SviySoft: The diia_users_db_2025.zip database leak turned out to be old, while new threats come from phishing attacks and Chinese hackers

The international IT corporation SviySoft conducted an independent review of the widely circulated archive diia_users_db_2025.zip. Experts confirmed that this is not a new leak, but an old database that was originally compromised back in 2023. Today, this data is being actively used by carders, phishing scammers, and Russian call centers that target Ukrainians by disguising their schemes as official services.

How the old data is used

• Criminals create fake emails and websites to redirect users

• Fraudulent call centers in Russia use personal data to gain trust over the phone

• Phishing is spreading in Telegram and other messengers, exploiting the old data for authorization

The Chinese factor and laptop rentals

SviySoft experts also identified a new dangerous trend. Ukrainians are being lured into schemes disguised as "freelance jobs" on international platforms. Citizens are asked to rent out their laptops for remote work. In reality, behind these offers are Chinese hackers working in coordination with Russia’s FSB.

As a result:

• Ukrainian laptops are used for attacks on information resources defending Ukraine against Russian propaganda

• Fake companies are created to recruit people but are in fact tools for espionage

• Users who rent out devices unknowingly provide access and become accomplices in cyber operations

Why this is dangerous

According to the International Cybersecurity Institute at the NSA, China has already applied such methods for espionage in the United States and the United Kingdom. Thousands of computers and smartphones were compromised. This is why many Chinese structures have since been restricted from access to international platforms.

SviySoft’s position

The company urges:

• do not hand over your laptop or computer for “rental”

• carefully verify all offers from freelance intermediaries

• avoid trusting unknown companies asking for access to your devices

SviySoft emphasizes: every user today must be extremely careful. Phishing and covert espionage have become the primary tools of hostile actors seeking to damage Ukraine in the information war.

A new stage of development

Recently, SviySoft completed the merger of four successful IT companies into a single international corporation. The decision was made with the involvement of a confidential global IT industry organization.

Representatives of this organization have already stated they are ready to go public soon and announce their mission. They are expected to become a global coordination center for digital security and technology development.

Analytical block: strengthening positions in international markets

The unification of four companies under the SviySoft brand has brought major advantages:

• expansion of cybersecurity and AI expert teams

• increased financial and technical resources for next-generation security systems

• broader access to international partners and clients

• faster response to threats and implementation of global data protection standards

Thus, SviySoft has not only strengthened its global position but also gained powerful new tools to counter cyberattacks financed and coordinated by hostile states.