The Islamabad Safe City Authority faced a major security breach that led to the immediate shutdown of its online system, causing alarm among law enforcement officials and the public. The project, launched by the PPP-led government with the support of a Chinese concessional loan, aimed to boost the capital’s surveillance capabilities with advanced technology like CCTV cameras, a bomb-proof command center, and facial recognition software.
The breach exposed significant weaknesses within the Authority’s digital infrastructure, as hackers were able to infiltrate the primary server and gain unauthorized access to sensitive databases like criminal records. Despite the firewall detecting the intrusion, the lack of backup servers and contingency plans forced a complete shutdown of critical systems like the Complaint Management System and the Human Resource Management System.
The compromised systems impacted various services tied to the Safe City initiative, including mobile applications, smart police vehicle records, and video analytics. Additionally, outdated software and expired licenses further compromised the system’s security, highlighting the importance of maintaining up-to-date technology.
While the incident raised concerns about the project’s security and vulnerability, the Safe City cameras’ management system, operating through offline direct lines, remained secure during the breach. Police spokesperson Taqi Jawad assured that precautionary measures were taken, including closing all logins to change passwords.
The controversy surrounding the Safe City project intensified, with previous litigations over transparency and cost inflation leading to the cancellation of the initial contract with Huawei in 2012. Despite the project’s resumption under the PMLN government, questions have been raised about its effectiveness in preventing incidents and facilitating arrests.
Financial strain and debt suspension agreements with China Eximbank added further strain to the project, culminating in the tragic death of the project’s director in an apparent suicide. The successful breach of the Authority’s systems adds to the project’s challenges, casting doubt on its ability to fulfill its intended role as a cornerstone of Islamabad’s security infrastructure.
As the investigation into the breach continues, stakeholders and the public await further details on the extent of the damage and the steps taken to secure the system. The incident serves as a stark reminder of the importance of robust cybersecurity measures in safeguarding critical infrastructure and sensitive information.