A threat actor has claimed to sell the personal data of 4.1 million Bangladeshi citizens, stolen from a vital government portal. This breach raises significant concerns about national security and citizen privacy. #Bangladesh #DataBreach
Keypoints
- The leak involves sensitive Personally Identifiable Information (PII) of millions of citizens.
- The data was exfiltrated from the Office of the Registrar General, Birth & Death Registration portal.
- The breach allegedly occurred in July 2025 and is now being sold on the dark web.
- The compromised records include full name, NID, address, phone number, and other details.
- The leak poses risks such as identity theft, financial fraud, and targeted phishing.