Founder of the Centre for Analysis and Investigation of Cyber Attacks (TSARKA) Olzhas Satyev spoke about how the alleged hacker leak of more than 2 million personal data records of clients of the microfinance organisation Zaimer kz (MFO) supposedly occurred.
According to media reports, the head of TSARKA believes that one of the hacker groups may have breached the organisation ‘Robocash’, which provides the information system for organisations such as Zaimer kz.
“Not only in Kazakhstan, they operate in the Philippines, Vietnam, and Russia. In Kazakhstan, they have Zaimer kz. And as far as we understand, they (the hackers) approached, apparently, with a ransom demand or blackmailed this organisation, saying, pay up or we will release your data. In the end, as I understand it, they could not reach an agreement, either the organisation ‘Robocash’ did not want to pay, or did not believe them. After that, the hacker group posted the customer databases of Zaimer kz, Zaimer ru and other Philippine and Vietnamese systems in the public domain on Telegram”, stated Olzhas Satyev.
Answering the question of how people who have never taken out a loan from the MFO ended up on the list, the ‘white hat hacker’ suggested that the attackers could have obtained and leaked data not only of current, but also of potential clients.
“When, for example, a person simply wants to get a microloan and enters their data for a credit scoring check, their data ends up in the system. The person may not have ultimately taken out the loan, but they entered their data somewhere. Secondly, when you take out a loan, you provide several contacts, usually a sister, a brother, or parents. That data was also included in these leaks”, explained the specialist.
At the same time, Olzhas Satyev noted that removing the list from public access is now impossible. It has most likely spread across the internet, and many have already downloaded it, including scammers.
“What can be done now is to file a complaint. About one and a half thousand complaints have already been sent to the Information Security Committee so that they initiate an investigation. Citizens can only now file a complaint via E-otinish stating that their data has been illegally leaked and is being used. And this organisation will most likely face some fine for the personal data breach. It (the fine) is actually not that big”, said Satyev.
For context, it was previously reported to Kazakh citizens about the leak of their personal data in the ‘EgovMobile’ app. Notifications were also sent to those who had never taken out loans from the MFO.
“Your personal data is in the leaked customer database of Zaimer kz! You have the right to file a complaint regarding a violation of personal data protection legislation with the Committee for Information Security of the Ministry of Digital Development, Innovations and Aerospace Industry of the Republic of Kazakhstan”, the notification stated.
It is worth noting that currently, many citizens are sharing that the notifications about the data leak that arrived have already disappeared from ‘EgovMobile’.