China, India-Linked Hackers Both Targeted Same Pakistani Police Force

China, India-Linked Hackers Both Targeted Same Pakistani Police Force
SentinelOne says China- and India-linked cyberespionage groups spent more than two years infiltrating Pakistani law enforcement networks, with Balochistan Police hit the hardest. The intruders accessed systems tied to biometric data, criminal case files, personnel records, and a public complaint portal, using malware families including PlugX, ShadowPad, Cobalt Strike, and Remcos. #PlugX #ShadowPad #CobaltStrike #Remcos #BalochistanPolice

Keypoints

  • China- and India-linked groups quietly targeted Pakistani police networks from February 2024 through April 2026.
  • Balochistan Police absorbed most of the intrusion activity.
  • The attackers reached biometric databases, criminal case files, personnel records, and citizen-facing systems.
  • SentinelLabs grouped the activity into four clusters: PlugX, ShadowPad, Cobalt Strike, and Remcos.
  • Fake software updates were planted on Balochistan Police’s Complaint Management System to lure users.

Read More: https://www.securityweek.com/china-india-linked-hackers-both-targeted-same-pakistani-police-force/