The Senate Standing Committee on Information Technology and Telecommunication was presented with an alarming disclosure on Friday: the personal data of more than 350,000 Hajj applicants has surfaced on the Dark Web. This revelation highlighted glaring weaknesses in Pakistan’s digital security framework. Committee members expressed grave concern over the breach, stressing that the state has a duty to shield its citizens from such devastating privacy violations.
Ministerial Negligence and Delayed Legislation
Senator Palwasha Khan, chairing the session, criticized the continued delay in enacting the Data Protection Bill, despite its cabinet approval months ago. She termed this holdup “ministerial negligence,” expressing frustration that the IT Minister, Shaza Fatima, failed to attend the critical meeting. Her remarks reflected deep disappointment in the government’s handling of cybersecurity legislation, which has been long promised but remains perpetually deferred, leaving citizens unprotected against escalating digital threats.
Confirmation of the Breach by PTA Chairman
During the briefing, PTA Chairman Hafeez-ur-Rehman confirmed that sensitive details belonging to Hajj applicants were indeed being traded on the Dark Web. He highlighted the seriousness of the matter, emphasizing that Pakistan must urgently introduce legislation to safeguard personal data. Hafeez-ur-Rehman stressed that without strong legal mechanisms, national databases would remain vulnerable, and citizens’ trust in government systems would continue to erode with every new breach.
Also Read: IT Ministry Confirms New Submarine Cable Project for Pakistan
Senators Cite Regional and Global Examples
Senator Afnanullah pointed to the dangerous consequences of repeated data leaks, citing Iran’s example, where stolen information was later weaponized during conflict. He warned that Pakistan could face similar repercussions if corrective measures were not implemented swiftly. Senator Kamran Murtaza reminded the committee that Pakistan itself had once gained access to Indian data during wartime, underscoring the critical role of information security in national defense and strategic stability.
Questions Over NCCIA’s Capacity
Lawmakers raised doubts about the ability of the newly established National Cyber Crime Investigation Agency (NCCIA) to manage a breach of this magnitude. They questioned whether the agency had the expertise, infrastructure, and independence to carry out thorough investigations. While the PTA assured that investigations were underway to identify the source of the leak, senators argued that technical inquiries alone could not prevent recurrence without a robust legislative framework.
Call for Urgent Cybersecurity Legislation
The disclosure that 350,000 Hajj applicants’ data is circulating on the Dark Web has intensified calls for immediate cybersecurity reforms. Lawmakers stressed that repeated breaches inflict severe damage on citizens’ privacy, public trust, and Pakistan’s digital sovereignty. The incident has become a sobering reminder that without urgent action, the nation risks deeper vulnerabilities. The committee demanded that the government accelerate the passage of the Data Protection Bill to restore public confidence.
