The Islamabad Safe City Authority’s online system was taken offline on Saturday after a hacking attempt, raising concerns about cybersecurity measures. Officials familiar with the incident revealed that hackers infiltrated the main server two days prior, potentially accessing sensitive data like criminal records.
Authorities responded swiftly by shutting down critical systems, including those managing complaints, criminal records,human resources, and operational software. While a firewall alerted officials to the unauthorized access, a lack of backup or alternative servers necessitated the complete shutdown to prevent further compromise.
Further investigation exposed a critical security lapse: weak passwords used by officials. The compromised credentials,coupled with outdated software and expired licenses, significantly amplified the system’s vulnerability.
The impacted system encompassed a wide range of services, including mobile applications, police vehicle data, police station information, video analytics, traffic police operations, electronic challan data, and even criminal records.
However, a silver lining exists. The Safe City camera management system, operating independently and offline, remains secure as it requires valid login credentials for access.
Police spokesperson Taqi Jawad confirmed the hacking attempt and emphasized the firewall’s prompt alert. He explained that disabling all logins for the past 48 hours was a precautionary measure to update credentials, impacting police personnel’s access in the interim.
This incident highlights the importance of robust cybersecurity practices, including strong password policies, up-to-date software, and proper backups. The Islamabad Safe City Authority will need to address these vulnerabilities to ensure the security of its critical systems and the sensitive data they hold.
