Recently, it has come to light that individuals responsible for state-sponsored cyberattacks, reportedly backed by Pakistan, underwent advanced training by an Italian security firm. Documents shared with The Sunday Guardian indicate that Pakistani Navy officers, including those with high ranks like colonel, lieutenant colonel, and major, participated in a 13-week training course on Malware Development for various operating systems in Rome, Italy.
The Italian firm, CY4Gate, a part of the Elettronica group, confirmed the training program in response to a request from Commander Muhammad Nadeem Ilyas of the Pakistan Directorate Naval Intelligence. The syllabus covered Cyber Advanced technical topics, with dedicated areas in CY4Gate's specialised laboratories for theoretical and practical sessions.
Notably, a surge in state-sponsored cyberattacks against India has been reported, with a 278% increase between 2021 and September 2023. Government agencies experienced a 460% rise in targeted cyberattacks, while startups and SMEs saw an alarming increase of 508%. These findings raise concerns about the potential impact on national security and the need for heightened cybersecurity measures.
Newly obtained internal documents provided insights on the cybersecurity training provided by Italian firm Elettronica and CY4Gate to Pakistani Navy officers. The syllabus includes instructions on bypassing popular antivirus software like Kaspersky, Avast, Bit Defender, Quick Heal, Windows Defender, and eSet Nod32, along with techniques to inject disruptive payloads into protected systems.
Training Details
- Duration: 13 weeks (January to March 2023)
- Location: CY4GATE training laboratory, Via Coponia, Rome
- Participants: One colonel, two lieutenant colonels, and seven majors
- Accommodation: Hotel Adagio, Via Damiano Chiesa, Rome
Concerns for India
Elettronica and CY4Gate, implicated in training Pakistani officers, also operated in India since 2008. A Memorandum of Understanding (MoU) signed with Bharat Electronics Limited (BEL) in 2019 raises concerns about potential security implications.
Global Impact
The rise in Pakistan's investment in disruptive cyber methods signifies a growing trend in military hacking, similar to tactics employed by North Korea. Potential targets include institutions in India, Israel, the United States, the Netherlands, and Sweden, with financial gains as a motive. These skills may also be used against political parties and individuals deemed anti-establishment in Pakistan.
G20 Summit Cyberattacks
Highlighting the severity, during the G20 Summit, the government's official website faced relentless cyberattacks, averaging 16 lakh attacks per minute or 26,000 attacks per second.
Response from Elettronica
Efforts to obtain clarity from Elettronica regarding these developments have proven futile, as the company remains unresponsive to inquiries. This lack of response adds to the uncertainty surrounding the situation.