SentinelOne says China- and India-linked cyberespionage groups spent more than two years infiltrating Pakistani law enforcement networks, with Balochistan Police hit the hardest. The intruders accessed systems tied to biometric data, criminal case files, personnel records, and a public complaint portal, using malware families including PlugX, ShadowPad, Cobalt Strike, and Remcos. #PlugX #ShadowPad #CobaltStrike #Remcos #BalochistanPolice
Keypoints
- China- and India-linked groups quietly targeted Pakistani police networks from February 2024 through April 2026.
- Balochistan Police absorbed most of the intrusion activity.
- The attackers reached biometric databases, criminal case files, personnel records, and citizen-facing systems.
- SentinelLabs grouped the activity into four clusters: PlugX, ShadowPad, Cobalt Strike, and Remcos.
- Fake software updates were planted on Balochistan Policeβs Complaint Management System to lure users.
Read More: https://www.securityweek.com/china-india-linked-hackers-both-targeted-same-pakistani-police-force/