Table of Contents
The Pakistan Telecommunication Authority (PTA) has released a detailed cybersecurity report for 2024, outlining extensive measures taken by its National Telecom Security Operations Center (NTSOC) to safeguard the country’s telecom ecosystem. The NTSOC reported the takedown of over 2,070 phishing websites and malicious mobile applications that were specifically targeting Pakistani users.
This marks one of the most proactive years in digital threat mitigation, with the center significantly increasing surveillance, coordination, and takedown efforts to protect consumers and infrastructure.
Dark Web Surveillance Uncovers Leaked Pakistani Credentials
In addition to takedowns, over 550 cases of compromised Pakistani credentials were identified through dark web monitoring. These included user login information, email-password combinations, and other personal data.
PTA emphasized the importance of this surveillance, noting that such information is often used in phishing, ransomware, and fraud schemes against unsuspecting users in both the public and private sectors.
Thousands of Threat Indicators Issued Across Telecom Sector
Throughout 2024, the NTSOC processed:
- 3,200+ Indicators of Attack (IoAs) – These provided early warning signs of potential intrusions or malicious activities.
- 3,946 Indicators of Compromise (IoCs) – These were issued across networks to help detect and neutralize active or ongoing threats.
The indicators helped telecom operators and internet service providers (ISPs) swiftly respond to malicious activity before it could affect end users.
CERT Issued Nearly 4,000 Public Security Advisories
The Computer Emergency Response Team (CERT) played a crucial role in distributing intelligence and security updates. CERT issued:
- 3,946 public security advisories to users and organizations
- 50+ private threat advisories to sensitive and critical infrastructure operators in the private sector
These advisories covered a range of threats, from phishing campaigns to sophisticated malware targeting telecom infrastructure.
Over 200 Cybersecurity Operations Conducted
In terms of fieldwork, NTSOC undertook more than 200 operational security activities, including real-time monitoring, forensics, and threat response. These operations were essential in maintaining the resilience of telecom services and infrastructure across Pakistan.
Critical Cisco ISE Cloud Vulnerability Exposes Admin Access (CVE-2025-20286)
Public-Private Collaboration Key to Threat Response
PTA underlined that its cybersecurity success in 2024 was bolstered by strong cooperation between public institutions and private stakeholders, including ISPs and telecom providers. A two-way threat intelligence-sharing framework was established to enable:
- Faster detection of threats
- Coordinated action between CERT and company-specific cybersecurity teams
- Proactive blocking of attacks at the network level
This model ensured a more responsive and united front against digital threats.
Looking Ahead: PTA’s Commitment to Cyber Resilience
The PTA reaffirmed its commitment to strengthening Pakistan’s cyber defense, particularly in the telecom sector—a vital backbone of the national digital economy. As digital threats evolve, PTA plans to further enhance:
- Automation in threat detection
- Capacity building of cyber response teams
- International partnerships for intelligence sharing
The 2024 report stands as a testament to Pakistan’s growing cyber maturity and ability to defend against increasingly complex online threats.
