The Security and Exchange Commission of Pakistan, or SECP for short, is an administrative body that develops and controls Pakistan’s business sector and its securities. The organisation maintains both public and private data on each firm’s board of directors and the financials of every company registered in Pakistan. Recently, some of this data was made public online.
Private information regarding businesses and their CEOs was disclosed by SECP, including the CEO’s complete name, CNIC number, father’s name, phone number, residential address, and other information. What’s concerning is how simple it was for anyone to obtain the information that was leaked—all it took was the publishing of a link online.
The screenshot that follows was obtained from the compromised URL. For reasons of safety, it has been edited, and ProPakistani won’t go into specifics here.
SECP has now deleted all the confidential information that was exposed on the stolen link following a prompt notification from ProPakistani. The URL still navigates you to the business’s WordPress backend, but it no longer displays any confidential data.
The representative for SECP also verified the development.
In Pakistan and other nations across the world, data breaches are beginning to occur more often. Data from Pakistan’s Finance Ministry has frequently been leaked, exposing highly confidential state secrets. The most recent occurrences were in March and November of 2021.
Additionally, the Federal Board of Revenue also had a data breach in August of last year. It is obvious that the broad problem has to be addressed, and we anticipate greater security measures in the future.
