{"id":380,"date":"2025-09-21T10:36:57","date_gmt":"2025-09-21T07:36:57","guid":{"rendered":"https:\/\/ukrmedia.news\/?p=380"},"modified":"2025-09-21T10:36:57","modified_gmt":"2025-09-21T07:36:57","slug":"a-file-with-data-of-20-million-ukrainians-has-been-discovered","status":"publish","type":"post","link":"https:\/\/ukrmedia.news\/en\/science-tech\/a-file-with-data-of-20-million-ukrainians-has-been-discovered\/","title":{"rendered":"File with data of 20 million Ukrainians appeared on the Internet - MP Fediyenko"},"content":{"rendered":"<h2 data-start=\"0\" data-end=\"72\">A file with the data of 20 million Ukrainians was leaked on the Internet.<\/h2>\n<ul data-start=\"85\" data-end=\"893\">\n<li data-start=\"85\" data-end=\"284\">\n<p data-start=\"87\" data-end=\"284\">People's Deputy <strong data-start=\"104\" data-end=\"126\">Alexander Fedienko<\/strong> reported the discovery of a file\/archive with personal data in the public domain of about <strong data-start=\"216\" data-end=\"226\">20 million<\/strong> citizens of Ukraine.<\/p>\n<\/li>\n<li data-start=\"285\" data-end=\"569\">\n<p data-start=\"287\" data-end=\"569\">This is an archive that appears online as <strong data-start=\"331\" data-end=\"359\"><code data-start=\"333\" data-end=\"357\">diia_users_db_2025.zip<\/code><\/strong>; According to the MP, this is a consolidated sample from various sources, not just from public services. A part of the array is allegedly published as a \u00absample\u00bb, the full volume is offered for purchase.<\/p>\n<\/li>\n<li data-start=\"570\" data-end=\"893\">\n<p data-start=\"572\" data-end=\"893\">The database, as described in the media, may contain <strong data-start=\"612\" data-end=\"658\">Full name, mobile numbers, e-mail, place of work<\/strong> and other fields; among the records are people who <strong data-start=\"699\" data-end=\"733\">have never used Diia\u00ab<\/strong>, which indicates a compilation from different registers\/sources. Official confirmation of the scale from the state authorities is still awaited.<\/p>\n<\/li>\n<\/ul>\n<hr data-start=\"895\" data-end=\"898\" \/>\n<h2 data-start=\"900\" data-end=\"913\">What happened<\/h2>\n<p data-start=\"914\" data-end=\"1251\">Fediyenko wrote about the possible leak on social media in the morning <strong data-start=\"970\" data-end=\"994\">21 September 2025<\/strong>. A number of Ukrainian media outlets reported that reports of the sale of the array with the \u00abexample\u00bb in the public domain appeared on the darknet\/on thematic forums. The media emphasise that the exact origin of the set has not been established.<\/p>\n<hr data-start=\"1253\" data-end=\"1256\" \/>\n<h2 data-start=\"1258\" data-end=\"1280\">What you need to know about the content<\/h2>\n<p data-start=\"1281\" data-end=\"1360\">According to media publications and the MP, the array contains at least the following fields:<\/p>\n<ul data-start=\"1361\" data-end=\"1507\">\n<li data-start=\"1361\" data-end=\"1373\">\n<p data-start=\"1363\" data-end=\"1373\"><strong data-start=\"1363\" data-end=\"1370\">NAME<\/strong>;<\/p>\n<\/li>\n<li data-start=\"1374\" data-end=\"1390\">\n<p data-start=\"1376\" data-end=\"1390\"><strong data-start=\"1376\" data-end=\"1387\">telephone<\/strong>;<\/p>\n<\/li>\n<li data-start=\"1391\" data-end=\"1406\">\n<p data-start=\"1393\" data-end=\"1406\"><strong data-start=\"1393\" data-end=\"1403\">e-mail<\/strong>;<\/p>\n<\/li>\n<li data-start=\"1407\" data-end=\"1507\">\n<p data-start=\"1409\" data-end=\"1507\">sometimes <strong data-start=\"1416\" data-end=\"1439\">place of work\/position<\/strong> and other reference information.<\/p>\n<\/li>\n<\/ul>\n<p data-start=\"1509\" data-end=\"1761\">Fediyenko also emphasised that <strong data-start=\"1538\" data-end=\"1612\">much of this information could have been previously available in open sources<\/strong> (state registers, leaks from commercial databases), but now they are <strong data-start=\"1667\" data-end=\"1691\">collected in one array<\/strong>, This increases the risk of abuse.<\/p>\n<hr data-start=\"1763\" data-end=\"1766\" \/>\n<h2 data-start=\"1768\" data-end=\"1795\">Is it related to Diia?\u00ab<\/h2>\n<p data-start=\"1796\" data-end=\"2130\">The file name contains the word <em data-start=\"1822\" data-end=\"1828\">diia<\/em>, However, Fediyenko argues that <strong data-start=\"1859\" data-end=\"1928\">the array contains data from people who have never used the Diia app\u00ab<\/strong>, So it's more about <strong data-start=\"1952\" data-end=\"1978\">compilation from various sources<\/strong>, and not a single hack of a particular service. As of the time of publication, there are no official conclusions of the cyber authorities.<\/p>\n<hr data-start=\"2132\" data-end=\"2135\" \/>\n<h2 data-start=\"2137\" data-end=\"2146\">Risks<\/h2>\n<p data-start=\"2147\" data-end=\"2223\">Having a large consolidated file with contacts makes it easier for attackers:<\/p>\n<ul data-start=\"2224\" data-end=\"2522\">\n<li data-start=\"2224\" data-end=\"2290\">\n<p data-start=\"2226\" data-end=\"2290\"><strong data-start=\"2226\" data-end=\"2236\">phishing<\/strong> (emails\/SMS\/calls to extort codes and passwords),<\/p>\n<\/li>\n<li data-start=\"2291\" data-end=\"2329\">\n<p data-start=\"2293\" data-end=\"2329\"><strong data-start=\"2293\" data-end=\"2309\">SIM-swapping<\/strong> \/ SIM reissue,<\/p>\n<\/li>\n<li data-start=\"2330\" data-end=\"2400\">\n<p data-start=\"2332\" data-end=\"2400\">Targeted fraudulent calls (\u00abemployees of a bank\/government agency\u00bb),<\/p>\n<\/li>\n<li data-start=\"2401\" data-end=\"2522\">\n<p data-start=\"2403\" data-end=\"2522\">attempts <strong data-start=\"2410\" data-end=\"2429\">taking out loans<\/strong> or access to accounts if additional data is available.<\/p>\n<\/li>\n<\/ul>\n<hr data-start=\"2524\" data-end=\"2527\" \/>\n<h2 data-start=\"2529\" data-end=\"2555\">What experts and the media advise<\/h2>\n<ul data-start=\"2556\" data-end=\"2942\">\n<li data-start=\"2556\" data-end=\"2637\">\n<p data-start=\"2558\" data-end=\"2637\"><strong data-start=\"2558\" data-end=\"2576\">Change passwords<\/strong> to mail and important services, do not repeat the same password.<\/p>\n<\/li>\n<li data-start=\"2638\" data-end=\"2708\">\n<p data-start=\"2640\" data-end=\"2708\"><strong data-start=\"2640\" data-end=\"2657\">Enable 2FA<\/strong> (two-factor authentication) wherever possible.<\/p>\n<\/li>\n<li data-start=\"2709\" data-end=\"2812\">\n<p data-start=\"2711\" data-end=\"2812\">Check <strong data-start=\"2722\" data-end=\"2758\">bank notifications\/subscriptions<\/strong>, Be attentive to calls \u00abfrom the bank\/state services\u00bb.<\/p>\n<\/li>\n<li data-start=\"2813\" data-end=\"2942\">\n<p data-start=\"2815\" data-end=\"2942\">Do not follow links from suspicious SMS\/emails, do not report <strong data-start=\"2884\" data-end=\"2903\">one-time codes<\/strong>.<\/p>\n<\/li>\n<\/ul>\n<hr data-start=\"2944\" data-end=\"2947\" \/>\n<h2 data-start=\"2949\" data-end=\"2959\">What's next<\/h2>\n<p data-start=\"2960\" data-end=\"3220\">We are waiting for comments and verification of the incident from the relevant authorities (State Service of Special Communications and Information Protection, CERT-UA). The editorial team will follow the reports and update the material after the official information on the origin and scale of the array becomes available.<\/p>\n<hr data-start=\"3222\" data-end=\"3225\" \/>\n<h3 data-start=\"3227\" data-end=\"3238\">Sources.<\/h3>\n<p data-start=\"3239\" data-end=\"3326\">UNN; Ministry of Finance; Focus; Obozrevatel; Today.ua; TSN.<\/p>","protected":false},"excerpt":{"rendered":"<p>\u0424\u0430\u0439\u043b \u0456\u0437 \u0434\u0430\u043d\u0438\u043c\u0438 20 \u043c\u043b\u043d \u0443\u043a\u0440\u0430\u0457\u043d\u0446\u0456\u0432 \u0437\u043b\u0438\u043b\u0438 \u0432 \u0456\u043d\u0442\u0435\u0440\u043d\u0435\u0442. \u041d\u0430\u0440\u043e\u0434\u043d\u0438\u0439 \u0434\u0435\u043f\u0443\u0442\u0430\u0442 \u041e\u043b\u0435\u043a\u0441\u0430\u043d\u0434\u0440 \u0424\u0435\u0434\u0456\u0454\u043d\u043a\u043e \u043f\u043e\u0432\u0456\u0434\u043e\u043c\u0438\u0432 \u043f\u0440\u043e \u0432\u0438\u044f\u0432\u043b\u0435\u043d\u043d\u044f \u0443 \u0432\u0456\u0434\u043a\u0440\u0438\u0442\u043e\u043c\u0443 \u0434\u043e\u0441\u0442\u0443\u043f\u0456 \u0444\u0430\u0439\u043b\u0443\/\u0430\u0440\u0445\u0456\u0432\u0443 \u0437 \u043f\u0435\u0440\u0441\u043e\u043d\u0430\u043b\u044c\u043d\u0438\u043c\u0438 \u0434\u0430\u043d\u0438\u043c\u0438 \u0431\u043b\u0438\u0437\u044c\u043a\u043e 20 \u043c\u043b\u043d \u0433\u0440\u043e\u043c\u0430\u0434\u044f\u043d \u0423\u043a\u0440\u0430\u0457\u043d\u0438. \u0406\u0434\u0435\u0442\u044c\u0441\u044f \u043f\u0440\u043e \u0430\u0440\u0445\u0456\u0432, \u044f\u043a\u0438\u0439 \u0443 \u043c\u0435\u0440\u0435\u0436\u0456 \u0444\u0456\u0433\u0443\u0440\u0443\u0454 \u044f\u043a diia_users_db_2025.zip; \u0437\u0430 \u0441\u043b\u043e\u0432\u0430\u043c\u0438 \u0434\u0435\u043f\u0443\u0442\u0430\u0442\u0430, \u0446\u0435 \u0437\u0432\u0435\u0434\u0435\u043d\u0430 \u0432\u0438\u0431\u0456\u0440\u043a\u0430 \u0437 \u0440\u0456\u0437\u043d\u0438\u0445 \u0434\u0436\u0435\u0440\u0435\u043b, \u0430 \u043d\u0435 \u043b\u0438\u0448\u0435 \u0437 \u0434\u0435\u0440\u0436\u0430\u0432\u043d\u0438\u0445 \u0441\u0435\u0440\u0432\u0456\u0441\u0456\u0432. \u0427\u0430\u0441\u0442\u0438\u043d\u0430 \u043c\u0430\u0441\u0438\u0432\u0443 \u043d\u0456\u0431\u0438\u0442\u043e [\u2026]<\/p>\n","protected":false},"author":207433346,"featured_media":381,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"rank_math_title":"","rank_math_description":"","rank_math_focus_keyword":"\u0432\u0438\u0442\u0456\u043a \u043f\u0435\u0440\u0441\u043e\u043d\u0430\u043b\u044c\u043d\u0438\u0445 \u0434\u0430\u043d\u0438\u0445 \u0443\u043a\u0440\u0430\u0457\u043d\u0446\u0456\u0432,\u0424\u0435\u0434\u0456\u0454\u043d\u043a\u043e \u043f\u0440\u043e \u0432\u0438\u0442\u0456\u043a \u0434\u0430\u043d\u0438\u0445","td_subtitle":"","subtitle":"","footnotes":""},"categories":[805620,805616],"tags":[],"class_list":{"0":"post-380","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-science-tech","8":"category-main-news"},"_links":{"self":[{"href":"https:\/\/ukrmedia.news\/en\/wp-json\/wp\/v2\/posts\/380","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ukrmedia.news\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ukrmedia.news\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ukrmedia.news\/en\/wp-json\/wp\/v2\/users\/207433346"}],"replies":[{"embeddable":true,"href":"https:\/\/ukrmedia.news\/en\/wp-json\/wp\/v2\/comments?post=380"}],"version-history":[{"count":1,"href":"https:\/\/ukrmedia.news\/en\/wp-json\/wp\/v2\/posts\/380\/revisions"}],"predecessor-version":[{"id":382,"href":"https:\/\/ukrmedia.news\/en\/wp-json\/wp\/v2\/posts\/380\/revisions\/382"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ukrmedia.news\/en\/wp-json\/wp\/v2\/media\/381"}],"wp:attachment":[{"href":"https:\/\/ukrmedia.news\/en\/wp-json\/wp\/v2\/media?parent=380"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ukrmedia.news\/en\/wp-json\/wp\/v2\/categories?post=380"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ukrmedia.news\/en\/wp-json\/wp\/v2\/tags?post=380"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}