A contractor company of the Ministry of Public Security of the People’s Republic of China (special services, whose functions, in particular, include intelligence and counterintelligence) has been collecting personal data of Kazakhstanis for two years. This is stated in internal documents of the Shanghai-based company iSoon (or Anxun Information Technology), which works in the field of cybersecurity. On February 16, 2024, an archive of these documents was posted on GitHub by an anonymous user.

The published files show that Chinese intelligence was strongly interested in the largest Kazakh telecom operators Beeline, Kcell, Tele2 and Kazakhtelecom JSC, as well as the Unified National Pension Fund of Kazakhstan (UAPF). In total, more than 2.8 terabytes of data “leaked” from the country, and Chinese hackers had access to it from 2019 to 2021. The archive on GitHub contains, in particular, details of calls of some subscribers, logins and passwords of Kazakhtelecom users, and passport data of Tele2 subscribers.

In addition, the archive contains descriptions of software used by hackers, DDoS services, user de-anonymization systems, and methods of penetrating and obtaining information. There is also a list of intelligence sources, which mentions the police, the Ministry of Foreign Affairs and mobile operators of Mongolia, Thai government agencies, the Indian Border Guard Service, and even the French University Sciences po. There is a thread from every house – and a scroll for Chinese intelligence officers.

Літературний редактор.

Commentary