On the question of a journalist Finance Minister Shaukat Tarin informed that he has decided to take a third-party view before taking any action in case of the worst ever cyber-attack that brought down the Federal Board of Revenue’s (FBR) data centre (includes all websites and applications) for more than 72 hours.
According to media reports, “Pakistan’s premier spy agency had forewarned the FBR about high possibility of a cyber-attack, sources told The Express Tribune on Monday. But these warnings were ignored, resulting into either taking over or shutting down about 360 virtual machines of the FBR data centre”.According to The Express Tribune
“The 360 machines are almost half of total virtual machines, indicating the extent of damage caused to the data. Based on technical inputs and initial findings, the FBR has submitted a report to the finance minister about the cyber-attack that took place before 2:00 am on August 14” as per media reports.
“Third Party audit before any action” – Shaukat Tarin
“I will review the report and take third-party view before taking any action”, said Shaukat Tarin on Monday while responding to a question sent by The Express Tribune. The minister had been requested to comment whether he would take any action in case of data hacking of FBR since a report had been submitted to him.
FBR already warned about cyber attack
According to media reports, “the premier intelligence agency had warned the FBR on Wednesday that a cyber-attack may take place on its data centre. They sources said that after that the FBR chairman had a discussion about precautionary measures.”
Asim Ahmed, Chairman FBR
To a question on whether he issued any instructions to shutdown systems to avoid data hacking, FBR Chairman Asim Ahmad replied, “No such instructions were given by me. In such circumstances, systems are not shutdown but very closely monitored, which was being done.”
Current Stance of FBR
Hackers attacked Pakistan’s largest data centre run by the FBR and managed to break those, bringing down all the official websites operated by the tax machinery. In a press statement issued on Monday, the FBR said that “all applications having public interface have been operationalised and running smoothly”. These operationalised projects include FBR website, Paysis website, eFBR website, IRIS website, AJK IRIS website; IMS web service, PRA web service and Tax Asaan Mobile application, stated the FBR.
Chief Information Technology Officer (CIO) already disclosed internal system issues
The sources said that the Pakistan Revenue Automation Limited (PRAL), which provides technical support to the FBR and also houses the data, took a lenient view of the threat. This was despite the fact that the Chief Information Technology Officer (CIO) who has been hired from HSBC bank, had pointed out system vulnerabilities and the possibility of its hacking after assuming his responsibilities few months ago.
FBR is a premier department of government of Pakistan
The FBR’s is the largest database that carries information of trillions of rupees transactions, details of wealth and income and expenditures of its citizens. It also has details about their various personal and business transactions due to various types of withholding taxes that are being deducted on these transactions.
What hackers did ?
The sources said that the hackers had managed to “intrude” in almost 360 virtual machines and shut them down. They said that till Monday evening nearly half of these machines have been restored. All the current data that was in these machines at time of the attack has been lost, said the sources.
They said that the hackers intruded the system by hacking the login and passwords of the data centre administrators. This was done through Microsoft software. The FBR’s technical wing’s initial assessment was that the hackers intruded in the system through Hyper-V link.
“They said that in its initial report, the FBR and its technical wing has recommended reviewing the licenses regimes of all the software that it operates. It has also been recommended to review the relationship with Microsoft Inc,” According to media reports.
Cyber Attack on FBR | Facts | Latest Information | FBR Websites | FBR | Federal Board of Revenue | Source |
Millions of stay order applications are pending due to this hack. Our IT needs alot of updation, the security certificates are expired, this all happens because of the poor management of IT. The chief of IT must be replaced.
Agreed Sir !