Hackers use Pakistani passport website to spy on visitors

In this illustration, a 90s computer is cut in half as strings of code float by. — Illustration: Rebecca Zisser/Axios

Hackers modified a Pakistani government website where citizens can request passports to spy on its visitors, according to researchers at Trustwave. The infection is still active.

The big picture: The code added to the website, known as Scanbox, performs reconnaissance on visitors and has been associated with espionage attacks in the past. Other actors use it too, and Trustwave is not attributing the attack to any government or criminal groups.

Show less

Go deeper55 Words

Details: Scanbox logs keystrokes, providing hackers with users' login information, and it also sends back information about the user's system.

"Since it's a website that requires login, it gets those credentials," Ziv Mador, Trustwave vice president of threat research told Codebook.

Go deeper: Chinese hacker group used Scanbox to spy on Cambodian elections last year

Cybersecurity

Latest Stories

Latest Stories

"He is a terrorist": Ardern vows to never speak attack suspect's name

Another top prosecutor leaving Robert Mueller's investigation team

Elizabeth Warren wants to abolish Electoral College system

Historic Midwest flooding: Warnings in place as torrent continues

Gillibrand: Drug manufacturers should be prosecuted for opioid crisis

Deafening silence in Asia on China's mass detention of Uighur Muslims

Brazilian President Jair Bolsonaro begins U.S. visit with trip to CIA

As U.S. eyes China, Europe wonders if it could fend for itself

Axios World: The authoritarian offensive — Battling Russia, alone — China buying silence

Devin Nunes suing Twitter over anti-conservative "shadow bans"

House Judiciary receives "tens of thousands" of documents in Trump probe

Kirsten Gillibrand: Everything you need to know about the 2020 candidate

Axios Dashboard

Axios Future: Trouble with GDP — Meet Aurora — Uncouth rich

Elizabeth Warren's slow start

Axios PM: Elizabeth Warren's slow start — Facebook and local news — The last Blockbuster

Putin signs bill banning "blatant disrespect" for Russian state online

Over 1,000 believed to be dead after cyclone hits Mozambique

Dems demand FBI probe into ex-spa owner selling Chinese access to Trump

Ahead of 2020, white evangelicals are sticking with Trump

Hackers use Pakistani passport website to spy on visitors

Latest Stories

Latest Stories

"He is a terrorist": Ardern vows to never speak attack suspect's name

Another top prosecutor leaving Robert Mueller's investigation team

Elizabeth Warren wants to abolish Electoral College system

Historic Midwest flooding: Warnings in place as torrent continues

Gillibrand: Drug manufacturers should be prosecuted for opioid crisis

Deafening silence in Asia on China's mass detention of Uighur Muslims

Brazilian President Jair Bolsonaro begins U.S. visit with trip to CIA

As U.S. eyes China, Europe wonders if it could fend for itself

Axios World: The authoritarian offensive — Battling Russia, alone — China buying silence

Devin Nunes suing Twitter over anti-conservative "shadow bans"

House Judiciary receives "tens of thousands" of documents in Trump probe

Kirsten Gillibrand: Everything you need to know about the 2020 candidate

Axios Dashboard

Axios Future: Trouble with GDP — Meet Aurora — Uncouth rich

Elizabeth Warren's slow start

Axios PM: Elizabeth Warren's slow start — Facebook and local news — The last Blockbuster

Putin signs bill banning "blatant disrespect" for Russian state online

Over 1,000 believed to be dead after cyclone hits Mozambique

Dems demand FBI probe into ex-spa owner selling Chinese access to Trump

Ahead of 2020, white evangelicals are sticking with Trump

Inside the White House with D.C.'s most wired reporter. Sign up for Mike Allen's Axios AM.

Hackers use Pakistani passport website to spy on visitors