Hackers claim breach of Russian military draft database developer
Learn More
An anonymous hacker group claims to have breached Mikord, a Russian technology firm serving as a key developer of Russia's Unified Military Registration Record (ERVU) and maintained persistent access to the company's systems for several months before the breach was publicized in December 2025.
The Unified Military Registration Record is a nationwide digital database that centralizes personal information on all Russian citizens eligible for military service, linking passport data, employment records, medical information, tax filings, and travel history to the Ministry of Defense.
The attackers contacted the Russian anti-war human rights organization Idite Lesom (Get Lost), providing the group with extensive internal company materials. The leaked data was subsequently shared with investigative outlet Important Stories, which verified the authenticity of the materials and confirmed Mikord's role in developing the military registry system.
According to the hackers' claims and statements from Idite Lesom, the compromised materials include:
- Source code for the military registration system
- Technical documentation and development data
- Financial records and internal correspondence
- Infrastructure components and system configurations
The attackers claim to have destroyed portions of Mikord's infrastructure, potentially disrupting the development and operation of the registry for several months. The attack targeted the developer's systems, not the central registry database.
Ramil Gabdrakhmanov, director of Mikord, confirmed the breach to journalists, stating matter-of-factly that cyberattacks "happen to everyone" and that "many are being attacked right now." He declined to comment on whether the company was involved in developing Russia's unified military registration database. Mikord's website remained offline for days following the breach, displaying only a maintenance message.
Russia's Ministry of Defense categorically dismissed reports of the breach as "untrue," asserting that the registry "is operating normally" and that no personal data leaks have occurred. The ministry claimed that while the system is frequently targeted by cyberattacks, all such attacks have been "successfully stopped."
The identity and origin of the hacker group remain unknown, and the authenticity of the provided documents can't be independently verified.
