Were the personal data of employees of the Uzbekistan Cybersecurity Center stolen?

Personal data belonging to 100 employees of Uzbekistan's Cybersecurity Center has been published on a website where cybercriminals and hackers sell stolen information.

 

 

An unknown hacker stated that the data was obtained from the center's internal database and that they possess even more sensitive information. They demanded $200,000 in exchange for halting the publication of this data.

 

The Cybersecurity Center issued an official statement regarding this incident here.

 

According to the statement, preliminary investigations indicate that the disseminated data does not correspond to reality, and the center's internal information systems have not been breached, nor does it use such a type of database.

 

Additionally, the center's message referenced Part 2 of Article 12-1 of the Law "On Informatization."

 

In accordance with the law, the owner of a website or internet page, including a blogger, must verify the accuracy of information before posting it on their website or internet page on the global information network Internet, where the information is freely accessible to everyone, and must immediately delete the posted information if its inaccuracy is identified.

Previously, in February 2026, it was reported that the personal data of at least 15 million citizens of Uzbekistan had been leaked from government systems and posted on the Dark Web. Regarding this situation, the State Unitary Enterprise "Cybersecurity Center" stated that investigations were being conducted and that additional information would be provided later.

 

At that time, Minister of Digital Technologies Sherzod Shermatov stated that there was no case of data belonging to 15 million citizens being sold on the internet.