Sustained cyber espionage has targeted multiple Pakistani law enforcement organizations, including Balochistan Police, Khyber Pakhtunkhwa Police, Islamabad Police, and the Punjab Safe Cities Authority, using malware families such as PlugX, ShadowPad, Cobalt Strike, and Remcos RAT. The compromise of the Balochistan Police Complaint Management System turned a public-facing portal into a malware delivery mechanism, extending access to police and citizen data. #BalochistanPolice #KhyberPakhtunkhwaPolice #IslamabadPolice #PunjabSafeCitiesAuthority #PlugX #ShadowPad #CobaltStrike #RemcosRAT #ComplaintManagementSystem
Keypoints
- Pakistani law enforcement agencies were targeted in a long-running espionage campaign.
- Attackers focused on systems holding biometric, criminal, and personnel records.
- Multiple threat clusters used PlugX, ShadowPad, Cobalt Strike, and Remcos RAT.
- The Balochistan Police Complaint Management System was compromised to deploy implants.
- The activity suggests both China- and India-aligned actors sought intelligence on Pakistani security operations.
Read More: https://thehackernews.com/2026/07/hackers-weaponize-balochistan-police.html