AGL 37.65 Increased By ▲ 0.08 (0.21%)
AIRLINK 132.80 Increased By ▲ 0.30 (0.23%)
BOP 5.60 Decreased By ▼ -0.04 (-0.71%)
CNERGY 3.83 Increased By ▲ 0.06 (1.59%)
DCL 8.74 Decreased By ▼ -0.13 (-1.47%)
DFML 40.80 Decreased By ▼ -0.20 (-0.49%)
DGKC 88.59 Decreased By ▼ -1.57 (-1.74%)
FCCL 35.36 Increased By ▲ 0.28 (0.8%)
FFBL 66.15 Decreased By ▼ -0.35 (-0.53%)
FFL 10.37 Increased By ▲ 0.22 (2.17%)
HUBC 108.90 Increased By ▲ 2.50 (2.35%)
HUMNL 14.49 Increased By ▲ 1.09 (8.13%)
KEL 4.85 Decreased By ▼ -0.01 (-0.21%)
KOSM 7.03 Increased By ▲ 0.18 (2.63%)
MLCF 42.60 Increased By ▲ 0.80 (1.91%)
NBP 59.70 Increased By ▲ 1.12 (1.91%)
OGDC 184.95 Increased By ▲ 3.70 (2.04%)
PAEL 25.60 Decreased By ▼ -0.10 (-0.39%)
PIBTL 5.91 Increased By ▲ 0.08 (1.37%)
PPL 148.59 Increased By ▲ 0.19 (0.13%)
PRL 23.15 Decreased By ▼ -0.07 (-0.3%)
PTC 16.56 Increased By ▲ 1.32 (8.66%)
SEARL 68.77 Decreased By ▼ -0.02 (-0.03%)
TELE 7.26 Increased By ▲ 0.02 (0.28%)
TOMCL 35.70 Decreased By ▼ -0.30 (-0.83%)
TPLP 7.55 Increased By ▲ 0.15 (2.03%)
TREET 14.24 No Change ▼ 0.00 (0%)
TRG 50.90 Increased By ▲ 0.05 (0.1%)
UNITY 26.49 Increased By ▲ 0.09 (0.34%)
WTL 1.21 No Change ▼ 0.00 (0%)
BR100 9,786 Increased By 18.7 (0.19%)
BR30 29,800 Increased By 400.2 (1.36%)
KSE100 92,110 Increased By 171.7 (0.19%)
KSE30 28,734 Decreased By -9.5 (-0.03%)

ISLAMABAD: Hackers from India and North Korea are said to be attacking Pakistan’s most valuable data including that of financial services, defence, and Ministry of Foreign Affairs (MoFA).

According to a letter sent to all the ministries and their attached departments, Pakistan’s Cyber Space remains a target of cyber offensive activities of global security giants. Cyberattacks are increasing in intricacy and magnitude of impact across all organisations which possess the most valuable data including financial services, government, education and health sectors, etc.

Threat intelligence report for the period (November 22, 2022 to January 1, 2023) is as follows: (i) analysis reveals that attack vectors have not targeted Secure ISP users; (ii) major attack vectors for targeting institutes are macro-enabled files, phishing, dropping payloads, domain phishing, Microsoft office base payloads; (iii) 35x malicious samples identified targeting critical information infrastructure including Ministry of Foreign Affairs (MoFA), Prime Minister Office (PMO), Defence Organizations, PAF, Army, banks and educational institutions;(iv) 21x suspicious domain names impersonating ministries, defence services, educational institutes and Anti-Virus service providers were identified; and (v) India and North Korea were among key initiators of targeted cyberattacks.

The suspicious file/ domain names are: (i) IBO- Lodhran.doc (target GoP-CTD);(ii) USDeptof-Statefundallocationsfor Pakistan. Dox (target GoP-CTD);(iii) Prime Minister’s visit to Turkiye.doc (target PM Office &MoFA );(iv) 4x doc file(RFQQUOTA-TION.doc s6604166915347 892625382 RFQQUOATION.doc, NEWOR-DER.doc, 59NEW_ORD-ER.doc)( GoP&Defence Services);(v) 3x impersonating domains (mofs-gov.org,mailv.mots-gov.org, mailpakbj.online (target Ministry of Finance);(vi) nbpfunds.online 68.65.122.49 (National Bank of Pakistan); and (vii) Bloggerboy.buzz 64.190. 113.97 orangeholister.buzz (target Pakistan Government and military, etc.

Copyright Business Recorder, 2023

Comments

Comments are closed.