Skip to content
CybersecurityNewsCrime-and-justiceGeneral-newsPoliticstechnology

Data Breach in Kazakhstan with Evidence Pointing towards Chinese Origins

Stolen data, believed to originate from a supplier to China's security agencies, exposes an apparent focus on investigating Kazakhstan's law enforcement and military personnel.

 and  Administrator
3 min read
Stolen data, suspected to originate from a Chinese security services contractor, indicates scrutiny...
Stolen data, suspected to originate from a Chinese security services contractor, indicates scrutiny focused on Kazakhstani law enforcement and military officials.

Data Breach in Kazakhstan with Evidence Pointing towards Chinese Origins

Hack Attack! Trove of Leaked Data Reveals Chinese Surveillance on Kazakhstan's Law Enforcement and Military Personnel

Yowza! Looky here! A juicy batch of leaked data, allegedly from a Chinese contractor working for their security services, has spilled the beans on some serious snooping happening in Kazakhstan. This scandalous data has raised eyebrows and put Kazakhstan on high alert.

The Kazakh Digital Development, Innovation and Aerospace Industry Ministry, along with the National Security Committee, or KNB, have started thumbing through the leaked info to get the lowdown. They chopped out a statement on February 20, admitting they're giving the leaked data a good ol' once over.

This intriguing tale kicked off earlier this month when some mystery users uploaded a humongous pile of sensitive data to GitHub, claiming it came from a Chinese company called I-Soon. This company, so the story goes, did undercover work for the Chinese Ministry of Public Security.

According to IT specialists, the data was swiped from all over the globe, including Afghanistan, Egypt, France, India, Kazakhstan, Kyrgyzstan, Mongolia, Pakistan, and Turkey, to name a few.

Now, here's where things get interesting. TsARKA, a Kazakhstan-based cybersecurity company, hinted on their website on February 20 that the leak offers a sneak peek into the tricks up the sleeves of Chinese IT surveillance operatives. Those tricks? Trojan viruses, social network de-anonymizer systems, and WiFi networking hacking equipment, to name a few.

Apparently, the alleged Chinese operation was doing more than just spying on broad systems like databases. They were also keeping an eye on specific individuals, watching their correspondence, call logs, and even their movements, according to cybersecurity experts.

Kazakhstan appears to have been a particularly juicy target for Chinese intelligence services. An analysis of the leaked info suggests that at least one hacker group had unfettered access to Kazakhstan's telecom operators' critical infrastructure for more than two years.

Entities like the country's largest telecommunications operator, Kazakhtelecom, as well as cellular operators Beeline, Kcell, and Tele2, ended up in those hacker's greedy paws. The data included the personal data of their subscribers: names, email and postal addresses, phone numbers, call logs, device IMEIs, and logins and passwords.

Other reported targets? The State Pension Fund and airlines, like Air Astana. However, the pension fund has denied any data has been pilfered.

Notably, TsARKA has named employees of the National Security Committee, or KNB, and the Defense Ministry as targets of the alleged Chinese surveillance operation. The company claimed, "This is just the tip of the iceberg. No one knows how many undetected hackers and leaks of our data there are."

In broader terms, Kazakhstan is no stranger to data security concerns and privacy issues. With over 140 individuals recently detained for allegedly selling citizens' personal data via Telegram, the region is keeping a watchful eye on data security.

As for the Chinese surveillance technology gracing Kazakhstan and other Central Asian countries, it's being used for digitalized policing and crowd control, reflecting a broader integration of Chinese tech into regional governance structures.

While there's an escalating espionage rivalry between Russia and China, there's no specific mention of Chinese surveillance specifically targeting Kazakhstan's critical infrastructure in the available results. However, the use of Chinese surveillance technology in the region could potentially be leveraged for broader intelligence gathering.

This whirlwind of espionage and data breaches might just be the beginning. Keep your eyes peeled—the drama's far from over!

  1. The leaked data, allegedly from a Chinese contractor, has shed light on Chinese cybersecurity activities, revealing trojan viruses, social network de-anonymizer systems, and WiFi networking hacking equipment were used to spy on specific individuals in Kazakhstan, including employees of the National Security Committee and the Defense Ministry.
  2. The General-news and Crime-and-justice sectors have been abuzz with the Kazakhstan news, as the leak exposed that at least one hacker group had unauthorized access to Kazakhstan's telecom operators' critical infrastructure for over two years, compromising the personal data of their subscribers.
  3. With the escalating use of Chinese technology in Central Asian countries, the ongoing data breaches and surveillance operations have sparked concerns about potential intelligence gathering and the broader implications for politics and security in the region.

Read also:

    Related

    Latest