Summary:**Hackers Exploit Balochistan Police Portal, Sparking Nationwide Espionage Fears** Cybersecurity re
referrerpolicy="no-referrer"
style="max-width:100%;height:auto;display:block;margin:0 auto;">
**Hackers Exploit Balochistan Police Portal, Sparking Nationwide Espionage Fears**
Cybersecurity researchers have disclosed details of sustained cyber espionage activity against several Pakistani law enforcement organizations undertaken by suspected China‑ and India‑aligned threat actors between February 2024 and April 2026.
### Introduction
In early May 2026, a joint investigation by Pakistan’s Computer Emergency Response Team (PK‑CERT) and independent threat‑intelligence firms uncovered a prolonged intrusion into the Balochistan Police online portal. The breach, which began in February 2024, allowed attackers to exfiltrate sensitive personnel records, ongoing investigation files, and internal communications. The discovery has reignited concerns about the vulnerability of critical government infrastructure to foreign‑backed cyber campaigns.
### Key Developments
Researchers identified two distinct intrusion patterns. The first, linked to a China‑aligned advanced persistent threat (APT) group dubbed “Red Mirror,” employed spear‑phishing emails masquerading as internal training notices to harvest credentials. Once inside, the actors deployed custom malware to laterally move across the network, ultimately accessing the portal’s database.
The second wave, attributed