<div dir="ltr"><div><a href="https://www.riskbasedsecurity.com/2016/04/deja-vu-data-leaks/">https://www.riskbasedsecurity.com/2016/04/deja-vu-data-leaks/</a><br><br></div>Recycled Turkish Citizenship Database Re-leaked, Again<br><div class="">
<p><span style="font-weight:400">On June 4th, 2016, </span><a href="http://abcnews.go.com/Technology/wireStory/data-50-million-turks-allegedly-leaked-online-38142865" target="_blank"><span style="font-weight:400">there were new reports that the personal details of nearly 50 Million Turkish citizens</span></a><span style="font-weight:400"> had been compromised and posted online in a massive security breach. The news appears to be </span><a href="https://twitter.com/dchest/status/716934572949299200" target="_blank"><span style="font-weight:400">triggered from a Tweet</span></a><span style="font-weight:400"> that received quite a bit of attention:</span></p>
<p><img class="" src="https://www.riskbasedsecurity.com/wp-content/uploads/2016/04/Turkey-1-Database-Leaked.png" alt="Turkey 1 - Database Leaked" height="399" width="611"></p>
<p><span style="font-weight:400">A leaked database containing 49,611,709 records (about 6.6 GB of data), </span><a href="http://thehackernews.com/2016/04/personal-data-leaked.html?m=1" target="_blank"><span style="font-weight:400">was reported to have appeared on the website of an Icelandic group offering download links to anyone interested.</span></a><span style="font-weight:400"> The leaked database was reported to contains the following information:</span></p>
<ul><li style="font-weight:400"><span style="font-weight:400">First and last names</span></li><li style="font-weight:400"><span style="font-weight:400">National identifier numbers (TC Kimlik No)</span></li><li style="font-weight:400"><span style="font-weight:400">Gender</span></li><li style="font-weight:400"><span style="font-weight:400">City of birth</span></li><li style="font-weight:400"><span style="font-weight:400">Date of birth</span></li><li style="font-weight:400"><span style="font-weight:400">Full address</span></li><li style="font-weight:400"><span style="font-weight:400">ID registration city and district</span></li><li style="font-weight:400"><span style="font-weight:400">User’s mother and Father’s first names</span></li></ul>
<p><span style="font-weight:400">Well-known security researcher </span><a href="https://twitter.com/ioerror/status/716943530892111874" target="_blank"><span style="font-weight:400">Jacob Applebaum tweeted</span></a><span style="font-weight:400"> shortly afterwards, that if it is what it claims to be, he thought it was one of the largest security/PII breaches </span><a href="http://www.eweek.com/security/opm-says-far-more-fingerprint-data-stolen-than-first-reported.html" target="_blank"><span style="font-weight:400">since the large OPM breach.</span></a><span style="font-weight:400"> His tweet received quite a bit of attention as well.</span></p>
<p><img class="" src="https://www.riskbasedsecurity.com/wp-content/uploads/2016/04/Turkey-2-Applebaum.png" alt="Turkey 2 - Applebaum" height="461" width="620"></p>
<p><a href="https://www.riskbasedsecurity.com/2015-data-breach-quickview/" target="_blank"><span style="font-weight:400">With a record setting year in 2015</span></a><span style="font-weight:400">,
and so many data breaches occurring every day, it can be extremely
difficult to keep up with the ever changing data breach landscape, and
what it means for organizations. For those that pay attention to the
daily ebb and flow of breach activity, you were likely yelling at your
screen at the beginning of this blog shouting that this leak is clearly a
duplicate. Or at the very least, thinking to yourself this sounds very,
very familiar.</span></p>
<p><span style="font-weight:400">This data, while legitimate, </span><a href="https://twitter.com/CthulhuSec/status/699247420803309569" target="_blank"><span style="font-weight:400">has been leaked before</span></a><span style="font-weight:400">! More concerning, it was even </span><a href="https://www.reddit.com/r/worldnews/comments/4dc0wv/the_entire_turkish_citizenship_database_has/" target="_blank"><span style="font-weight:400">leaked before that! </span></a></p>
<p><span style="font-weight:400">Oh… and one more time </span><a href="http://www.hurriyet.com.tr/tum-bilgileriniz-su-anda-satiliyor-olabilir-15430731" target="_blank"><span style="font-weight:400">before that!</span></a></p>
<p><img class="" src="https://www.riskbasedsecurity.com/wp-content/uploads/2016/04/Turkey-3-Cthulhu.png" alt="Turkey 3 - Cthulhu" height="633" width="459"></p>
<p><span style="font-weight:400">Turkish press reports came to light
as early as January, 2015 claiming that governmental databases
containing this very same information had been compromised. </span><a href="http://www.dailydot.com/politics/turkey-data-dump-cthulu-police/" target="_blank"><span style="font-weight:400">According to The Daily Dot</span></a><span style="font-weight:400">, the leaked database files are actually from 2009, and their public existence has been known since 2010. </span></p>
<p><span style="font-weight:400">What’s more, the data is… well, dated, with the </span><a href="https://twitter.com/erenturkay/status/716958238999191553" target="_blank"><span style="font-weight:400">most recent information coming in 2008.</span></a></p>
<p><img class="" src="https://www.riskbasedsecurity.com/wp-content/uploads/2016/04/Turkey-4-2008.png" alt="Turkey 4 - 2008" height="259" width="610"></p>
<p>If for some reason you are interested in seeing the Turkey re-leaked data, a <a href="https://thanksgiving.who.ec/" target="_blank">new site just was published that is a searchable database</a> of the “leaked” information. But remember, it isn’t that uncommon to find voter information online as we have <a href="http://eci.nic.in/eci_main1/Linkto_erollpdf.aspx" target="_blank">seen with Indian voters previously.</a></p>
<p><span style="font-weight:400">While there is no </span><b>real</b><span style="font-weight:400">
new news here, this is just one example of the numerous data leaks that
are really re-leaks or all together just not valid. But don’t worry!
There will be plenty more leaks to report on shortly and </span><a href="https://panamapapers.icij.org/20160403-panama-papers-global-overview.html" target="_blank"><span style="font-weight:400">you of course have the Panama Papers to be reading</span></a><span style="font-weight:400"> as well!</span></p>
</div><br clear="all"><div><div><div class="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><br></div></div></div></div></div></div></div></div></div>
</div></div>