Pakistan encountered more than 5 million cyberattacks in the first three quarters of 2025, driven by the country’s rapid digital expansion and increased reliance on online banking, mobile payments, and e-commerce. A report by Maldives Insight highlighted the surge in digital transactions, mobile banking, and e-commerce activities in Pakistan, with smartphones playing a crucial role in these transactions.
Despite the growth in digital transactions, the country faces vulnerabilities due to weak passwords, inadequate data protection practices, and a lack of awareness about online threats among users and institutions. The report mentioned that around 90% of retail transactions in Pakistan were conducted digitally during FY25, showcasing a significant shift towards a cash-light economy.
Many users in Pakistan lack basic online safety knowledge, such as strong password management and phishing detection, making them easy targets for cybercriminals. The report also pointed out that cybercriminals are increasingly using tactics like fake calls, fraudulent websites, and malicious links to exploit human behavior, in addition to technical attacks.
The period saw more than 166,000 banking malware attacks and over 126,000 spyware incidents detected in Pakistan. Not only individuals but also government departments, businesses, educational institutions, and telecommunication providers have been targeted by cyber threats. Official figures revealed a rise in cybersecurity incidents in 2025, with over 500 incidents reported compared to 410 in 2024.
Cybercrime in Pakistan surged by 35% in 2025, primarily due to WhatsApp hacking, online fraud, and financial scams. The country received over 73,000 complaints related to cybercrimes during the year. Concerns over data privacy have heightened as reports surfaced about sensitive personal information and identity-related data being traded on illicit online platforms, raising questions about data governance and security oversight.
