In 2016, two major data breaches severely compromised Turkish security: Anonymous leaked 17.8 GB of EGM police data in February, followed by a massive April leak exposing the personal records of nearly 50 million citizens, including top officials. These events, which prompted immediate investigations and long-term security concerns, accelerated the adoption of Turkey's Personal Data Protection Law (KVKK). Read more about the 2016 breach that exposed 50 million records in Wired's report at
Governments must treat infrastructure updates as national security priorities, rather than routine IT maintenance.
These initial cyberattacks were a precursor to something far more damaging. The group claimed the digital assault was in retaliation for "various abuses" by the Turkish regime, including alleged human rights violations and the stifling of media freedom. By early 2016, Anonymous was ready to escalate from shutting down websites to exposing sensitive state secrets. turkish police data dump 2016 exclusive
The operation, dubbed , was not an isolated incident but a salvo in a broader digital war. In late 2015, Anonymous declared war on the Turkish government, publicly accusing President Recep Tayyip Erdoğan’s administration of supporting the Islamic State of Iraq and Syria (ISIS). The group accused Turkey of buying smuggled oil from the terror group and providing safe passage for its recruits entering Syria — allegations Turkey has consistently and vehemently denied.
The hacktivist group Anonymous claimed responsibility, stating the leak was a protest against government corruption and alleged support for extremist groups. In 2016, two major data breaches severely compromised
Some documents contained personal information, including phone numbers of important AKP members.
The 2016 data dump did not happen in a vacuum. It occurred during a highly turbulent year for the Republic of Turkey, characterized by intense political polarization, regional conflict, and a deteriorating relationship with various hacktivist collectives. The Synergies of Hacktivism These initial cyberattacks were a precursor to something
Unlike standard corporate data leaks that usually contain corporate emails or credit card details, this dump targeted the core of Turkey’s law enforcement architecture. Citizen Identification Records
Over 450,000 unique records belonging to active police officers, including undercover narcotics agents.
The paper Turkey's Internet Policy After the Coup Attempt discusses the broader geopolitical context of 2016, including how these leaks influenced the rapid enactment of the Law on Protection of Personal Data (No. 6698) in April 2016. Breach Comparison (2016)
The April leak was particularly damaging because it contained high-fidelity Personally Identifiable Information (PII) for nearly every adult in Turkey, including: