FB pixel

Russia investigates claims of biometric data leak

Authorities spot unauthorized access but say passport records safe
Russia investigates claims of biometric data leak
 

The Russian Ministry of Digital Transformation and the Federal Security Service of the Russian Federation (FSB) are investigating claims of a leak on Monday affecting biometric data from passports issued by the Federal State Autonomous Institution (FGAU) Voskhod Research.

According to Russian media company RBC, the Ministry has found no evidence of the leaked data yet, which was first reported by the publication and a Telegram channel called “Before everyone else. Well, almost.”

The information from RBC hints at a threat actor infiltrating the PVDN database, which Voskhod Research uses for processing personal data and biometrics and issuing electronic passports. The media firm adds that the hacker may have accessed “tens of percent of the passport database, which has been maintained since 2006.”

The allegedly stolen information pertains not only to Russian passports but also to some from citizens of Kazakhstan and Belarus.

Initial findings from the joint Ministry of Digital Transformation and the FSB claim that while they found no evidence of a leak, they did spot unauthorized access to the Voskhod Research internal network.

Further, the authorities state that even if threat actors had obtained access to the biometric data, the data was encrypted. Decryption keys are stored at a separate location from where the data was taken, in a facility owned by Goznak, a separate joint-stock company responsible for R&D and manufacturing security products.

Talking to RBC, Vladimir Arlazarov, CEO of Smart Engines, the company behind the development of Russia’s (and other countries’) passport technology, says there is a slight chance the alleged attacker could manage to decrypt the data.

This, the executive adds, could enable the creation of forged identities. Because of this, Arlazarov suggests potentially affected passport holders cancel their documents and apply for new ones.

The alleged leak and connected investigation come weeks after Russian authorities unveiled plans to award an 830 million-ruble (US$10.9 million) contract to create facial recognition stations on the country’s border.

Article Topics

 |   |   |   |   | 

Latest Biometrics News

 

Emerging biometrics markets draw a crowd

Biometrics startups and giant multinationals collide as each tries to navigate emerging markets in the most-read stories of the week…

 

Laxton to supply hundreds of biometric kits to Honduras under $1.9M UNDP contract

The United Nations Development Programme has selected Laxton to provide hundreds of Biometric Citizen Registration (BCR) kits for Honduras. The…

 

Leadership change at IBIA follows layoffs at Thales

A major leadership change has been kicked off at Thales Digital Identity & Security and the International Biometrics and Identity…

 

Reusable ID for AML acquired by global fintech as compliance costs rise

Global fintech platform iCapital has entered a definitive agreement to acquire U.S.-based Parallel Markets, which provides reusable identity tools for…

 

Services Australia to run Trust Exchange pilot with largest Australian bank

A pilot with Commonwealth Bank will test the Australian government’s digital identity exchange scheme, Trust Exchange (TEx), using digital medical…

 

COPPA changes specify children’s biometrics and government IDs for protection

The Federal Trade Commission (FTC) Thursday issued notice that it finalized substantial changes to the Children’s Online Privacy Protection Act…

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Most Viewed This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events