Representational image — AFP
Hackers Steal Data of over 2m Pakistanis from Restaurants, Put It up for Sale
By Zeeshan Bakhsh
Some hackers accessed the data of 2.2 million Pakistani citizens from the database of various restaurants in the country and put it up for sale online, it emerged on Wednesday.
As reported by Geo News, the compromised data of some of the citizens has been displayed by the hackers as a sample to attract buyers in an advertisement for sale.
The hackers claim that they have hacked a private company-made database that over 250 food outlets use for payments. They have also named dozens of these restaurants as well.
According to details, the compromised citizen data includes their contact numbers and credit card details, while the software hacked is used by hundreds of restaurants in the country.
The data of citizens is being offered for 2 Bitcoins, which make up to $54,000 as one Bitcoin is worth $27,000 as per the market sources.
In Pakistani rupees, two Bitcoins are worth over Rs15 million.
The Federal Investigation Agency's (FBR) cybercrime circle has said that no complaint has been received in this regard so far.
It may be noted that the federal government on Tuesday advised all information technology (IT) and financial institutions, including regulators, to “refrain from collaboration, installation and use of Indian origin” artificial intelligence (AI)/information and communication technology (ICT) products as that may pose a “constant, concealed and force multiplier threat” to Pakistan’s critical information infrastructure (CII).
The government had informed the authorities concerned of the threat via a “cyber security advisory” — which was obtained by Geo News — and shared with federal and provincial ministries including sectoral regulators.
It noted that globally AI products and services are being used by various industries, including financial and banking sectors, to accelerate enterprise growth.
“It has been learnt that [the] fintech sector of Pakistan including a few banks are engaged with Indian-origin companies who are offering them IT products, Cyber Security and AI solutions, etc.,” the document had stated.
It said the “use of Indian security products/solutions” was a constant, concealed and force multiplier threat” to Pakistan’s CII, including the banking sector, for two reasons: The factors were identified as a “possibility” of “backdoor or malware” in the products to collect “logs/data traffic analysis and personal identifiable information (PII)”.
The other factor was that it was “direct Indian ingress in Pakistan's CII through technical means/access control with passive monitoring capability”. – The News