⚠️ Region Alert: UAE/Middle East
Cybersecurity researchers have uncovered a multi-year espionage campaign targeting several Pakistani law enforcement organizations, including the Balochistan and Islamabad Police. These operations, attributed to both China- and India-aligned threat actors, compromised critical servers hosting biometric records, criminal case files, and national identity data between 2024 and 2026.
The attackers deployed a wide range of malware, including PlugX, ShadowPad, Cobalt Strike, and Remcos RAT. In a notable escalation, a public-facing Complaint Management System (CMS) was compromised to deliver custom implants and AsyncRAT, turning a government service portal into a malware delivery mechanism for both law enforcement personnel and citizens.
Top comments (0)