An unknown hacker announced that he “successfully broke into the internal systems of the Cyber Security Center” of Uzbekistan and published the personal information of 100 employees. He estimated the cost of his even more confidential information at $200,000.
On April 27, personal information of the employees of the Cyber Security Center of Uzbekistan was put up for sale on the platform of cybercriminals and hackers.
According to the announcement that Kun.uz got acquainted with, the hacker put the data up for sale “Successfully penetrated the internal systems of the Cyber Security Center” and “gained access to the databases of State Security Service (SSS) and intelligence officersclaimed.
As a proof of his words, he publicly published the personal data of 100 employees working at the Cyber Security Center. Among them name and surname of employees, position in the company and JShSIR numbers there is. The hacker published the JShIR numbers in an incomplete form, which the employees described as “extremely useful information”.
According to the hacker, the information obtained directly from the internal database, in particular the complete list of employees of the Cyber Security Center, is “quite large”. It also contains information that is “much more confidential” than has been made public.
The hacker said that if the Uzbek authorities want to “stop the full disclosure” of the information, that their price is 200 thousand dollars said “Otherwise, new information will be leaked very soon, and this will have very bad consequences for them,” said the announcement written in English and Russian.
The Cyber Security Center said it was not attacked
The Cyber Security Center commented on the situation, and according to the results of preliminary studies, that “this distributed information does not correspond to the truth”. informed.
“It should be noted that the internal information systems of the Cyber Security Center have not been breached and such a database is not used.” called DUK in an official statement.
Spokesman of the center, Dilshod Torayev, who spoke to the Kun.uz reporter, confirmed that the personal information posted by the hacker actually belongs to the employees. He said that the name and surname of the employees and their working position on the official website there is also However, the JSHSIR number of the employees posted by the hacker was not obtained as a result of the hacking of the systems at the Cyber Security Center.
“It seems that this information is quite old. Maybe there was an attack on the data of our employees on another server. We are now continuing to investigate possible sources of leaks one by one. However, this is not hacking into the Cyber Security Center’s systems,” said Dilshod Torayev in an interview with a Kun.uz reporter.
Also, the center in its denial of the Law “On Information”. Article 12-1 He mentioned part 2. According to him, “the owner of a website or an internet page … must check the correctness of the information that can be freely used by everyone before placing it on the website or internet page, … if it is found to be incorrect, it must be deleted immediately”.
The Cybersecurity Center said it would make public any new information about the situation.
Why and how is data stolen?
Information on such forums is mostly obtained by hacking groups or independent cybercriminals.
They often enter the internal network through technical errors on the servers of government agencies or organizations. Or they can steal their logins and passwords by sending fake links to responsible employees.
The worst-case scenario is an insider – a paid partner who works within the organization and has access to information.
Extorting large ransoms for data is a classic cyber-blackmail technique used by hackers. According to experts, states usually do not pay in such cases. Because payment does not guarantee that information will not be published later or resold.
If someone agrees to buy sensitive information, the sales negotiations and process will be strictly confidential. Hackers use cryptocurrencies such as Monero (XMR) and Bitcoin, which are almost impossible to trace, to withdraw funds.
A growing trend in Uzbekistan
Stealing large amounts of data, breaking into data centers has increased in recent years in the online borders of Uzbekistan.
In particular, in February of this year, on the Reddit platform, personal information of citizens in the state information systems of Uzbekistan was leaked on the darknet. news spread. Later, the Statistics Agency said it was unrelated to the population and agricultural census data.
On February 12, the Minister of Digital Technologies, Sherzod Shermatov, commented on this issue, saying that in January, three offices of the government of Uzbekistan were subjected to a cyber attack. confirmed that he met. He said that in that attack, not 15 million, but about 60,000 personal data were stolen.
In December 2025, experts from TechCrunch reported that due to a cyber security flaw, hundreds of cameras of traffic accidents, human face and license plate tracking systems in Uzbekistan were on the Internet. that it is left open wrote about The MIA Road Safety Service said that these cameras are in test mode and that personal information has been disclosed refused.
An unprecedented cyber attack in October 2023 in which the login passwords and personal information of more than 200,000 citizens of Uzbekistan was leaked happened. At that time, login passwords of Uzbek users – OneID, DTM, sites of many state and educational organizations, search and payment systems were released to the open Internet.
The Center for Cyber Security is aware that this poses real cyber threats to the security of information systems emphasized. But they were said not to have been taken from the same system, but data that hackers had collected from unlicensed software or technical glitches.
