dw.com
Ukraine's Ministry of Digital Transformation Denies Data Breach from Diia Service
Ukraine's Ministry of Digital Transformation confirmed that recently publicized personal data files are not from the Diia government services platform, but a mix of previously leaked data from commercial sources, manually edited and supplemented with fake entries.
- What other sources or incidents have been implicated in the alleged data breach?
- A Member of Parliament cited a potential link to a January 2022 cyberattack on Diia and other government resources, resulting in a database allegedly containing 13.5 million Ukrainians' data. A smaller portion of this data appeared later in Telegram, and the current leak seems to be largely a subset of this earlier breach.
- What are the broader implications and future concerns regarding data security in Ukraine in light of these events?
- The incident highlights vulnerabilities within Ukraine's data infrastructure and the potential for re-use and manipulation of older leaks. The emphasis on Diia's data retrieval method contrasts with other incidents suggesting a need for increased oversight and security measures across various data-holding entities to prevent future breaches and misuse of sensitive information.
- What is the Ministry of Digital Transformation's response to recent reports of a massive personal data leak in Ukraine?
- The Ministry denies that the leaked data originated from the Diia service. They state the files are a compilation of older leaks from commercial sources, manipulated with fabricated entries to appear recent. Diia, they emphasize, does not store personal data; it retrieves information from state registries only upon request.
Cognitive Concepts
Framing Bias
The article presents a balanced view by including statements from the Ministry of Digital Transformation denying a data breach from the Diia service, as well as statements from other sources claiming a breach. The inclusion of both perspectives prevents a one-sided narrative, although the Ministry's denial is presented first, which might give it undue weight.
Language Bias
The language used is largely neutral, although phrases like "'black' market" carry a negative connotation. The article also uses the term 'alleged leak' in several places which implies uncertainty, a neutral stance.
Bias by Omission
While the article covers multiple perspectives, it could benefit from including information about the specific types of data allegedly leaked, the scale of the potential breach in verifiable numbers, and a timeline of events, possibly including the original alleged breaches mentioned.
Sustainable Development Goals
The article highlights a data breach involving personal information of Ukrainian citizens. This incident undermines trust in government institutions and digital services, hindering progress towards SDG 16 (Peace, Justice and Strong Institutions), which aims to promote peaceful and inclusive societies for sustainable development, provide access to justice for all and build effective, accountable and inclusive institutions at all levels. The breach compromises the security and privacy rights of individuals, directly contradicting SDG target 16.10, which calls for ensuring public access to information and protecting fundamental freedoms, in accordance with national legislation and international agreements.