For over a month now, State institutions are not paying any attention to the break in the Council of Ministers database, while hackers drain social security numbers, phone numbers and email addresses of people with high positions of power, officials from the European institutions, senior officials from the National Security Agency and even foreign ambassadors.
Bivol got and verified this tipoff before the winter holidays and turned to the institutions with information on where and how the data is being drained and with recommendations how to secure the server.
A month later, there is still no reaction and the server of the Council of Ministers remains vulnerable.
This leak proves once again that the country has serious problems with information security and protection of personal information of citizens. A few years ago, the addresses of tens of thousands of Bulgarians leaving abroad were erroneously posted online. The Commission for Protection of Personal Information at first refused to deal with the case, but after intense media pressure fined the Foreign Ministry.
The State information infrastructure was massively attacked with DDoS during the elections last year and proved unprepared for this type of attack.
A checking with Bivol’s public procurement search engine shows that in the last five years Bulgarian ministries have spent over 31 million levs for “software“, more than 21 million levs for “hardware” and more than 8 million levs for “servers”.
This post is also available in: Bulgarian