A hacker has claimed to be promoting the non-public information of 1 billion Chinese language nationals leaked from a Shanghai police database, in line with a submit by person “ChinaDan” on the hacker discussion board Breach Boards that was extensively shared on Telegram.
If the declare is true, the info leak could be one of many greatest in historical past, Reuters cited tech consultants as saying.
“In 2022, the Shanghai Nationwide Police (SHGA) database was leaked. This database incorporates many TB of knowledge and data on Billions of Chinese language citizen,” the submit mentioned.
“Databases comprise data on 1 Billion Chinese language nationwide residents and a number of other billion case information, together with: title, tackle, birthplace, nationwide ID quantity, cell quantity, all crime/case particulars.”
The submit had sparked widespread dialogue on China’s tightly managed social media platforms, and censors had blocked the hashtag #dataleak from Weibo by Sunday afternoon, the company mentioned.
The information breach was additionally referenced by rights activist Fu Xianyi on Twitter, who mentioned the leak was from the “Shanghai public safety database,” which means the police.
Cryptocurrency enterprise founder Zhao Changpeng additionally referred to a knowledge leak involving one billion individuals’s private particulars in an Asian nation being up on the market on the darkish internet.
A web based safety knowledgeable who gave solely the surname Chang mentioned he believed the studies have been real, as he had recognized of the database’s vulnerability earlier than the report emerged.
“The knowledge popping out now could be true,” Chang mentioned.
“There’s a excessive chance that it was leaked final 12 months however is just now being bought,” he informed RFA. “The Shanghai authorities are investigating Gong Daoan, a police chief who was fired final 12 months, so maybe it is associated.”
“Most definitely it was leaked from Alibaba Cloud.”
Main information dump
Chang mentioned the info was linked to host oss-cn-shanghai-shga-d01-a.ops.ga.sh, which is a Shanghai police native space community (LAN) that’s bodily remoted from the web, utilizing personal providers from Alibaba Cloud.
The breach is probably going the largest to hit China since Communist Get together (CCP) rule started in 1949.
“The information is linked to at least one billion individuals, with the whole lot there,” Chang mentioned. “I noticed on Twitter that some individuals have already began analyzing the inhabitants decline, telecom fraud or different analysis based mostly on the info.”
“Lots of people have downloaded some a part of it.”
The information dump reportedly contains ID card and cellphone numbers, cost information for on-line purchases together with groceries, ticket gross sales and resort bookings, in addition to particulars of age and gender.
Present affairs commentator Li Ang mentioned the info dump is extremely delicate, coming because it does forward of the CCP’s twentieth Nationwide Congress later this 12 months, at which CCP chief Xi Jinping is predicted to hunt an unprecedented third time period in workplace.
“This is not some common hacker; they should have used very high-tech means to get this information, and to publish it,” Li informed RFA. “I do not assume that is an accident.”
“The particular person was already holding this information, they usually have chosen this time to publish it,” he mentioned.
China has but to touch upon the estimated 24TB of knowledge concerned within the leak, and lots of on-line feedback mentioned the federal government was unlikely to reply, for concern of encouraging extra individuals to strive acquiring information.
Translated and edited by Luisetta Mudie.