Esia

In December 2022 threat actors from Dumpforums published data allegedly stolen from the Russian Unified Identification and Authentication System known as ESIA which powers the Gosuslugi public services portal. The breach reportedly originated from a misconfigured or compromised infrastructure. While hackers claimed to possess over 100 million records the public release contained approximately 2.5 million lines of sensitive personal information. The data includes full names dates of birth insurance numbers residential addresses email addresses mobile phone numbers and passport details. This incident represents a significant privacy risk for citizens due to the high sensitivity of government issued identifiers.