Website hijacking — also known as hacking, domain takeover, or unauthorized access — is a growing cybercrime in Pakistan. Under the Prevention of Electronic Crimes Act (PECA) 2016, Sections 3 (Unauthorized Access) and 4 (Access with Intent to Commit an Offense), such crimes are punishable with fines of up to PKR 1 million and imprisonment of up to 3 years.
If your website has been hacked, redirected, defaced, or taken over, you should act without delay. The FIA Cyber Crime Wing (NR3C) is the official authority responsible for handling such complaints. This guide explains, step by step, how to report a hijacked website in Pakistan.
Step 1: Collect Evidence Before Reporting
FIA requires evidence before starting an investigation. Gather the following:
- Screenshots of your website (before and after the hijack or redirection).
- Hosting or domain logs (IP addresses, login attempts, timestamps).
- Alerts or notifications from your hosting provider or security tools.
- WHOIS records and proof of domain ownership (purchase or renewal receipts).
- Suspicious messages, ransom demands, or malware scan reports.
Tip: Save all files in one PDF or ZIP folder for easier upload.
Step 2: How to Report to FIA Cyber Crime
You can submit your complaint through several official FIA channels:
| Method | How It Works | Best For |
|---|---|---|
| Online Complaint Portal | Visit complaint.fia.gov.pk. Select Cyber Crime → Hacking/Unauthorized Access. Fill in your details, describe the incident, and upload evidence. A tracking ID is issued immediately. | Fastest and most recommended |
| Helpline 1991 | Call 1991 (within Pakistan) or +92-51-9106384 (outside Pakistan). Officers may guide you or register a preliminary complaint. | Quick first response |
| Send details to helpdesk@nr3c.gov.pk with subject line “Website Hijacking Complaint – [Your Domain]”. Attach CNIC, evidence, and contact information. | Detailed complaint with attachments | |
| In-Person Visit | Visit the nearest FIA Cyber Crime office. Submit a written application (in Urdu or English) along with a CNIC copy and evidence. Main HQ: 2nd Floor, National Police Foundation Building, G-10/4, Islamabad. Full list of offices: nr3c.gov.pk. | Urgent or sensitive cases |
| By Mail | Send a hard-copy complaint with evidence to: Director NR3C-FIA, National Police Foundation Building, G-10/4, Islamabad. | Formal written record |
Warning: Ignore any WhatsApp numbers or private agents claiming to file FIA complaints. These are often scams. Use only official FIA platforms.
Step 3: What to Include in Your Complaint
Your complaint should clearly include:
- Personal details: Full name, CNIC/Passport, address, phone number, and email.
- Incident details: Domain name, date/time of hijack, nature of the attack, and any financial loss.
- Suspicious information (if available): IP addresses, usernames, or unusual login activity.
- Evidence: Screenshots, logs, or email alerts (keep under 10MB if uploading online).
- Declaration: A statement confirming that the provided information is true under PECA 2016.
Step 4: What Happens After Filing
Once you file your complaint:
- You will receive a tracking ID via SMS or email.
- FIA assigns a Forensic Investigation Officer (FIO) to your case.
- Initial inquiry usually takes 7–15 days; detailed investigations may take 1–3 months, depending on complexity.
- You can check complaint status through the online portal or helpline 1991.
- Urgent cases, such as ransom demands or financial fraud, may be prioritized.
Additional Tips for Victims
- Secure your website immediately: Reset all hosting, domain, and CMS passwords. Enable two-factor authentication. Run malware scans.
- Contact your hosting provider: Request suspension of malicious activity and assistance with recovery.
- Use SSL certificates and firewalls: To strengthen website security.
- Take regular backups: Keep offline copies of your website.
- Monitor website activity: Use tools like Google Search Console or hosting control panels.
- Seek legal advice: If the financial loss is high, consult a cyber law expert for proper representation.
Conclusion
Website hijacking is a punishable crime in Pakistan under PECA 2016, but recovery is possible if you act quickly. By collecting proper evidence, filing a complaint with the FIA Cyber Crime Wing (NR3C), and securing your website, you can protect both your digital presence and your legal rights.
If your website has been hijacked, do not delay. File your complaint now through complaint.fia.gov.pk or call helpline 1991.
Frequently Asked Questions (FAQ)
Website hijacking means unauthorized access or takeover of a website or domain. It is also called domain takeover or hacking. A hijack may involve defacement, redirection, data theft, or complete loss of control.
Website hijacking is covered under the Prevention of Electronic Crimes Act (PECA) 2016, specifically Section 3 (Unauthorized Access) and Section 4 (Access with Intent to Commit an Offense).
You can file a complaint with the FIA Cyber Crime Wing (NR3C) using these official channels only:
Online portal: complaint.fia.gov.pk
Helpline: 1991 (toll-free) or +92-51-9106384 (international)
Email: helpdesk@nr3c.gov.pk
Nearest FIA Cyber Crime office (in-person submission)
Avoid third-party agents or WhatsApp numbers, as many are scams.
To file a complaint, you must provide:
CNIC or Passport copy
Proof of website ownership (domain/hosting receipts)
Screenshots and server logs showing the hijack
Incident details (date, time, affected URL)
You will receive a tracking ID within 24 hours after filing. An initial inquiry usually takes 7–15 days, while a detailed investigation may take 1–3 months, depending on case complexity.
FIA does not directly restore websites. However, it works with hosting providers and domain registrars during investigations. Fast action from your hosting company, along with FIA’s support, improves the chances of recovery.
Yes. Filing a cybercrime complaint with FIA is completely free of charge. You do not need to pay any fee at any stage.
If your website is hijacked, act quickly:
1- Reset all passwords (hosting, CMS, domain panel).
2- Contact your hosting provider to restore or suspend the site.
3- Run malware scans and update plugins/themes.
4- Take a backup of the compromised site for forensic use.
5- Inform your users (if sensitive data may have been leaked).
Leave a Reply