ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

Bulgarian National Revenue Agency Data Breach

nap.bg
Limited exposure
Verified breach
Accounts exposed 471,167
Breach date 15 Jul 2019
Added to tracker 18 Jul 2019
Data classes 5

What happened

In July 2019, a massive data breach of the Bulgarian National Revenue Agency began circulating with data on 5 million people. Allegedly obtained in June, the data was broadly shared online and included taxation information alongside names, phone numbers, physical addresses and 471 thousand unique email addresses. The breach is said to have affected "nearly all adults in Bulgaria".

Exposed data

Email addresses Names Phone numbers Physical addresses Taxation records

Recommended actions

  • Watch for targeted phishing emails referencing Bulgarian National Revenue Agency โ€” attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk โ€” consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP