Leaks of millions of citizens data, attacks by hackers, hourly calls from fraudsters – these are just some of the threats which have faced Kazakhstan over the past few months. Following the resignation – or dismissal depending on which source one believes – of the head of the Ministry of Digital Development, Innovation and the Aerospace Industry, Bagdat Mussin, many wonder whether the authorities will be able to secure Kazakhstan’s internet. The Times of Central Asia investigates.
On May 9, AlmaTV, Kazakhstan’s largest internet and cable TV provider, suffered an attack by hackers which caused disruption to its’ services. “According to data received… the cause of the disruption was a large-scale and multi-level cyberattack,” AlmaTV stated. The outage solely affected internet broadcasting, whilst analog, digital and satellite TV services were working normally.
According to numerous sources, the broadcast of the Victory Day military parade in Moscow was interrupted by footage of an anti-Russian nature, alleged torture, and other explicit content. Officials in Kazakhstan have yet to commented.
This is not the first scandal in the sphere of cybersecurity. In March of this year, the State Technical Service JSC discovered that personal data pertaining to over two million clients of the microfinance organization, zaimer.kz (MFO Robocash.kz LLP), had been compromised. Warnings about the leak were also received by people who had never used the company’s services. In the opinion of many analysts, the reaction of the Ministry of Digital Development, Innovations and the Aerospace Industry was extremely late in coming, extremely vague, and in no way reassured Kazakhstanis about the safety of their private information. Mussin was accused of making excuses, poor-quality communication, failing to answer questions, and “babble talk.”
In addition, back in February, foreign media, in particular CyberNews, reported that in leaked Chinese Government documents, data belonging to residents of Kazakhstan was found. The documents were related to spyware developed by the Chinese information security company, iSoon, and targeted social media platforms, telecommunications companies, and other such organizations.
Allegedly, unknown assailants have posted a huge number of PRC government documents on GitHub. The information circulated also revealed sensitive data pertaining to several telecom operators in Kazakhstan.
Also in February, a shocking statement by the Center for Analysis and Investigation of Cyberattacks (TSARKA) appeared, according to which a Chinese hacker group controlled the critical facets within Kazakhstan’s IT infrastructure for almost two years. “On February 16, 2024, unknown persons published on the GitHub resource a leak of secret data from the Chinese company iSoon (aka Anxun), one of the contractors of the Chinese Ministry of Public Security (MPS). It is reported to be associated with Chengdu 404, a structure controlled by Chinese cyber intelligence known as APT41,” TSARKA said.
“The attackers’ goal was both general information, such as databases, and targeted information of specific individuals: control of correspondence, calls and movement. Data analysis showed that the volume of stolen information is measured in terabytes.”
The hackers managed to gain control over the event logs, call durations, IMEIs of devices, and call billing details of the operators. Additionally, they exposed user data from local internet providers IDNET and IDTV, alongside information from the Unified Savings Pension Fund and Air Astana.
“This is just the tip of the iceberg,” TSARKA stated. “No one knows how many undetected hackers and leaks of our data there are.” The Ministry of Digital Development said the National Security Committee has now joined the probe.
Stories about the leaks of personal information of can be found on news feeds almost daily, which causes justifiable indignation among citizens, Majilis Deputy, Ekaterina Smyshlyayeva commented. “It is alarming how the quality of information, and the degree of confidentiality is changing. If earlier it was about addresses and phone numbers, today, medical data, banking information, i.e., information that is secret are leaked using the same schemes. At the same time, the legislative basis of information protection in our country complies with international standards,” Smyshlyayeva explained to a parliamentary inquiry.
“Given the introduction of state control, the volume of work will increase many times over. At the same time, the participation of state bodies in the protection of their own data and even secrets cannot be called fully-fledged. This is a serious problem, because correct laws with weak implementation do not guarantee protection, and their presence creates a dangerous illusion of order,” the deputy added. Smyshlyayeva proposed that the number of staff working in authorized bodies for personal data protection be increased, or services be redistributed, possibly with their transfer to a competitive environment to accredited organizations in the field of information security.
Following Mussin’s ousting, on May 6 Zhaslan Madiyev was named as the new Minister of Digital Development, Innovation and the Aerospace Industry. However, threats from foreign fraudsters and hackers continue to multiply at an alarming rate. So far, only one major operation to catch fraudsters has been carried out, and law enforcers simply do not have time to block calls. Thus, the number of threats in Kazakhstan’s information sphere continue to grow.
As previously reported by TCA, over an eight-day period in April 2024 alone, a deluge of stories containing rumors about Kazakhstan’s foreign policy permeated regional media. These included accounts claiming that the U.S. was hyping an alleged voice recording of a Russian official claiming that Kazakhstan is Russia’s next target; that Kazakhstan is in covert discussions to join NATO; and that Kazakhstan is seeking security guarantees from China to counterbalance the Russian threat. As noted in a U.S. Department of Homeland Security Threat Assessment, a story claiming that the United States is “running a lab in Kazakhstan to create biological weapons for use against China” has also been circulating for some time.
