A threat actor has allegedly put comprehensive access to the digital infrastructure of the Ministry of Foreign Affairs of Kyrgyzstan up for sale on a dark web forum. The Ministry is the central government body responsible for implementing the nation’s foreign policy, managing its diplomatic relations with other countries and international organizations. A compromise of this ministry could have significant implications for the nation’s security and its international standing, potentially exposing sensitive diplomatic communications and state secrets.
The seller claims to have obtained complete control over the ministry’s systems. The post, which appeared on a clandestine online marketplace, asserts that the access is extensive and provides a list of the compromised assets. The threat actor is advertising the sale to “only serious buyers,” suggesting an attempt to monetize the access for a significant sum. This incident highlights the persistent and evolving threats facing government institutions worldwide, where state-level data is a prime target for cybercriminals.
The allegedly compromised data includes access to the following:
- Personal mailboxes
- Mail servers
- Personal computers
- Databases
