By: Tariq Bin Nawaz
The Pakistan Telecommunication Authority (PTA) reported in January 2024 that the number of social media users in Pakistan has reached tens of millions, utilizing various social media platforms. These accounts include Facebook, YouTube, Instagram, TikTok, and others. According to the PTA, as of January 2024, the number of Facebook users was recorded at 60.4 million, YouTube users at 71.7 million, TikTok users at 54.4 million, and Instagram users at 17.3 million.
Now, with such a massive number of users active on social media, it clearly means that these millions of users are indirectly handing over their privacy to these platforms on a daily basis. On this basis, a recent report has highlighted that not just in Pakistan but across the world, social media users’ data is at risk.
The National Cyber Emergency Response Team of Pakistan (NCERT) has issued an advisory, urging Pakistani social media users to immediately change their social media account passwords. The advisory reveals that globally, the passwords and sensitive information of over 180 million social media accounts have been stolen. It further states that this data breach has affected users of major companies, including Google, Facebook, and Apple, while information from Instagram, Snapchat, and even government portals has also been compromised. The users’ account details were stolen using the Infostealer malware. Infostealer is a dangerous type of software designed to steal sensitive information from computers and other communication devices.
In this regard, the National Cyber Emergency Response Team has issued guidelines for Pakistani users to protect themselves from any privacy breaches. According to the instructions, all users should immediately change their passwords and enable two-factor authentication (2FA). The advisory further recommends that users keep their antivirus and security software updated.
Monitor unusual login activity and avoid clicking on any suspicious links. The Northern Post sought expert opinions on this issue to determine what additional security measures users should adopt.
Muhammad Asad ur Rehman, a cybersecurity expert well-versed in protective measures for such incidents, spoke with The Northern Post and explained that this data breach does not only threaten government institutions but also puts ordinary social media users at risk of hacking. According to him, “Sometimes, average users can be even more vulnerable. Government-affiliated personnel generally have technical awareness about cyberattacks and preventive measures, which helps them avoid downloading suspicious apps, whereas ordinary users often appear uninformed in this regard.”
A lack of social media literacy is evident worldwide, but in developing countries like Pakistan, users tend to be less aware, making them more exposed to risks. The question arises: What steps can an ordinary user take to protect themselves from such threats?
On this matter, Asad ur Rehman advised that if any suspicious activity is noticed, the first step should be to immediately disconnect the affected device from the internet—either by turning off Wi-Fi or unplugging the network cable—to prevent the attack from spreading further. He stressed the importance of users promptly changing passwords for all critical accounts, particularly email, banking, and social media. After changing passwords, he recommended using a new, unique, and strong password for each account and enabling Two-Factor Authentication (2FA) wherever possible to receive alerts about any suspicious activity.
In such data breaches, large companies are often involved, typically using the data for commercial purposes, while criminal groups sometimes exploit it for financial gain. Asad ur Rehman further explained that in such situations, users should review recent activities in their bank, email, and social media accounts. If any unusual logins or transactions are detected, they should immediately report them to the relevant institution. If the attack is severe or the user is unsure how to proceed, they should contact a cybersecurity or IT expert who can provide timely assistance in understanding how the breach occurred and how to prevent future incidents.
When asked whether recent tensions have contributed to the rise in cyberattacks, he responded that while geopolitical tensions may be a contributing factor, they are not the sole reason. “Cyber threats are increasing globally, driven by escalating geopolitical conflicts and the growing reliance on technology,” he said. He emphasized that users should adhere to the advisory issued by the National Cyber Emergency Response Team (NCERT) and implement precautionary measures.
Also read: No intentions of shutting down YouTube in Pakistan, viral post outdated: PTA
