K-Electric struck by ‘ransomware’

Published September 10, 2020
Word of the hack was already in widespread circulation by the time the utility officially acknowledged it. — KE website/File
Word of the hack was already in widespread circulation by the time the utility officially acknowledged it. — KE website/File

KARACHI: K-Electric on Wednesday said it experienced an attempted cyber-incident earlier this week. “The KE teams have initiated consultation with international information security experts and are also collaborating with local authorities in this regard,” the company said in a statement.

The admission came days after customers across the city complained that they were unable to lodge power outage and technical fault complaints using 118 helpline, 8119 SMS service and KE Live App or check the company’s website for duplicate bills.

On Tuesday, KE had issued a statement telling customers to expect disruptions to some online services but made no mention of the “cyber-incident”.


“All critical customer services including bill payment solutions and 118 call-centre are operational and fully functional, to ensure the integrity of our systems, as a precautionary measure, we have isolated few non-critical services.

Some services frozen but power supply unaffected; hackers demand $3.8m ransom to unfreeze

As such customers may experience some disruption in accessing duplicate bills from the KE website,” the statement released on Wednesday said.

Word of the hack was already in widespread circulation by the time the utility officially acknowledged it. An information security and technology news publication ‘BleepingComputer’ published a story on Tuesday with the headline ‘Pakistan’s largest private electricity provider, K-Electric, hit by Netwalker ransomware’.

Ransomware is a relatively recent form of hacking in which the attackers insert malicious code into a computer that encrypts all the data in the system. They then demand payment via online platforms in return for providing the decryption key.

The report said that Netwalker is demanding $3.8 million ransom and if payment is not made in seven days, the ransom will increase to $7m.

BleepingComputer is a partner in the No More Ransom Project which was started in 2016 as an alliance between Europol’s European Cybercrime Centre, the National High Tech Crime Unit of the Netherlands police, and McAfee in order to battle ransomware.

When reached out, the report’s author, Lawrence Abrams told Dawn, “it is not known how much or what files were stolen before encrypting K-Electric’s systems.” His report says the attack seems to have happened on Monday.

“As K-Electric is exhibiting actual disruptions to their online services and billing, my guess is that they had at least some devices encrypted.”

What’s at risk?

Though KE has not shared details of the attempted hack and adds that it is following cybersecurity protocols, concerns remain on whether any data was leaked, and if so whether it was encrypted.

Tech experts say that currently, there is no redressal mechanism in the country for such data breaches — that have happened in the past as well — leaving consumers at a greater risk.

“When a data breach happens, it is worth asking if the data encrypted and what has been leaked,” said Shahzad Ahmed, director Bytes For All — NGO that works on technology and human rights.

The draft Pakistan data protection bill is there but it does not offer adequate protection of citizens in case of data breaches, he added.

KE has access to consumers’ names, addresses, CNIC and NTN numbers — information that is also published on bills — some more if you pay bills online.

“Financial data is linked to your CNIC (including with bank accounts, credit card). Many consumers pay their bills online. This is sensitive information. NIC details can reveal date of birth, your mother’s name (in records) and place of birth. This makes you more vulnerable. If any point hackers [in any data breach] are not given ransom, they can sell this to dark web and this can have repercussions.”

Published in Dawn, September 10th, 2020


Baloch paradox
15 Jan 2021

Baloch paradox

‘Why couldn’t my village have a school?’
Salute the Hazaras
Updated 14 Jan 2021

Salute the Hazaras

The nation has reason to be grateful to the Hazaras for setting models of forbearance in the face of calamity.


Updated 15 Jan 2021

Trump’s impeachment

The impeachment move may well remain symbolic in nature; even then, the symbolism itself is a potent one.
15 Jan 2021

Economic growth

MOODY’S Investors Service expects Pakistan’s economy to grow by a modest 1.5pc in FY2021, much higher than the...
15 Jan 2021

Madressah students

GETTING students of madressahs involved in politics is a bad idea, primarily because seminarians should be...
14 Jan 2021

Afghan dialogue

AS the Afghan Taliban and the government in Kabul try and reach a modus vivendi in Doha, it is essential that the...
14 Jan 2021

Polio dangers

IN the first incident of its kind this year, a policeman guarding polio vaccinators was gunned down in KP’s Karak...