attack disrupted the Pakistan National Bank’s systems. The “Cyber Ninjas,” a group of hackers claimed to have been responsible for the attack, are said to have chosen the bank as their target due to its substantial financial resources. The incident caused the bank to lose access to its private customer and financial data, forcing it to shut down its servers for four days while it attempted to recover its information.

2. Malware Attack on the Government of Pakistan:

In August 2022, a sophisticated malware attack was launched on the Pakistani government. The “Shadow Brokers” advanced persistent threat (APT) organization was suspected of carrying out the attack. The software was developed to steal sensitive data from government computers, including information about military operations, diplomatic ties, and national security. The incident serves as a warning about the seriousness of cyber security threats in the area, even if the government was able to minimize the attack and safeguard its systems.

3. Phishing Attack on a Major Pakistani Telecommunications Company:

In October 2022, a phishing attack was launched on a significant Pakistani telecommunications company. The hackers stole sensitive client data, including login credentials, payment information, and other details using phishing emails and malware attachments. The incident serves as a reminder of the necessity for robust cyber security procedures to protect against these types of attacks, even though the organization was able to recognize the attempt and take action to secure its systems.

4. Cyberattacks on the Pakistan Stock Exchange:

The Pakistan Stock Exchange (PSX) was the target of a sophisticated cyberattack in July 2020. The attackers launched a distributed denial-of-service (DDoS) attack on the PSX using a mix of malicious malware and malicious scripts, preventing authorized users from using the stock exchange’s services. Trading was halted for many days while the PSX sought to restore its systems as a result of the attack.

5. Data Breach at Punjab Information Technology Board:

A data breach that compromised the personal data of about 7 million people occurred in February 2019 at the Punjab Information Technology Board (PITB). The hackers were successful in accessing the PITB’s servers and downloading the users’ names, addresses, phone numbers, and email addresses. The PITB was able to track down the perpetrators and take action to stop further intrusions.

6. BankIslami Phishing Attack:

Information on about 1 million clients was compromised in a phishing assault that hit Pakistan’s bankIslami in March 2018. Customers’ usernames and passwords were accessible to the attackers thanks to phishing emails they sent out that contained links to dangerous websites. In a timely manner, the bank reset all impacted customers’ passwords and informed them of the attack.