Pakistan to launch first AI policy

KARACHI:

The government is set to roll out its first-ever Artificial Intelligence (AI) Policy by early 2025, deploying it to strengthen cybersecurity with capabilities to detect and respond to cyber threats in real time, effectively averting data breaches. The policy aims to boost the digital economy and transform the country into a “Digital Pakistan.”

The AI policy in development, combined with the ongoing deployment of digital public infrastructure nationwide, may help Pakistan rise to a position among the top 10–15 ranks in the next Global Cybersecurity Index, from its current standing among the top 40 countries in 2024.

Speaking at the ‘Cyber Threat Intelligence 2024’ conference on Wednesday, Syed Junaid Imam, Member IT, Ministry of Information Technology and Telecom, said Pakistan is actively working on developing an AI policy.

“Probably in a couple of months, you will see Pakistan’s first AI policy. There is special focus on AI for cybersecurity. There is a realisation that AI is important for ensuring cyberspace,” according to a press statement issued by the conference organiser, Total Communications.

He noted that Pakistan advanced to a Tier-1 (role-model) ranking and positioned among the top 40 countries in the Global Cybersecurity Index (GCI) in 2024, from 79th position the previous year. “Improvement in this rank does not mean we have become secure. It is just a flag that we are taking steps and measures in the right direction. But we still have a long way to go.”

He added that the government is actively working to strengthen digital infrastructure, with the primary objective of bolstering Pakistan’s digital economy.

“We cannot take Pakistan on the path of a digital economy if we do not ensure cybersecurity,” Imam said.

“There is a realisation that the digital economy is the future of Pakistan. If we want Pakistan to take on the road of economic growth and prosperity, we have to ensure the digital transformation of the country.”

The digital infrastructure is rapidly developing in the country. For instance, the government has already established the national CERT (Computer/Cyber Emergency Response Team). “Now we are in the process of notifying the sectoral CERTs. In a month’s time, you will see sectoral CERTs like telecom, banking, and education, and there will also be provincial government CERTs,” Imam said.

All the CERTs will share intelligence threats with one another to better protect Pakistan and to make progress in all directions of digitalisation nationwide.

He highlighted that coordination and collaboration among stakeholders, including industry, the private sector, academia, and the government, remain key to achieving cybersecurity, a digital economy, and a digital Pakistan.

While building the national AI policy, the relevant authority formed a committee led by the private sector, with participants from industry, academia, and government who collaborated to develop the country’s AI policy.

Asad Effendi, Founder & CEO of Secure Networks, noted that AI can help detect cyber threats in real time, respond promptly, and protect valuable data and information.

Ammar Jaffri, Former Additional DG, FIA, and President of PISA Pakistan, mentioned that Bangladesh had previously paid a huge price for lacking a formal forum at the national level to coordinate and collaborate to exchange cyber threat intelligence in real time.

Igor Stolyarov, Technical Sales & Business Manager at Group IB, observed that Pakistan emerged as a high-priority target for cyber attackers and hackers in 2023, with primary targets including education, communication, military infrastructure sites, and government sectors.

Haytham Nassar, Cybersecurity Specialist at CISCO, added that ransomware attackers are using valid accounts for data breaches. “The hackers identify and use an account that has remained dormant for quite some time to steal information.”

Their primary targets are the financial, education, and manufacturing sectors. In 2023, prominent ransomware and malware groups intensified their focus on Pakistan, including groups such as INC Blog, White Rabbit, RedLine Stealer, Raccoon, META Stealer, Lockbit, RisePro, and ALPHV, he said.