Bulgaria ordered Tuesday a probe into the leak of a trove of taxpayer data in a Russia-linked cyberattack that was disclosed on the same day the former Soviet satellite nation moved to buy US-made F-16 jet fighters.
On Monday anonymous hackers sent several Bulgarian media outlets a link to tens of thousands of files with sensitive taxpayer information that they said came from a finance ministry server.
The email was sent from an address registered with the Russian internet provider Yandex, sparking speculation that the attack came from Russia.
“We can also make a political analysis. Yesterday the government took an important decision to buy F-16 fighters, and the email is Russian,” Interior Minister Mladen Marinov told bTV television on Tuesday morning.
Bulgaria, now a member of the NATO alliance, wants to buy eight F-16 fighter jets to replace its ageing fleet of Soviet MiG-29 aircraft.
According to local media, the leaked documents came from a government database and included personal identification numbers and income figures belonging to over one million people and legal entities.
The hackers claimed they had another 10 gigabytes of similar data and that in total there is information on as many as five million people.
“Your government is retarded. The state of your cyber security is a parody,” the hackers said in a message written in English.
After a meeting of the national security council on Tuesday, officials sought to play down the extent of the leak and the possible link to Russia.
“Three percent of the total NRA database was hit by the attack,” said Finance Minister Vladislav Goranov, referring to the National Revenue Agency that handles tax matters.
He ordered a probe into the cyberattack and said NRA operations were not at risk.
A NRA spokesman said they have discovered a breach of one of the agency’s databases, and while he said there are indications the attack came from outside the country, he declined to provide any further details.

More from AFP
- UK Minister Warns Meta Over End-to-End Encryption
- ‘Cybersecurity Incident’ Hits ICC
- China Says No Law Banning iPhone Use in Govt Agencies
- Spies, Hackers, Informants: How China Snoops on the West
- Meta Fights Sprawling Chinese ‘Spamouflage’ Operation
- Two Men Arrested Following Poland Railway Hacking
- UK Court Concludes Teenager Behind Huge Hacking Campaign
- Suspected N. Korean Hackers Target S. Korea-US Drills
Latest News
- Researchers Discover Attempt to Infect Leading Egyptian Opposition Politician With Predator Spyware
- In Other News: New Analysis of Snowden Files, Yubico Goes Public, Election Hacking
- China’s Offensive Cyber Operations in Africa Support Soft Power Efforts
- Air Canada Says Employee Information Accessed in Cyberattack
- BIND Updates Patch Two High-Severity DoS Vulnerabilities
- Faster Patching Pace Validates CISA’s KEV Catalog Initiative
- SANS Survey Shows Drop in 2023 ICS/OT Security Budgets
- Apple Patches 3 Zero-Days Likely Exploited by Spyware Vendor to Hack iPhones
