Mintsifra denied data leakage of users of “Gosuslug”

The Ministry of Digital Development of Russia stated that information about the leakage of data from users of the Gosuslugi website is not true. The department noted that the credentials of portal users, including passwords and logins, were not compromised, and the information is securely protected. Information about the leak appeared in the Data1eaks Telegram channel.

“We refute the information about the data leakage from Gosuslug. A fragment of an alleged database of users of “Gosuslug”, containing 5 thousand records, appeared on the network. We checked this file and found out that it does not contain the set of parameters that are necessarily present in the standard Gosuslug accounts, ”the report says. Telegram channel ministries.

As the security service clarifies, the base distributed on the network refers to one of the external online systems that does not have access to the full set of data of the service’s customers. It is used only for simplified user identification through the “Gosuslugi”.

The Data1eaks post claimed that attackers gained access to keys and certificates that are used to access the Unified Identification and Authentication System (ESIA). The authors of the Telegram channel specified that the published data file contained 5,000 entries about Russians. Among the personal data that got into the network, there were allegedly full names, dates of birth, gender, TIN, SNILS, email addresses, phone numbers and other information.

Milena Kostereva