Find notable cyber news and cases, enriched with sources, timelines, and signals.

China- and India-linked cyberespionage campaign against Pakistani law enforcement

Campaign
First reported
Last updated
Happening score
H score 29
1 unique sources, 1 articles

Summary

Hide ▲

Cyberespionage groups linked to China and India ran a Feb 2024–Apr 2026 campaign against Pakistani law enforcement, reaching police systems that held sensitive records and citizen-facing data. The operation hit Balochistan Police most heavily and exposed servers tied to biometric databases, criminal case files, and personnel records. The intrusions used PlugX, ShadowPad, Cobalt Strike, and Remcos, and some access was delivered through fake software updates on a public complaint portal.

Timeline

  1. 10.07.2026 14:55 2 articles · 2h ago

    China- and India-linked intrusions target Pakistani police networks

    Initial Disclosure

    SentinelLabs reported a sustained cyberespionage campaign against Pakistani law enforcement networks, with Balochistan Police absorbing most of the activity and several police organizations affected. The activity was grouped into PlugX, ShadowPad, Cobalt Strike, and Remcos clusters, with some access reaching servers tied to biometric databases, criminal case files, personnel records, and citizen-facing systems. Researchers also identified malicious files disguised as software updates on Balochistan Police’s public Complaint Management System, which could affect officers and residents using the portal.

    Show sources