ISLAMABAD: The National Cyber Emergency Response Team has warned that the threat of enemy cyberattacks on government websites and digital platforms has increased, and has recommended shifting all government websites to “read-only” mode.
It has also directed authorities to immediately limit website modification requests, disable forms and logins, and tighten database security as part of urgent protective measures.
In an advisory, the National Cyber Emergency Response Team (CERT) has directed all Government of Pakistan websites to be moved to “read-only” mode. This mode would help prevent unauthorised attacks, propaganda and ensure the security of digital infrastructure.
Declaring the importance of protection of government digital platforms from malicious attacks and spread of false information, it warned the increasing risk of spreading enemy information through changes to websites. Such attacks, it warned, can affect public trust. The National CERT has emphasised the need for immediate action to prevent cyber attacks.
The advisory states that the attackers can access sensitive data of citizens through contact forms and search bars of websites. Hackers can take advantage of web upload features to gain persistent access through web shells. They can also launch denial-of-service attacks using complex back-end queries. Such attacks by hackers can disrupt government services, it added.
Identifying various sources of threats, the National CERT highlighted state-sponsored advanced persistent threat groups and ideologically driven hacktivists.
The aim of these attacks may be to gain long-term access or to deface government websites and display them publicly.
The National CERT has immediately directed to limit website modification requests, disable forms and logins, and tighten database security.
