Pakistan’s National Cyber Emergency Response Team (CERT) has asked all federal and government websites to shift to “Read-Only” mode amid rising regional tensions and growing hacktivist activity. The advisory comes as a preventive step to secure official digital platforms from possible cyberattacks and disinformation campaigns. National CERT directed government departments to take urgent measures to stop unauthorized access and lower cybersecurity risks.
According to the advisory, the “Read-Only” mode will help protect websites from several major threats. One key concern is website defacement. In such attacks, hackers change webpage content to spread fake news or propaganda.
CERT also warned that attackers could exploit interactive features, including contact forms and search bars, through SQL injection attacks. These attacks may expose sensitive citizen information and government data.
The agency further explained that hackers could misuse file upload functions to install web shells. This could give attackers long-term access to official systems. At the same time, complex backend queries may also be used in Denial of Service (DoS) attacks, which can overload servers and disrupt government services.
The advisory highlighted weaknesses in content management systems (CMS) as another serious risk. Outdated plugins and themes could become easy entry points for attackers. In addition, hackers may attempt brute-force attacks to gain administrative access.
National CERT said the threats may come from state-sponsored advanced persistent threat (APT) groups and ideologically driven hacktivists. These groups may try to infiltrate systems for a long period or deface websites to gain public attention.
Possible targets include federal and provincial government portals, databases, and citizen service platforms across Pakistan. To reduce these risks, CERT recommended several immediate technical steps. Government organizations have been advised to block all website modification requests and disable forms and login systems. The agency also instructed departments to strengthen databases by removing write permissions.
Moreover, CERT recommended using Content Delivery Networks (CDNs) to manage sudden traffic spikes. It also recommended file integrity monitoring systems to detect unauthorized changes quickly.
The advisory further called for strict IP-based access controls. This would ensure that only authorized personnel can access backend systems. In case of a cyber breach, CERT advised departments to keep static website snapshots ready for quick deployment. It also urged organizations to maintain offline backups for faster recovery.
National CERT has now directed all government entities to implement the “Read-Only” mode immediately. IT teams must also monitor website activity logs for suspicious activity and keep all interactive features disabled. Government departments have been instructed to report any cyber incidents or concerns directly to National CERT through cert@pkcert.gov.pk. The agency said these steps are essential to protect Pakistan’s digital infrastructure from rising cyber threats.
