Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

Bulgarian IT Specialist Held Over Taxpayer Data Hack

A 20-year-old Bulgarian cybercrime specialist has been arrested over a hack and leak of a trove of taxpayer data, which authorities had initially suspected was a Russia-linked cyberattack, an official said Wednesday.

A 20-year-old Bulgarian cybercrime specialist has been arrested over a hack and leak of a trove of taxpayer data, which authorities had initially suspected was a Russia-linked cyberattack, an official said Wednesday.

“The hack was carried out in Bulgaria, in Sofia, (allegedly) by a 20-year-old man,” anti-cybercrime unit head Yavor Kolev told bTV television.

The man, whose job it was to test large systems’ vulnerabilities to make sure they can withstand cyberattacks, was arrested at his workplace Tuesday.

His work and home were also searched, Kolev said, adding investigations were still going on, including into whether the man had any accomplices.

On Monday anonymous hackers sent several Bulgarian media outlets a link to tens of thousands of files with sensitive taxpayer information that they said came from a finance ministry server.

The email was sent from an address registered with the Russian internet provider Yandex, sparking speculation that the attack came from Russia.

Interior Minister Mladen Marinov linked it to Bulgaria’s recent decision to buy eight F-16 fighters from the US to replace its ageing fleet of Soviet MiG-29 aircraft.

But Kolev said Wednesday that the email’s claim had turned out to be unfounded — no link could be made between the email and the hack — and that more messages claiming responsibility could be expected.

According to local media, the leaked documents came from a government database and included personal identification numbers and income figures belonging to over one million people and legal entities.

The hackers claimed they had another 10 gigabytes of similar data and that in total there is information on as many as five million people.

Written By

AFP 2023

Click to comment

Expert Insights

Related Content

Cybercrime

Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Cybercrime

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Cybercrime

A new study by McAfee and the Center for Strategic and International Studies (CSIS) named a staggering figure as the true annual cost of...

Cybercrime

The FBI dismantled the network of the prolific Hive ransomware gang and seized infrastructure in Los Angeles that was used for the operation.

Cybercrime

Video games developer Riot Games says source code was stolen from its development environment in a ransomware attack

Cybercrime

Artificial intelligence is competing in another endeavor once limited to humans — creating propaganda and disinformation.

Cybercrime

CISA, NSA, and MS-ISAC issued an alert on the malicious use of RMM software to steal money from bank accounts.

Cybercrime

Chinese threat actor DragonSpark has been using the SparkRAT open source backdoor in attacks targeting East Asian organizations.