Data Breach Summary
On March 3, 2023, InsecureWeb discovered a data breach affecting the Ukrainian government’s website dmsu.gov.ua, resulting in the leak of 53 million Ukrainian citizenship records, includes personal information such as full name, date of birth, home address, and passport details. The stolen data, totaling 1.09 GB, was posted on the dark web marketplace Hydra Market by a user named Pavlov. This breach is the latest in a series of cybersecurity incidents that have plagued the Ukrainian government in recent years.
Where and How?
The breach was discovered on a dark web forum and was posted on Hydra Market, a popular dark web marketplace. The stolen data was obtained through a vulnerability in the dmsu.gov.ua website, which allowed the attacker to gain access to the citizenship database. A Screenshot of the data can be found below:
Company Data Breach History
This data breach is the latest in a series of cybersecurity incidents that have plagued the Ukrainian government in recent years. In 2017, the NotPetya ransomware attack affected government agencies and businesses in Ukraine, causing billions of dollars in damages. In 2018, the Ukrainian military detect a data breach that resulted in the leak of sensitive information about its operations in Eastern Ukraine. Ukrainian government’s website is working with cybersecurity experts to further investigate the incident and is taking steps to strengthen its security measures in order to prevent similar breaches from occurring in the future.
Recommendation for Users:
To protect your personal information and accounts, it is important to take proactive steps. Here are some practical recommendations:
- Change your passwords regularly and use strong and unique passwords for each account.
- Enable two-factor authentication wherever possible to add an extra layer of security.
- Monitor your accounts for any suspicious activity and report any unauthorized access immediately.
- Stay informed about the latest cybersecurity threats and best practices for protecting your personal information and accounts.
What is InsecureWeb?
InsecureWeb is a Dark Web monitoring service that keeps track of recent data breaches and tracks their impact by monitoring the darkest places of the internet. InsecureWeb notifies users and enterprises when their data has been found online and helps them mitigate the impact.