The records of more than 5 million Bulgarians—likely the majority of working adults in the country—were stolen by cybercriminals from Bulgaria’s tax revenue office. Personal data such as social security information, addresses, and names were exposed on the Internet and made easily accessible. Kristian Boykov, a 20-year-old cybersecurity expert accused of spearheading this incident, was released by police Wednesday, July 17, after his charges were downgraded. Boykov has denied the allegations. There is an ongoing investigation, still in its early stages, but some Bulgarian officials believe that Russia may be behind the attack.
Government databases contain a treasure trove of information that can be useful for years to come. While data breaches used to be led by sophisticated cybercriminals, nowadays, it doesn't take a carefully coordinated, highly skilled operation to break into IT systems, with information available on the deep and dark web making it possible for bad actors to cause massive damage. Identity Intelligence, however, allows organizations to delve deeper into identifying the adversary, understanding who is behind the attacks. In addition to anticipating attack styles and catching the warning signs as early as possible, it gives firms actionable information to assist in their own protection, as well to law enforcement to pursue legal prosecution of these cybercriminals.
Experts who examined the stolen data in Bulgaria said the hack wasn't a complicated operation, and that lack of preventative action from the government is to blame. Out-of-date computer systems are especially vulnerable to a breach. Less than a year ago, the country's Commercial Registry got taken down by another cyberattack.