No amount of hardware and software firewalls is enough, because this system in the end gets information from all over Pakistan. Once the kernel of the OS your are running is compromised, you can do effectively anything to it. I raised the question previously on the thread: where did they get this software from? Imagine I am an NSA analyst tasked by CIA to put holes into WindowsXP which is going to be sold to PAF. I have access to the entire source code, including the graphics driver. I can control exactly what gets displayed and doesn't get displayed. Combine this with the fact that your are using their routers and their firewalls as well. Combine that with a traitor who can tap into some network line. Or, as a different threat, you are using their power supply. Every single time someone starts up a device, the device causes micro-fluctuations in the input power to all other devices. If the power supply can read these micro-fluctuations, the traitor has to connect a custom device that causes a known set of fluctuations. The possibilities are endless.Well, this is the end user system on which some firmware is running. Do you know how many layers of hardware and software firewalls, VPNs, TOR tunnels in front of this particular machine? Such systems can be compromised only if there is a traitor among PAF else it is next to impossible to penetrate military grade networks. You are assuming things by looking one terminal only. Heck, we don't even now if this system is even online or a part of some DMZ of a sub-net of entire PAF network.
Or, consider the fact that the Sep 2019 program showed the monitor displaying a Windows Desktop that shows WinZip software being used on computers in the Pilot Situation Room, the place where on duty pilots sit ready to react. WinZip is made by a regular organization. RAW can pay this organization to silently take over. It can now make sure that a compromised version of WinZip ends up on PAF computers. This is amateurishness. I have known this since Sep 2019 and I have kept quiet on this till now. But seeing how people are trivializing these concerns, I have to share them here.
Don't try to hide the ineptness and cluelessness of the people responsible for PAF's cyber security.