The National Cyber Emergency Response Team (CERT) issued a warning of a growing threat of “enemy cyber attacks” on government websites and digital platforms and advised all government websites in Pakistan to transition to “read-only” mode. This precautionary measure aims to safeguard against unauthorised attacks and protect the digital infrastructure.

The CERT advisory highlighted the need to protect government digital platforms from malicious attacks and spread of fake information which could affect public trust. To counter these threats, the advisory recommended several urgent security protocols including disabling website forms and login capabilities, limiting website modifications, and enhancing database security.

According to the CERT, the primary concerns include the potential exploitation of website features such as contact forms, search bars, and file upload options. These vulnerabilities could allow hackers to access sensitive citizen information or establish persistent threats through the deployment of malicious web shells. Additionally, the advisory warned of sophisticated denial-of-service attacks that could be launched through complex queries affecting government services.

The threats are believed to originate from state-sponsored groups engaged in advanced persistent threats (APT) and ideologically motivated hacktivists. These actors may aim to gain long-term access to systems or deface and disrupt public websites as a means to challenge governmental authority and destabilize public confidence. 

The CERT has stressed the need for immediate action to implement these security measures.