Friday, May 9, 2025
HomeData BreachHacker Downloaded 286,000 ID Photos From Government Database

Hacker Downloaded 286,000 ID Photos From Government Database

Published on

SIEM as a Service

Follow Us on Google News

A local resident has been arrested on July 23, 2021, by Estonian officials, and as per the report, the officers of Estonia claimed that the suspect has used a vulnerability to obtain access to the state database.

Apart from this, the suspect has been also charged for uploading photos of 286,438 people from the accessed database. According to the officials of Estonia reports, this attack has been exposed due to a definite increment in the number of requests.

Hacker Abused RIA Database

The hacker has used a vulnerability to gain access to the database, and the officials have asserted that they have found a vulnerability in a database that is controlled by the Information System Authority (RIA).

- Advertisement - Google News

After the attack being exposed, RIA declared that its database normally went through with five different subsystems for examination, before retorting a query to demonstrate a user’s government ID photo.

Moreover, RIA declared that the hacker had provided the name of an Estonian citizen, to exploit the vulnerability, and not only this but it has also provided a correct identification code that convince them to give access to the database.

Incident’s Timeline

The officers of an Estonian has mentioned the incident’s timeline, and here they are given below:-

  • July 16 – SK ID Solutions notifies regarding the huge number of queries to RIA.
  • July 21 – RIA identifies the mass download of data from the Identity Documents Database (KMAIS) via extra monitoring and concludes the service.
  • July 22 – RIA follows the possible IP address applied to download the photos and forwards the data to the police.
  • July 22 – RIA starts an internal investigation to discover the reason how manipulation of the control mechanism of the image storage system was feasible.
  • July 23 – The police arrests the man speculated of downloading the data and executes the fundamental procedural acts.
  • July 23 – RIA reopens the attached image system that again enables people to download their document photos.
  • July 23-27 – RIA also examines the possibility of using a related attack vector in some other services.

Authorities Retrieved The Stolen ID Photos

Apart from this, the cybersecurity experts are not yet confirmed that the hacker has transferred the photos to another party or not, and therefore, the experts have conducted an investigation that will help them out to know the exact matter.

Moreover, the agency claimed that this attack was not severe enough, and now the experts are notifying the Estonian citizens regarding the attack through emails, and not only this, but the citizens don’t have to take new photos and change their IDs as well.

And the official of Estonian also pronounced that they will eventually notify each and every detail of the investigation accordingly to the citizens.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and hacking news updates.

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Fedora Linux Joins the Windows Subsystem for Linux Officially

Fedora Project has announced the official availability of Fedora Linux on the Windows Subsystem...

Microsoft Launches “Copilot+ PC” for an Upgraded Windows Experience

Microsoft has announced a significant wave of new Windows experiences designed for Copilot+ PCs,...

Nomad Bridge Hacker Apprehended in Connection with $190 Million Heist

Alexander Gurevich, a 47-year-old dual Russian-Israeli citizen, was arrested last Thursday at Ben-Gurion Airport...

160-Year-Old Haulage Firm Falls After Cyber-Attack: Director Issues Urgent Warning

The 160-year-old haulage giant Knights of Old, once a stalwart of the UK’s logistics...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

Nomad Bridge Hacker Apprehended in Connection with $190 Million Heist

Alexander Gurevich, a 47-year-old dual Russian-Israeli citizen, was arrested last Thursday at Ben-Gurion Airport...

LockBit Ransomware Group Breached: Internal Chats and Data Leaked Online

The notorious LockBit ransomware group, once considered one of the world’s most prolific cyber...

Healthcare Sector Becomes a Major Target for Cyber Attacks in 2025

The healthcare sector has emerged as a prime target for cyber attackers, driven by...