On March 5, 2024, the State Technical Service (STS) discovered a leak of over two million personal data records of Kazakhstani clients of the microfinance organization zaimer.kz (LLP "MFO "Robocash.kz"). In total, over 36 million client data records from microfinance organizations operating on the Robo.finance platform were found. The breakdown includes 23.6 million from Russia (zaimer.ru – 16.8 million, adengi.ru – 6.8 million); 5 million from the Philippines (digido.ph); and 2 million from Vietnam (vietloan.vn).
Additionally, the STS conducted an analysis of the leaked data. The Ministry of Digital Development will send notifications to the affected citizens through the EgovMobile mobile application.
The press service of the Ministry of Digital Development, Innovation, and Aerospace Industry of the Republic of Kazakhstan emphasized that unplanned inspections of database operators involved in the personal data leak of Kazakhstanis will be carried out. In case of violations of legislation by database operators, orders to rectify the breaches will be issued, and administrative fines ranging from 100 to 1000 Monthly Financial Indicators will be imposed, depending on the category of the offender and the severity of the violation.
On February 21, 2024, the Cyber Attack Analysis and Investigation Center (CAARKA) made a startling announcement that Chinese hackers had been targeting Kazakhstan's critical IT infrastructure for the past two years.
