Pakistan’s cybersecurity landscape has faced a serious challenge after a threat actor allegedly claimed responsibility for breaching the National Emergency Operations Centre (NEOC), a platform under the National Disaster Management Authority (NDMA).
ProPakistani understands that medical/bank records are not the mandate of NEOC in particular, considering it deals with natural hazards.
NEOC is a centralized, high-tech hub that monitors, analyzes, and coordinates disaster response and risk reduction initiatives in real-time using 300+ climate sensors, satellite imagery and AI to provide early natural disaster warnings.
A senior official on condition of anonymity confirmed to ProPakistani that no such breach has happened, and it’s not the mandate of NEOC.
“The information circulating over the past few days is fabricated with reference to NEOC and NDMA. It is incorrect and constitutes false news regarding NEOC and NDMA. There has been no cyber incident or suspicious activity within the NDMA environment,” he stated.
It is important to note that NDMA serves only as a consumer and producer of public-domain data related to natural hazards and disasters. Personal details or private information of individuals are neither collected nor stored by NDMA or NEOC, he explained.
The breach was reportedly detected on April 4, 2026.
“All NEOC-NDMA data is open and publicly available on the official website for public use. NEOC at NDMA does not maintain any classified personal information, as this is neither within our mandate nor a requirement of our operations. Therefore, there has been no data breach, pilferage, or cyber activity affecting NDMA’s IT environment,” he added.
The hacker group or individual operating under the alias “h4xorvats” posted about the data dump claiming that it contained the platform’s full source code along with sensitive user databases.
The hacker claimed the breached data includes more than 13,000 files, covering both web and mobile application source codes linked to the NEOC system.
According to the published database, the hacker said he had:
NDMA has denied any such breach.
Even in theory, such a hack could have represented one of the most serious cybersecurity breaches involving a Pakistani public-sector platform.
Exposure of medical surveillance databases could create risks, including identity theft, financial fraud, targeted phishing campaigns, and misuse of sensitive health information.
So far, our sources have clarified to us that all reports about the breach are false.