Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Government of Pakistan

Government of Pakistan Vendor Cyber Rating & Cyber Score

hic-us.org

Pakistan has come a long way and today is one of the fastest growing economies of Asia. With over 160 million inhabitants, Pakistan offers its investors a strong and large consumer market with an ever expanding middle class. Strategically placed at the crossroads of South Asia, Central Asia and West Asia with close proximity to the Gulf makes Pakistan a promising regional hub and an important market for intra and inter-regional trade and investment. Pakistan has a lot to offer to foreign investors, especially in the engineering, power, medical, horticulture and manufacturingmanufacturing sectors with unlimited untapped potential for growth. The government has also formulated a liberal and attractive investment policy, key features of


GP A.I CyberSecurity Scoring

GP
Company Information
Website:http://www.hic-us.org
Employees number:5,274
Number of followers:0
NAICS:92812
Industry Type:International Affairs
Homepage:hic-us.org
GP Risk Score (AI oriented)
Between 800 and 849
logo
GPInternational Affairs
Updated:
09/03/2026
836/1000
Good
A
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
GP Global Score (TPRM)
xxxx
logo
GPInternational Affairs
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

GP
GPGood
Current Score
836A (GOOD)
01000
1 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
837Before Incident
JUNE 2026
836Before Incident
MAY 2026
836Before Incident
APRIL 2026
836Before Incident
MARCH 2026
836Before Incident
FEBRUARY 2026
836Before Incident
JANUARY 2026
836Before Incident
DECEMBER 2025
836Before Incident
NOVEMBER 2025
835Before Incident
OCTOBER 2025
835Before Incident
SEPTEMBER 2025
835Before Incident
AUGUST 2025
835Before Incident
JANUARY 2025
837Before Incident
Cyber Attack
01 Jan 2025GP
Government agencies in Bangladesh and Government agencies in Pakistan: SloppyLemming Cyber Attacks Hit Government and Infrastructure in Pakistan, Bangladesh

SloppyLemming Cyber Espionage Campaign Targets South Asian Governments and Critical Infrastructure

833After Incident
CRITICAL-4
GOV1772534265
SloppyLemming Cyber Espionage Campaign Targets South Asian Governments and Critical Infrastructure A recent report by cybersecurity firm Arctic Wolf has linked the threat group SloppyLemming (also tracked as Outrider Tiger and Fishing Elephant) to a large-scale malware campaign targeting government agencies and critical infrastructure operators in Pakistan and Bangladesh between January 2025 and January 2026. The operation employed dual malware chains to conduct espionage and data theft, marking a significant evolution in the group’s tactics. ### Attack Methods and Malware Payloads SloppyLemming deployed two distinct infection vectors: 1. BurrowShell Backdoor – Delivered via spear-phishing emails with malicious PDF attachments, this payload granted attackers full remote access, enabling file system control, screenshot capture, command execution, and network tunneling via a SOCKS proxy. Malicious traffic was disguised as legitimate Windows Update communications, using RC4 encryption to evade detection. 2. Rust-Based Keylogger – Embedded in macro-enabled Excel documents, this chain dropped a Rust-written keylogger alongside reconnaissance tools capable of port scanning and network enumeration, allowing attackers to gather sensitive data from compromised environments. ### Sophisticated Delivery and Infrastructure The campaign leveraged spear-phishing emails with booby-trapped attachments, including ClickOnce manifests that executed DLL sideloading loading malicious code under the guise of trusted Microsoft .NET binaries. Additionally, SloppyLemming abused Cloudflare Workers domains (112 identified in the past year) to relay command-and-control (C2) traffic, complicating attribution and takedown efforts. ### Broader Threat Landscape Active since at least 2022, SloppyLemming has a history of targeting government, law enforcement, energy, and telecommunications sectors across South and East Asia, including Sri Lanka, China, and Nepal. While the group is considered moderately capable, its use of custom malware (Ares RAT, WarHawk, Cloud Phish) and cloud-based exfiltration underscores the growing sophistication of cyber espionage in the region. Despite some operational security missteps, the dual-payload approach and abuse of legitimate cloud services highlight the persistent threat to regional governments and critical infrastructure.
INCIDENT DETAILS -
TYPE
Cyber Espionage
MOTIVATION
Espionage, Data Theft
IMPACT
Data Compromised: Sensitive government and critical infrastructure dataGovernment agenciesCritical infrastructure operatorsOperational Impact: Network tunneling, remote access, data exfiltration
DATA BREACH
Sensitive government dataCritical infrastructure dataSensitivity Of Data: HighData Encryption: RC4 encryption for C2 traffic

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for GP ?
?
What was GP's A.I Rankiteo Cyber Score in June 2026 ?
?
What was GP's A.I Rankiteo Cyber Score in May 2026 ?
?
What was GP's A.I Rankiteo Cyber Score in April 2026 ?
?
What was GP's A.I Rankiteo Cyber Score in March 2026 ?
?
What was GP's A.I Rankiteo Cyber Score in February 2026 ?
?
What was GP's A.I Rankiteo Cyber Score in January 2026 ?
?
What was GP's A.I Rankiteo Cyber Score in December 2025 ?
?
What was GP's A.I Rankiteo Cyber Score in November 2025 ?
?
What was GP's A.I Rankiteo Cyber Score in October 2025 ?
?
What was GP's A.I Rankiteo Cyber Score in September 2025 ?
?
What was GP's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on GP's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with GP ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view GP's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?
Government of Pakistan Cyber Scoring History | Rankiteo