Latest news with #BlueLocker
Express Tribune
10-08-2025
- Politics
- Express Tribune
CERT warns 39 ministries of imminent cyber threat
Listen to article The Director General of the National Cyber Emergency Response Team (CERT) has issued formal warnings to 39 ministries and key government departments regarding potential cyberattacks involving BlueLocker ransomware threat, which could result in permanent data loss, operational disruption, and leakage of sensitive information. According to a letter circulated by the National CERT, advisories have been issued to prevent attacks on major federal institutions. These cyberattacks, if successful, could cripple business continuity systems and compromise confidential state data. The letter was addressed to high-level officials including the Secretary Cabinet Division, Secretary Interior, Secretary Foreign Affairs, DG NACTA, DG FIA, the National Security Division, the Establishment Division, the Election Commission, the National Assembly, and PEMRA, among others. Also Read: PAA denies Islamabad airport to be shut for eight days Additional recipients include core ministries and regulatory bodies such as the Ministry of Foreign Affairs, Ministry of Finance, NITB, NDMA, OGRA, and FBR. The advisory specifically warned that the BlueLocker ransomware poses a severe cybersecurity threat, urging all departments to disseminate the advisory, isolate infected systems from networks without delay, and report any incidents to relevant authorities. BlueLocker targets Windows-based desktops, laptops, servers, networks, and cloud storage platforms, the advisory said. It functions by encrypting files and then demanding ransom for data recovery. The National CERT has advised against downloading from unverified sources and clicking on suspicious links or attachments. Furthermore, it has called for immediate cybersecurity training for staff across all departments to help identify phishing emails and malicious links. In light of the evolving threat landscape, departments have been urged to bolster their cyber readiness and response protocols.
Arab News
10-08-2025
- Business
- Arab News
Pakistan warns key ministries of ‘severe' ransomware attacks, urges security system updates
ISLAMABAD: Pakistan's National Cyber Emergency Response Team (NCERT) has issued an advisory to 39 key ministries and institutions and warned them of a 'severe risk' posed by the ongoing 'Blue Locker' malware attacks, an NCERT spokesperson said on Sunday, confirming that a few Pakistani organizations had already been affected by the ransomware. NCERT, which handles cybersecurity threats, alerts and coordination for government ministries and institutions, advisory came after the ransomware targeted some organizations in the South Asian country, according NCERT spokesman Imran Haider. 'Pakistan Petroleum has been impacted severely and some other organizations were also attacked, but our deployed system is detecting and blocking it continuously,' he told Arab News. Blue Locker ransomware can impact Windows-based desktops, laptops and servers as well as network shares, cloud-synced storage and backup systems accessible during the attack, according to an Aug. 9 NCERT advisory seen by Arab News. 'The Blue Locker ransomware encrypts victim files, appends the .blue (dot blue) extension, and demands ransom in exchange for decryption keys,' it said, adding that the attack may initiate through trojanized downloads, phishing emails, unsafe file-sharing platforms and compromised websites. 'It has the potential for severe data loss, operational disruption, and reputational harm.' Once executed, the ransomware may disable antivirus software, spread laterally across the network, and exfiltrate sensitive information, according to the advisory. As a precaution, organizations must keep all systems updated with the latest security patches, apply multi-factor authentication, filter malicious emails or web content, avoid downloading software from untrusted sources, train staff on threat detection, and monitor systems and maintain offline backups of critical data. 'Immediate isolation of any infected system and prompt reporting to the cybersecurity team are essential to prevent further spread,' NCERT said. Independent cybersecurity experts say Pakistani government bodies lack structures, policies and constant vigilance needed to counter increasingly sophisticated cyber threats. Tariq Malik, a cybersecurity expert and former Chief Technology Officer with Pakistan's army, said the country's ministries and government departments were 'ill-prepared' to handle such attacks. 'They do not have such structure and clear policies to deal with such sophisticated attacks,' he told Arab News. 'Government departments need to start using the technology as a whole not only as personal computers and need proper safety mechanisms and trainings.' Ammar Jaffery, president of the Pakistan Information Security Association (PISA), said the nature of cybersecurity has changed from reactive to proactive, and organizations now need to continuously train their staff to deal with daily emerging challenges. 'Hackers are always ahead of experts, so it's not just about capability but about continuous learning, where organizations must recognize that cyber threats are growing daily, weekly and monthly,' he told Arab News. 'Therefore, organizations should regularly check their systems and create ongoing awareness among their technical and general staff.' Key ministries and departments should have their own cybersecurity teams, according to Jaffery. 'They should train their Security Operations Center (SOC) teams and ensure up-to-date Security Information and Event Management (SIEM) systems, and especially their own CERT which acts like a watchman guarding your home — are always on alert,' he said.
