Pakistani hackers hit Indian railway website

Graham Cluley
Graham Cluley
@
@[email protected]
@gcluley


The official website of Eastern Railway, part of the state-owned Indian railway network, was struck by an SQL Injection attack earlier this week by a hacking gang believed to be based in Pakistan.

According to reports, the www.easternrailway.gov.in website was defaced with messages such as “Cyber war has been declared on Indian cyberspace by Whackerz-Pakistan”, “Indians hit hard by Zaid Hamid” and “You are hacked”.

A further message was displayed claiming that the website had been hacked as a response to an alleged violation of Pakistan’s air space by India earlier this month.

Officials at Eastern Railway claim that the website hack was achieved through an SQL injection attack, similar to the others that we see everyday striking websites around the world installing malware.

Sign up to our free newsletter.
Security news, advice, and tips.

As far as we can tell, no malware was installed during this SQL injection attack, for which everyone should be grateful. Nevertheless it’s embarrassing for the companies concerned that their websites were not written more securely in the first place to prevent the hack attempt from succeeding.

Of course, this is not the first time that Indian and Pakistani hackers have attacked each other’s country via the internet. For instance, in 2002 Pakistani government websites were struck by a denial of service attack, and aggressive messages have been embedded inside viruses threatening Pakistani hackers.


Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.