Latest news with #PakistanCyberForce
Hindustan Times
30-05-2025
- Politics
- Hindustan Times
Fragile ceasefire and rising hybrid threats
The recent ceasefire between India and Pakistan, declared on May 10, 2025, in the aftermath of the Pahalgam terror attack and subsequent Operation Sindoor, has ushered in a tenuous calm. However, this truce masks an evolving and complex conflict landscape marked by intermittent ceasefire violations and sophisticated hybrid warfare tactics that stretch beyond traditional battlefields. What may appear to be de-escalation is, in fact, the onset of a new phase of the conflict--less visible, yet equally dangerous. The brief lull in hostilities has already been disrupted by multiple ceasefire violations along the Line of Control, particularly in the Rajouri and Poonch sectors. These incidents, reportedly involving mortar shelling and small arms fire by the Pakistan army, indicate that the ceasefire remains precarious. While both sides have refrained from formally acknowledging violations, local accounts and reports suggest a pattern of low-intensity engagements that challenge the ceasefire's credibility on the ground. More significantly, the confrontation has expanded into cyberspace and the information domain, marking a paradigm shift. Since May 11, Indian cyber agencies have reported over 1.5 million cyberattacks—not only from Pakistan but also from IP addresses traced to Bangladesh, Indonesia, Morocco, and parts of West Asia. A report titled Road of Sindoor, compiled by the Maharashtra cyber police and shared with key law enforcement bodies, attributes these attacks to Pakistan-linked hacking groups such as APT 36, Pakistan Cyber Force, and Mysterious Bangladesh, suggesting the emergence of a coordinated, transnational cyber warfare strategy. These attacks, employing malware, Distributed Denial-of-Service (DDoS) tactics, and misinformation campaigns, constitute advanced persistent threats (APTs) and are multi-vector in nature. While many were neutralized, some succeeded in defacing websites and allegedly extracting data from key institutions. For instance, the Mizoram Public Service Commission's portal was compromised, displaying messages glorifying Pakistan. Cybersecurity firms like SentinelOne and CrowdStrike have observed breaches exploiting vulnerabilities in South Asia and proxy networks across North Africa, West Asia, and North Korea, often employing tools like ShadowPad—a modular backdoor linked to suspected China-affiliated cyber-espionage groups. These attacks frequently use VPN chains and layered infrastructure to obscure their origin, underscoring the growing complexity of attribution and response in this diffuse, transnational threat environment. Simultaneously, intelligence agencies have reported a surge in information warfare. Social media platforms, especially X (formerly Twitter), have witnessed coordinated inauthentic activity including hashtag campaigns, doctored images, and Artificial Intelligence (AI)-generated deepfakes targeting Indian military actions in Kashmir and the Northeast. Government sources in Delhi have linked many of these operations to bot networks previously associated with Pakistani influence campaigns. This psychological warfare appears aimed at influencing global perceptions, potentially affecting domestic morale and amplifying internal divisions--particularly during sensitive moments such as military funerals and regional protests. Adding another layer of complexity is the deepening Chinese connection to Pakistan's military posture. Defence analysts and satellite imagery confirm the deployment of Chinese-origin J-10C fighter jets armed with PL-15E beyond-visual-range missiles in the Skardu region. Though officially described as routine, their proximity to contested air corridors in Ladakh and Gilgit-Baltistan suggests strategic signalling. Open-source military trackers note that this may be the first time such assets have been stationed in high-altitude readiness since the 2020 Galwan clashes. Turkey and Azerbaijan have also openly supported Pakistan amid the rising tensions. President Recep Tayyip Erdogan's government continues to raise the Kashmir issue in international forums and extend diplomatic backing to Islamabad. Azerbaijan, closely aligned with Turkey through cultural and strategic ties, has also reinforced its relationship with Pakistan—strengthened during the 2020 Nagorno-Karabakh conflict where Pakistan offered military support. These alliances raise the prospect of material or strategic backing for Pakistan, adding a broader regional dimension to the current standoff. India now faces a formidable challenge: How to respond to attacks that are neither clearly visible nor easily attributable. The war has shifted from terrain to networks, from troop deployments to data disruptions, from conventional battles to algorithmic influence. Defence strategists are urging a robust focus on military-grade cyber deterrence, State-level cybersecurity capacity building, and the development of a legal framework for transnational cyber attribution and response. Cross-sector coordination between military, civil defence, and private cybersecurity stakeholders has become not just necessary but urgent. What is unfolding is not a post-war calm but a transition into War 2.0—--a state of continuous, low-intensity, multidomain conflict. While the guns may be temporarily silent, the digital battlefield is active, adaptive, and expanding. India's challenge is no longer just winning conventional wars but fortifying its systems, institutions, and civil society against a war that rarely declares itself. This article is authored by Hriday Sarma, senior fellow, South Asia Democratic Forum, Brussels.
Time of India
06-05-2025
- Business
- Time of India
Pakistani cyber attackers claim to have 'accessed sensitive data' from Indian defence websites
A Pakistan-based hacker group, "Pakistan Cyber Force," has claimed responsibility for cyber intrusions targeting Indian defence websites. The group breached data from Military Engineering Services and Manohar Parrikar Institute, defacing the Armoured Vehicles Nigam Limited website. Indian cybersecurity agencies are actively working to mitigate further risks and reinforce digital defences following the attack. Tired of too many ads? Remove Ads Tired of too many ads? Remove Ads Cyber attackers allegedly operating out of Pakistan have claimed responsibility for a string of cyber intrusions targeting Indian defence-related websites, including a data breach involving personal information of defence personnel and the defacement of a state-owned defence firm's website.A hacker group identifying itself as the 'Pakistan Cyber Force' has reportedly gained unauthorised access to data from the Military Engineering Services (MES) and the Manohar Parrikar Institute for Defence Studies and Analyses (MP-IDSA), a government-affiliated strategic think tank. The group claims to have obtained login credentials and other sensitive information belonging to personnel associated with the two institutions.'In addition to this data breach, the hacker group also defaced the official website of defence PSU Armoured Vehicles Nigam Limited (AVNL) with images of the Pakistan flag and the Al Khalid tank ,' a source familiar with the matter told ToI on response, AVNL has taken its website offline as a precautionary step. 'A thorough and deliberate audit' is currently underway to determine the extent of any damage or compromise to the confirmed that cybersecurity agencies are 'actively working to detect any additional cyberattacks by actors linked to Pakistan.' The source added that this ongoing surveillance is designed 'to quickly identify and mitigate any future risks posed by these cyber attackers.'Officials said appropriate measures are being implemented to reinforce digital defences and prevent further breaches. 'These efforts are focused on enhancing the resilience of online platforms and ensuring that forces are better prepared to defend against future cyber threats,' the source latest breach follows a pattern of cyber intrusions seen in the wake of the April 22 terror attack in Pahalgam that killed 26 civilians. At that time, Pakistani cyber actors had attempted to target websites linked to welfare and education within the Indian armed forces ecosystem. Those efforts were reportedly contained swiftly through prompt defensive actions.
The Hindu
06-05-2025
- Politics
- The Hindu
Pahalgam terror attack LIVE: More cyberattacks from Pakistan-based groups come to light
It has come to light that a group known as 'Pakistan Cyber Force' had gained access to sensitive data from the websites of Indian Military Engineering Service (MES) and Manohar Parrikar Institute of Defence Studies and Analysis (MPIDSA) and defaced the website of Armoured Vehicle Nigam Limited (AVNL), a defence public sector undertaking. Also read: Has the Pahalgam attack crossed a red line? Also, UN chief António Guterres condemned the Pahalgam attack and he said perpetrators must be brought to justice. Urging both India and Pakistan to avoid military confrontation, he said, 'make no mistake, a military solution is no solution, and I offer my good offices to both governments in the service at peace.' The UN Security Council commenced closed-door consultations on the situation between India and Pakistan, hours after Secretary General Antonio Guterres voiced concern over tensions between the nuclear-armed neighbours being 'at their highest in years'. The MHA has asked several states to conduct mock drills for effective civil defence on 7th May. The measures to be taken during the drill include operationalisation of air raid warning sirens, updation of evacuation plan & its rehearsal and training of civilians on civil defence aspects, government sources said. The Delhi government is likely to hold a meeting to discuss preparations for mock drills, following a directive from the Union Ministry of Home Affairs (MHA) to the States to conduct them on Wednesday (May 7, 2025) amid rising tensions with Pakistan following the Pahalgam terror attack. The Indian Army on Monday (May 5, 2025) said that multiple locations Jammu and Kashmir along the Line of Control (LoC) have come under small arms fire from the Pakistani Army. Pakistan's Defence Minister Khawaja Asif on Monday warned that India could carry out a military strike at any moment along the Line of Control in Kashmir. Also Read | Suspension of the Indus Waters Treaty: What are the implications for India and Pakistan?
Hindustan Times
06-05-2025
- Business
- Hindustan Times
Pak hacker group claims to have breached defence sites
NEW DELHI: The website of Armoured Vehicles Nigam Limited (AVNL), a defence public sector undertaking that manufactures tanks and armoured vehicles, was taken down on Monday for a thorough audit after a Pakistani hacker group called Pakistan Cyber Force claimed to have defaced it by posting images of a Pakistani flag and a tank, officials aware of the matter said. AVNL is one of the seven new defence companies carved out of the erstwhile Ordnance Factory Board four years ago. 'As a precautionary measure, the AVNL website has been taken offline for a thorough and deliberate audit to assess the extent of any potential damage caused by the defacement attempt and to ensure the integrity of the website,' said one of the officials, asking not to be named. The AVNL website wasn't accessible at the time this report was filed. The development comes at a time when tensions between India and Pakistan have peaked in the aftermath of the April 22 Pahalgam terror strike. The Pakistani group also claimed to have accessed sensitive data of the Military Engineer Services and the Manohar Parrikar Institute for Defence Studies and Analyses. The latter, however, denied the cyberattack and its website was fully functional. The MES website, however, could not be accessed. Some claims suggest that the attackers may have compromised personal information of people, including their login credentials, the official said. While the extent of the alleged breach is yet to be officially confirmed by Indian authorities, the officials said cybersecurity experts and agencies are actively monitoring cyberspace to detect cyberattacks, particularly those that may be sponsored by Pakistan. 'The ongoing surveillance aims to quickly identify and mitigate any future risks posed by these cyber attackers,' said another official. Monday's alleged hacking is the second such attempt by Pakistan-sponsored hackers. Last week, they made a series of unsuccessful attempts to breach Indian websites, targeting digital platforms linked to children, veterans, and welfare services. The groups, identified as 'Cyber Group HOAX1337' and 'National Cyber Crew,' attempted to deface the websites of army schools in Nagrota and Sunjuwan. Appropriate measures are being taken to bolster the security infrastructure, strengthen digital defences, and safeguard against further intrusion attempts, the officials said. These efforts are focused on enhancing the overall resilience of online platforms and ensuring that the forces are better prepared to defend against future cyber threats, they added.
The Hindu
05-05-2025
- Politics
- The Hindu
Defence Secretary meets Prime Minister; more cyberattacks from Pakistan-based groups
In a continuation of top Defence Ministry officials meeting Prime Minister Narendra Modi, Defence Secretary Rajesh Kumar Singh met Mr. Modi at his residence on Monday (May 5, 2025), according to official sources. Meanwhile, it has come to light that a group known as 'Pakistan Cyber Force' had gained access to sensitive data from the websites of Indian Military Engineering Service (MES) and Manohar Parrikar Institute of Defence Studies and Analysis (MPIDSA) and defaced the website of Armoured Vehicle Nigam Limited (AVNL), a defence public sector undertaking. The cyberattacks come amid heightened tensions between the two countries, heavy deployment by the Pakistan Army along the border and the tensions also spilling into the social media space. It has come to attention via the 'X' account 'Pakistan Cyber Force' that the group has allegedly gained access to sensitive data from the Indian MES and MPIDSA, defence sources in the know said. 'This claim suggests that the attackers may have compromised personal information related to defence persons, including the login credentials,' a source said. In addition, the group also attempted to deface the official website of AVNL, which was defaced by using the Pakistan flag and Al-Khalid battle tank. As a precautionary measure, the website of Armoured Vehicle Nigam Limited has been taken offline for a thorough and deliberate audit, in order to assess the extent of any potential damage caused by the defacement attempt and to ensure the integrity of the website, the source stated. 'Furthermore, cybersecurity experts and agencies are actively monitoring cyberspace to detect any additional cyberattacks, particularly those that may be sponsored by threat actors linked to Pakistan.' This ongoing surveillance aims to quickly identify and mitigate any future risks posed by these cyberattackers, the source observed stating that in response, appropriate and necessary measures are being taken to bolster the security infrastructure, strengthen digital defences, and safeguard against further intrusion attempts. These efforts are focused on enhancing the overall resilience of online platforms and ensuring that the forces are better prepared to defend against future cyber threats, the sources added. Since the uptick of tensions between the two countries, there have been earlier cyberattack attempts on Army-affiliated institutions.
