Iranian Hackers Leak Database of Albanian Criminal Suspects

An Iranian hacking group called “Homeland Justice” published new information on Monday related to people supposedly “suspected” by the Albanian police authorities.

The file, simply titled “Suspected”, contains information allegedly related to people in the State Police database connected to different crimes.

The data shared from the Telegram channel also called “Homeland Justice” includes photos of these people, their ID numbers, names and surnames, names of their fathers, dates of birth, birth cities and nationality. The database is thought to have 100,000 items of data.

The prosecution has ordered local media not to report the content of data that hackers released. Albania’s government has not reacted to the latest leak.

Sali Berisha, veteran boss of the centre-right Democratic Party in opposition, said that the leak was very dangerous.

He said the leak likely came from the police’s MEMEX system, which gathers data from the State Police on people suspected and investigated for crimes.

“Names have been exposed from the system in order to warn all those who are under surveillance, are under investigation, or are under consideration for various criminal activities,” he said.

“This is a moment when Albania has become the most dangerous country in the Balkans and Europe, as it [the leak] warns contingents of criminals that they are under police pursuit and surveillance and must leave in order to be saved,” Berisha said on Monday.

Ervin Karamuco, a professor in criminology at Tirana University, also described the leak as very worrying.

“What we had suspicions about but were afraid to say out loud, has happened; 1.7 gigabytes of criminal data from the Memex police system was released today by hackers. Public safety is under question,” Karamuco wrote on Facebook.

However, State Police denied that the information leaked on Monday is from MEMEX.
“State Police informs that, so far, sensitive data that is being administered in this system is not affected or damaged,” the police said.

It added that they are investigating the origin of the leak and called on the media not to publish this kind of data.

Albania has been subjected to cyber-attack for months, which the government has connected to Iranian groups. (Tirana hosts a group of exiled Iranian dissidents). The Iranian embassy staff in Tirana were expelled on September 7.

Since then, the hackers have conducted other operations, targeting the Traveller Information Management System, TIMS, on September 19, which caused chaos on the borders. They also released emails of Gledis Nano, former Chief of Police, on September 19.

According to an FBI report, Iranian hackers first accessed Albanian systems a full 14 months ago.

The first cyber-attack was reported on July 13, when government services became unavailable for some days.

“An FBI investigation indicates Iranian state cyber actors acquired initial access to the victim’s network approximately 14 months before launching the [July] destructive cyber attack, which included a ransomware-style file encryptor and disk wiping malware,” the FBI report said.

North Macedonia Banks Targeted by Notorious Greek Hackers

A well known group of supposedly Greek-based hackers, calling themselves “Powerful Greek Army”, has claimed it took down the pages of several banks in North Macedonia on Tuesday evening for a couple of hours.

Only one bank, however, the private TTK Bank, has confirmed that its web page was in fact the target of a hacker attack, saying that it “successfully prevented” the attack and “there are no consequences”.

“Powerful Greek Army” posted on Monday that it intended to attack a range oif banks.

“ALL banks licensed by the National Bank of the Republic of North Macedonia/All Banks of North Macedonia will be downed … soon,” the group wrote on Twitter. On Tuesday, the group posted subsequent posts, claiming success in this.

BIRN asked North Macedonia’s central bank to comment but did not receive an answer by the time of publication.

This is not the first time the group has targeted North Macedonia’s institutions.

In February, the Education Ministry confirmed it came under attack by the group, which posted video footage of allegedly hacked video surveillance cameras from inside the ministry. However, the ministry said the camera footage was fake.

Earlier, in May 2020, “Powerful Greek Army” leaked dozens of email addresses and passwords from staffers in North Macedonia’s Ministry of Economy and Finance, as well as from the municipality of Strumica – and bragged about its exploits on Twitter.

The hacking group was reportedly founded in 2016, when it took down the website of the Greek Prime Minister. Since then it has taken offline a number of banks in Turkey and downed the websites of Turkish Airlines and the office of the Turkish president among other targets. In a recent interview, an alleged member said they had not particular motivation or ideology and chose their targets at random, from Greece and its neighbours to Nigeria and Azerbaijan.

Albania to Hire US Cybersecurity Firm After Data Breach

The Albanian government said on Tuesday that it has signed a memorandum of understanding with the US-based Jones International Group, which is expected to advise on cyber security measures after the country suffered a huge data leak in late December.

The agreement with the Virginia-based Jones International Group was made public through a decision by Albania’s Council of Ministers but no details of tender procedures or the costs involved were disclosed.

“This is just an agreement of understanding in which the parties agree that they will work with each other. The other documents [contracts] will become known in the future,” the spokesperson at the Ministry of Infrastructure and Energy, Florian Serjani, told BIRN on Tuesday when asked about the cost.

When asked what was the basis upon which the company was chosen, Serjani said that “we have experience with this company because they have worked with the OST [Albania’s transmission system operator]”.

The Jones International Group, which provides cyber security, energy, telecommunications and political consulting services and products, is run by James Logan Jones, a former US Navy general and former US National Security Advisor. Jones was also the US supreme allied commander in Europe.

The Minister of Infrastructure and Energy, Belinda Balluku, met Jones on Monday and said that he has “expressed readiness to cooperate with the Albanian government for cyber protection, as one of the companies with the greatest experience in the US and Europe”.

Quoted by local media on Tuesday, Jonas said he feels honoured to help Albania in “cyberwar.”

“…There is a clear and obvious danger…”, he was quoted as saying.

The US company, which according to the official data was established in July 2020,  plans a strategy of how to install multilayer protective systems to prevent cyberattacks in a country where people can find more than 90 per cent of their public administration services online.

Jones has previous connections with Albania. In 2019, while working as US National Security Advisor, in Albania he met the People’s Mojahedin Organisation of Iran, MEK, a controversial Iranian opposition group that has been sheltered by Albania since 2013. He has been presented as a longtime supporter of the Iranian resistance, especially the members of the MEK in Iraq.

At a NATO conference on security challenges facing technology two years ago in Tirana, he warned Albania to be vigilant about China offering to provide 5G technology.

After the huge data leak in December, the Tirana prosecution started checking a list allegedly containing the personal data of hundreds of thousands of Albanian citizens which was circulated on WhatsApp. Four people are under investigation over the leak.

It was alleged that the data contained the monthly salaries, job positions, employer names and ID numbers of some 630,000 citizens, from both the public and private sectors.

Another data leak of salaries for the month of April was released and circulated via WhatsApp one day later.

It was followed by a further data leak that contained private information about citizens’ vehicle number plates.

In April 2021, a few days before elections in the country, a database with the private information of around 910,000 voters in Tirana was leaked to the media.

It was claimed that the database belonged to the ruling Socialist Party and was taken from state institutions and used for electoral purposes.

The database, which BIRN has seen, included names, addresses, birth dates, personal ID cards, employment information and other data.

The Socialist Party denied wrongdoing, insisting that the information was gathered in door-in-door surveys. The case is still with the prosecution.

Albania Announces Four Arrests Over Massive Data Leaks

The Prosecutor of Tirana, Elisabeta Imeraj, told the media on Friday that police had arrested four people in connection with the massive data leaks that have rocked Albania.

Two people from state institutions suspected of selling people’s personal data and two others from private entities suspected of buying it had been arrested.

“They are employed in the National Information Service Agency, but practice their profession in the General Directorate of Taxes”, she said referring to the two arrested from state institutions.

The Tirana prosecution in December started checking a list allegedly containing the personal data of hundreds of thousands of Albanian citizens which has been circulated on social media.

It was alleged that the data contained the monthly salaries, job positions, employer names and ID numbers of some 630,000 citizens, from both the public and private sectors for January 2021.

Another data leak of salaries for the month of April was released and circulated through WhatsApp just one day later.

It was followed by another data leak that contained private information about citizens’ car plates.

Experts told BIRN that these leaks pose public security questions.

In April 2021, a few days before elections, a database with the private information of around 910,000 voters in Tirana was leaked to the media.

It was claimed that the database belonged to the ruling Socialist Party and was taken from state institutions and used for electoral purposes.

The database, which BIRN has seen, contained some 910,000 entries including names, addresses, birth dates, personal ID cards, employment information and other data.

The Socialist Party denied wrongdoing, insisting that the information was gathered in door-in-door surveys. The case is still with the prosecution.

Albanian Prosecutors Probe Huge Suspected Leak of Personal Data

The Tirana prosecution told BIRN that it has “started verifications” of a list allegedly containing the personal data of hundreds of thousands of Albanian citizens which has been circulated on social media.

It is alleged that the data contains the monthly salaries, job positions, employer names and ID numbers of some 630,000 citizens, from both the public and private sectors.

It is suspected that the list was leaked from the tax service or the Social Insurance Institute.

Government spokesman Endri Fuga said that the Ministry of Finance was following with concern the release of data on the salaries of Albanian citizens, and described the document as “illegal”.
Fuga said in a statement that preliminary analysis has shown that “there has been no digital export of the [state] payroll database” and that the document is a “merger of several different pieces” of data.

President Ilir Meta called it “a flagrant violation of freedoms, human rights and dignity, laws and the constitution” and urged the authorities to investigate the case and find the perpetrators.

“The personal data of every citizen, which is stored by public institutions and administered in state databases, is personal, protected by law and intended to be used only for the benefit of citizens and the state only,” Meta said.

“Any other use of it is a criminal act, which endangers the social order by violating the private security of every citizen,” he added.

The deputy leader of the opposition Democratic Party, Enkelejd Alibeaj, said it was “an extraordinary scandal” and alleged that the government of Prime Minister Edi Rama has failed to protect “personal and sensitive data on salaries, personal identification numbers, and the workplaces of over 630,000 citizens”.

Alibeaj said the Democratic Party believes that the online publication of the list “is part of a [ruling] party-state strategy to use sensitive information for electoral purposes”.

If confirmed, this would be the second time in a year that large amounts of citizens’ private data have entered the public domain.

In April 2021, a few days before the general elections in the country, a database with the private information of around 910,000 voters in Tirana was leaked to the media.

It was claimed that the database belonged to the ruling Socialist Party and was taken from state institutions and used for electoral purposes.

The database, which BIRN has seen, contained some 910,000 entries including names, addresses, birth dates, personal ID cards, employment information and other data.

The Socialist Party denied wrongdoing, insisting that the information was gathered in door-in-door surveys.

Data Dominance: In Cyprus, a Chinese Outpost inside the EU

In October 2015, two years after a banking crisis left Cyprus in desperate need of new financing, President Nicos Anastasiades visited China on a charm offensive, touting the Mediterranean island’s low tax rates, its European Union membership and its readiness to take part in China’s Belt and Road Initiative, BRI.

The floodgates opened, but there was nothing sporadic about the Chinese outlay.

Today, money from Chinese state-owned or state-linked corporations has penetrated the core of just about every key Cypriot sector, from real estate to natural resources, transport to aviation, all in the name of a transcontinental infrastructure project linking countries along the route of the old Silk Road.

Thanks in part to the BRI, China is set to surpass the United States as the world’s leading economy by 2028 and become the standout superpower heading into the ‘Fourth Industrial Revolution.’

A key component of the BRI is the Digital Silk Road, DSR, through which the Chinese Communist Party seeks to develop and export key technological infrastructure – including 5G – to participating states, boosting the importance and presence of Chinese tech companies around the world and, to a degree, replicating its digital authoritarian model.


Chinese investments in Cyprus. Illustration: BIRN/Igor Vujcic

In Cyprus, according to BIRN’s findings, China now dominates the 5G networks and the island’s wider tech ecosystem, creating a key Chinese outpost inside the EU with potentially far-reaching consequences for data security and the independence of Cypriot – and by extension EU – foreign policy.

It is a state of affairs that contradicts US and EU recommendations and the island’s own claims to be pursuing a multi-vendor strategy.

5G underpins power grids, transportation and water supplies, and, in the future, will enable military tools including artificial intelligence, said Carisa Nietsche, associate fellow for the Transatlantic Security Program at the Washington-based Centre for a New American Security.

“In extreme cases, analysts suspect China could pull the plug on the network, gather intelligence from data pulsing through the networks or cut off a 5G-enabled energy grid,” Nietsche told BIRN.

Chinese investment in Cyprus

In 2015, China’s largest private copper smelter, Yanggu Xiangguang Copper, bought a 22 per cent stake in Cyprus-registered copper mining company Atalaya Mining Plc for 96.2 million euros.

In November 2019, a consortium led by state-owned China Petroleum Pipeline Engineering signed a 290 million-euro deal with the Cypriot natural gas infrastructure company ETYFA to build a liquefied natural gas terminal for electricity generation. Among the four firms in the consortium is state-owned Hudong-Zhonghua Shipbuilding, the top warship producer for the Chinese navy.

Before it pulled out in 2019, state-owned Aviation Industry Corp. of China, AVIC, was the largest shareholder in Cypriot airline Cobalt.

JimChang Global Group has invested 100 million euros in a five-star hotel and housing development near Ayia Napa via a joint venture announced in 2016 with Cyprus property group Giovani. The residential part was completed last year.

Macau-based Melco is investing $677 million in the City of Dreams Mediterranean, an ‘integrated casino resort’ in Limassol, Cyprus. It is expected to open in 2022.

Building 5G on Chinese foundations

Illustration: BIRN/Igor Vujcic

On his 2015 visit to China, Anastasiades, who was re-elected in 2018, visited the Shanghai research centre of Huawei, the world’s largest manufacturer of telecommunications equipment.

Huawei plays a key role in driving global industry standards in Beijing’s favour through the filing of patents that make the industry more likely to adopt Chinese proposals as global standards.

In terms of 5G standard essential patents, Huawei has the largest portfolio worldwide. The company claims to hold more commercial 5G contracts than any other telecom manufacturer in the world – 91. Forty-seven of these are in Europe.

At the research centre, Anastasiades lauded Huawei’s “important contributions to communications network construction in Cyprus” and called for “deeper ties”.

Huawei’s dominance, however, has unsettled the United States and others, which say the company’s equipment could be used by Beijing for spying, something Huawei has vigorously disputed.

In a rare interview with foreign media in 2019, Huawei founder and CEO Ren Zhengfei said: “I love my country. I support the Communist Party. But I will not do anything to harm the world.” He said that Beijing had never asked him or Huawei to share “improper information” about its partners and that he would “never harm the interest” of his customers.

Unconvinced, in October 2020 then US undersecretary of state for economic growth, energy and the environment, Keith Krach, visited Nicosia and, with the 5G licence application process underway in Cyprus, incorporated the island into the US ‘Clean Network’ on 5G, an initiative launched under former President Donald Trump to build a global alliance excluding technology that Washington says can be manipulated by the Chinese Communist Party.

The Americans are concerned, in part, by the proximity of Chinese-dominated 5G networks to military bases. But while on paper the Cypriots may have sided with the Americans, in practice Huawei is still very much in play.

Huawei (Nicosia)-the building in which Huawei’s main Cyprus offices reside. Photo: BIRN

The company entered the local market in 2009, taking a lead role in the upgrade of the island’s information and communications technology and the 2/3/4G infrastructure of its four telecommunications companies, CyTA, Epic, Cablenet and Primetel.

Since Cyprus uses the so-called Non-Standalone, or NSA, mode for 5G – effectively building on top of its existing 4G infrastructure – and with Huawei providing the components for 100 per cent of the telecom companies’ 4G Radio Access Network, RAN – the Chinese giant looked perfectly placed last year to take the lead in the 5G rollout as well.

The RAN is comprised of various facilities such as cell towers and masts that connect users and devices to the Core Network, which in turn encompasses all 5G data exchanges such as authentication, security, session management and traffic aggregation across devices.

In December 2020, the two biggest 5G contracts were awarded to CyTA and Epic.

But both companies, sources say, are overwhelmingly dependent on Huawei for their Core Network and their RAN infrastructure.

Semi-governmental CyTA launched its 5G Network in January 2021, catering to 70 per cent of the population on launch and aiming for 98 per cent coverage by the start of 2022.

A senior CyTA manager told BIRN that 80 per cent of the company’s Core Network and 100 per cent of its RAN is covered by Huawei infrastructure. The remaining 20 per cent of its Core Network is provided by Swedish Ericsson.

“CyTA is a governmental company and comes up with tenders for the equipment, and Huawei has been a long-term provider of infrastructure and support and offers the best prices,” said the senior manager, who asked not to be named since he was not authorised to speak to media.

Asked about the makeup of its Core Network and RAN infrastructure, CyTA told BIRN: “We inform you that any information regarding the CyTA network is a trade secret and any disclosure of it is contrary to the commercial interests of CyTA and its partners (article 34 (2) Law 184 (I) / 2017).”

Huawei also accounts for 90 per cent of Epic’s Core Network infrastructure and 100 per cent of the RAN, said a senior manager at Epic, who also spoke on condition of anonymity.

Epic’s collaboration with Huawei dates to 2009, when the company, then named MTN, sealed a 20 million-euro contract with the Chinese firm to upgrade its network.

Now owned by Monaco Telecom, Epic went on to develop Cyprus’s first 4G LTE network, leveraging Huawei’s RAN solution, on which another Cypriot telecommunications firm, Primetel, also entered into an access-sharing agreement. In February 2019, shortly before its rebranding as Epic, MTN signed a deal with Huawei for the development of its 5G network.

An Epic spokesperson did not respond to repeated requests for comment.

Nietsche, of the Centre for a New American Security, told BIRN: “For 5G to deliver on its promises of faster speeds, it requires an immense amount of data to travel through the network. And that data is pushed closer and closer to the end user, or the edge of the network.”

“In Europe, some governments have distinguished between implementation of Huawei in the Core Network and the Radio Access Network, or edge of the network. These governments argue that you can essentially create a firewall between the core and edge of the network.”

“However, we should not make such a distinction. As 5G networks develop, more and more data is pushed toward the edge of the network, and it becomes harder to distinguish between the core and edge of the network.”

Chinese ‘fusion’


Huawei section of the Gulf Information Technology Exhibition (GITEX) Global 2021. Photo: EPA-EFE/ALI HAIDER

Using Huawei components within 5G infrastructure is not a direct violation of European Union guidelines, since the EU toolbox on 5G – a common set of guidelines laid out by the bloc to limit 5G cybersecurity risks – did not explicitly ban any specific company but left it to member states to decide which providers were ‘high-risk’.

Authorities in Cyprus have not as yet identified any provider as ‘high-risk’.

The October 2020 memorandum of understanding that saw Cyprus sign up to the US Clean Network “does not imply in an implicit or explicit way that Cyprus will move away from Huawei”, said the man who signed it, Deputy Minister for Research, Innovation and Digital Policy Kyriacos Kokkinos.

“What it says is that we will collaborate with US agencies and authorities so that we ensure that the security standards are respected in the infrastructure we deploy,” Kokkinos told BIRN.

EU guidelines, however, do stress caution over suppliers “subject to interference from a non-EU country”, warning that a member state’s network could be vulnerable if there was a “strong link between the supplier and a government of a third country.”

Huawei’s state ties are considerable.

Zhengfei, the company’s founder, was a former Deputy Regimental Chief of the People’s Liberation Army; reports say that a considerable number of Huawei employees are believed to have worked for the military; and some Huawei employees have collaborated on research projects with military personnel.

But it was legislation passed in China in 2017 that really raised eyebrows.

Article 7 of China’s 2017 National Intelligence Law requires any organisation to support, provide assistance and cooperate in “national intelligence work”. Even before that, Article 22 of the 2014 Counter-Espionage Law required any “relevant organisations and individuals” to “truthfully provide” information during any “counter-espionage investigation”.

China’s “military-civil fusion” – which calls for private sector assistance in the country’s military objectives – was inscribed as a strategic priority in the Chinese Communist Party’s constitution in October 2017.

Some European countries have already balked.

In October, Swedish telecom regulator PTS banned Huawei from supplying 5G equipment to Swedish mobile firms due to security concerns raised by Sweden’s SAP security service, a decision upheld by a Swedish court in June this year.

Huawei has repeatedly denied posing a security threat, while China threatened “all necessary measures” in response to the Swedish ban. Beijing also told France and Germany not to “discriminate” against the company.

In the United Kingdom, a firm US ally, the government set a cap of 35 per cent limit on Huawei’s involvement in 5G RAN. It also excluded Huawei from safety-related and safety critical networks and sensitive locations such as nuclear sites and military bases.

In Cyprus, Kokkinos would not be drawn on whether Cyprus might set a similar cap.

“I don’t want to make a statement that might be misleading that this is not something that might happen in the future,” he said. “But at the moment we do not exclude any vendor.”

Critics of the Chinese government say the stakes could not be higher.

Given how much states and societies will come to depend on fifth generation technology, its security poses an unprecedented challenge, with any potential ‘hack’ snowballing into a threat to national security.

As a host to British military bases and US spy stations at the crossroads of Europe, Asia and the Middle East, Cyprus is no ‘island’ when it comes to geostrategic importance. Some experts say the threat posed by Huawei’s political and military ties and its data dominance in Cyprus cannot be ignored.

“One day Cyprus has to choose a side,” said Chen Yonglin, a former Chinese consular official in Sydney, Australia, whose work included monitoring Chinese dissidents until he defected in 2005. “One day China will take off its mask and Cyprus won’t be able to stand in the middle.”

“Cyprus needs to be careful about handing over its sovereignty to China,” he told BIRN.

John Strand, director and founder of telecommunications consultancy firm Strand Consult, concurred:

“The China we have today is a different China than we had five years ago,” he said. “China is a country which is very aggressive to countries which basically have an opinion, or have citizens who have an opinion about what is going on in China, Hong Kong or Tibet, and other places.”

“We have seen that China is not only threatening countries which go against them or criticise them, they also punish countries,” he told BIRN.

“If the Internet broke down 10 to 15 years ago, society could move on, it was not an issue. Nowadays, everything in our society is built on top of IT solutions which are connected to each other through the Internet of Things.

Cyprus embraces Chinese blockchain

Huawei, however, is not the only cause of potential concern when it comes to Cyprus.

Another is VeChain, a Chinese state-backed blockchain platform that in November 2018 entered into a national partnership with Cyprus to assist the island in the development and implementation of blockchain solutions across a range of private and public sectors.

Mediterranean Hospital of Cyprus (Limassol),one of two Cypriot hospitals to partner with VeChain store vaccination records on the VeChainThor blockchain. Photo: BIRN

It is the only such state partnership VeChain has outside of China.

The platform, launched in 2015, is a favourite of the Chinese Communist Party, which has entrusted it with contracts in, among other areas, agriculture and telecoms.

In July 2018, after thousands of children were given faulty vaccines, the Chinese government called on VeChain to create a nationwide vaccine tracking solution with health data stored on the blockchain.

When VeChain presented its solution at the China International Import Expo in November 2018, President Xi Jinping was in attendance. Xi has declared blockchain a national priority, with VeChain a co-founder of the Belt and Road Initiative Blockchain Alliance that aims to develop blockchain along the route of the BRI.

In Cyprus, VeChain developed the E-HCert App, which records COVID-19 PCR and antibody test results on the VeChain Thor Blockchain and is being expanded to serve as a wallet for all medical records of Cypriot citizens and as a vaccination certificate.

The ‘V-Pass’, a vaccination certificate sealed in the VeChain Thor, is also in the pipeline for the general public.

Two of the island’s biggest private hospitals have also struck agreements with VeChain for it to host their medical records on its blockchain.

Christiana Aristidou, co-founder and vice-chair of the Cyprus Blockchain Association, said that all necessary measures had been put in place “to maintain the safety of health data.”

“Blockchain is very secure and VeChain intends to take the lead in this sector in Cyprus,” Aristidou told BIRN.

Asked about any risks to data security, the Cypriot Health Ministry replied: “The Ministry of Health does not use blockchain technology in public hospitals.”

Golden passports and a city of dreams

But while some experts voice deep concern over the extent of China’s data presence in Cyprus, domestic scrutiny appears lacking. One reason may by the stakes involved for a number of influential political and legal figures.

In August 2020, an undercover report by Al Jazeera exposed a scam at the heart of a Cypriot policy to provide citizenship to foreign nationals who invest two million euros in the island’s economy.

According to the report, a number of high-level Cypriot officials had abused the scheme to secure passports for several thousand foreigners who did not meet the legal requirements.

Passport control at the derelict former Nicosia International Airport in Nicosia, Cyprus. Photo: EPA/JAN RAKOCZY

An official investigation, published in June this year, said that 97 per cent of the 6,546 ‘golden’ passports issued between 2007 and August 2020 had been issued since Anastasiades took power in 2013.

More than half, or 3,609, were for family members of investors and executives of companies and who were granted citizenship without actually meeting the legal criteria.

Between 2017 and 2019, the Al Jazeera report found that 482 wealthy Chinese nationals applied for passports via the scheme, more than any other nationality bar Russian. They include several members of the Chinese People’s Political Consultative Conference, an advisory body to the Communist Party.

The chief protagonist in the Al Jazeera exposé was Dimitris Syllouris, who as speaker of the parliament at the time was the country’s second highest-ranking official after the president.

Syllouris was caught helping to fast-track a Cypriot passport for a fictitious Chinese businessman despite being told the applicant had a criminal record and was therefore barred from a ‘golden’ passport under the rules of the scheme.

Syllouris, who resigned over the scandal, had been a key player in a number of deals between Nicosia and Beijing, including in the tech sector.

Property developer and MP Christakis Giovanis, whose company partnered in 2016 with Chinese group JimChang Global on a 100 million-euro hotel and luxury housing development, also resigned his public post over the scam.

Invest Cyprus, the government agency tasked with attracting foreign investment and which signed the 2018 MoU with VeChain, plays a central role in bringing Chinese money into the country.

When Invest Cyprus facilitated the arrival in 2018 of Macau-based conglomerate Melco for the development of a casino mega resort worth $667 million in Limassol, the agency’s CEO, George Campanellas, became a member of the management team overseeing the project.

Melco CEO Lawrence Ho is a member of the National Committee of the Chinese People’s Political Consultative Conference, CPPCC, an advisory body to China’s central government.

Melco is also linked to the Cypriot telecom company Cablenet via the latter’s owner, Cyprus-based CNS Group, which is the parent company of The Cyprus Phassouri (Zakaki) Limited, Melco’s partner in the Integrated Casino Resorts Cyprus Consortium behind the Limassol casino development, City of Dreams Mediterranean. The resort is expected to open in 2022.

In 2019, Melco’s Ho attended the 2nd Belt and Road Forum for International Cooperation in Beijing with Melis Shiacolas, the managing director of CNS Group and a relative of Cablenet non-executive chairman and 37 per cent owner, Nicos Shiacolas.

The Invest Cyprus board also includes Pantelis Leptos, a prominent property developer whose law firm, Leptos Group, handled the paperwork for 169 applications to the golden passport scheme between 2013 and 2019, according to interior ministry data reported by Cypriot media group Dialogos. The company also has an office in China.

A senior official at Invest Cyprus initially agreed to be interviewed for this story but then said he needed to seek authorisation to speak to the media. He subsequently did not respond to repeated efforts to arrange a meeting.

In Paphos, on the southwest coast of Cyprus, the head of the local Chamber of Commerce and Industry, Andreas Demetriades, signed a memorandum of cooperation in 2017 with the Hi Tech District and Chamber of Commerce of the eastern Chinese city of Changzhou, near Shanghai, for the development of a pharmaceutical tech park in Paphos, with tech parks – industrial zones specialising in science and technology – high on the agenda of Invest Cyprus and the government.

Demetriades’ law firm, Andreas Demetriades LLC, handled 272 golden passport applications between 2013 and 2019, more than any other firm.

Stelios Orphanides, an investigative journalist with the Organised Crime and Corruption Reporting Project, OCCRP, said China could come to dominate the telecommunications sector “because there is the lowest level of scrutiny in terms of risk management.”

“Cyprus doesn’t have the will to carry out thorough checks,” he told BIRN, “because those who manage the system – both the old elites and new elites, lawyers, accountants and so on – have learned to do just one thing, which is to prostitute the sovereignty of Cyprus in exchange for personal benefits.”

Montenegro Data Protection Agency Voices Concern Over COVID-19 Measures

A member of Montenegro’s Council of the Agency for Personal Data Protection, Muhamed Gjokaj, on Wednesday warned that new COVID-19 measures could put citizens’ personal data at risk.

He said he feared unauthorized persons could get insight into citizens’ personal data, and called on the Health Ministry to be more precise about its new health measures.

“The Health Ministry should explain on the basis of which specific legal norms it has prescribed that waiters have the right to process the personal data of citizens who enter a café or restaurant.

“If there is no adequate legal basis, citizens can sue all those entities that ask to inspect their personal data, which also relates to health information,” Gjokaj told the daily Pobjeda.

On July 30, the Health Ministry announced that patrons of nightclubs, discotheque and indoor restaurants must show their ID and National COVID-19 certificate before entering.

The national COVID-19 certificate is a document issued by Health Ministry, which proves that a person has been vaccinated, or has had a recent negative PCR test, or has recovered from COVID-19. According to the Health Ministry, the certificate must be showed to the waiter or club staff.

Montenegro’s Personal Data Protection Law specifies that personal data related to health conditions can be inspected only by medical personnel, however. It prohibits inspection of personal data by unauthorized personnel.

On July 30, the head of the Digital Health Directorate, Aleksandar Sekulic, said no violation of citizens’ personal data was taking place under the measures, as only the name and date of birth of the person were on the COVID-19 certificate.

“We do not provide medical conditions through the certificates but only the data citizens want to provide. They voluntarily agreed to provide a certain amount of data,” Sekulic told a press conference.

On August 3, a lawyer, Andrijana Razic claimed the Health Ministry had violated the law by the new health measures, accusing it of forcing citizens to be vaccinated. She said that non-vaccinated citizens must not be discriminated against in any way.

“It’s completely clear that employees in a restaurant or nightclub have absolutely no right to identify citizens, or ask them for health information that is secret by law. The government should seriously consider the possible consequences of pursuing such a discriminatory and dangerous health policy, based on a drastic violation of basic human rights,” Razic told the daily newspaper Dan.

According to the Institute for Public Health, there are 1,667 registered COVID-19 active cases in the country. The capital Podgorica and the coastal town of Budva have the largest numbers. On Wednesday, the Health Ministry said that 34.5 per cent of the adult population had been vaccinated against COVID-19.

Glitched Online Registration System for COVID-19 Vaccination Confuses Croatia

As more doses of COVID-19 vaccines finally arrive in Croatia, problems continue when it comes to registration, especially through the national online platform, CijepiSe [Get vaccinated].

“I expected the CijepiSe platform to work because the pandemic has lasted such a long time,“ Mia Biberovic, executive editor at the Croatian tech website Netokracija, told BIRN.

“I assumed the preparations were done early enough,“ she said, concluding that alas, this was not the case. As a consequence, she noted, a small number of people who applied online for a jab are being invited to get vaccinated.

For days, media have reported on problems with the platform, which cost 4.4 million kuna, or about 572,000 euros. On Friday, media reported that the data of the first 4,000 people who applied for vaccination via the platform during its test phase in February had been deleted.

The health ministry then denied reports about the deletion, and said the data relevant for making vaccination appointments had not connected in the case of 200 citizens who booked vaccinations during the test trial.

“The problem is, first, that the test version came when it [the system] was not functional yet. Second, [in the test phase] there were no remarks about the protection of users’ data, i.e. how the user data left there would be used,” Biberovic, who was also among those who applied during the test trial, noted.

“As far as I understood, the data was not deleted but could not be seen anywhere because it was incomplete … So they are not deleted, but again, they are not usable, which is even more bizarre,“ Biberovic added. “This is certainly a risk because citizens do not know how their data is being used.”

Vaccination appointments in Croatia can be ordered through the CijepiSe online platform, a call centre or via general practitioners, and all those who apply should be put on a single list. However, direct contact with a doctor has turned out to be the best way to get a vaccination appointment.

The ministry on Saturday said 198,274 citizens have been registered via the CijepiSe platform, of whom 45,416 have been vaccinated. But around 40,000 of these were not invited through the platform but by direct invitation of general practitioners.

Zvonimir Sostar, head of the Zagreb-based Andrija Stampar Teaching Institute of Public Health, stated on Saturday that the platform was not functioning in the capital, and that they would change the vaccination registration system, advising citizens to register via general practitioners.

Shortly after, the ministry promised that “everyone registered in the CijepiSe system will receive their vaccination appointment”.

“Maybe the platform is not functioning the way we wanted, but it functions well enough to cope with the challenges of vaccination. I read in the papers that the system of vaccination has collapsed. That’s not true! We are increasing the daily number of vaccinations,” Health Minister Vili Beros said on Sunday.

However, the Conflict of Interest Commission, an independent state body tasked with preventing conflicts of interest between private and public interests in the public sector, confirmed on Tuesday that it has opened a case against Beros. It comes after the media reported that the minister has ties to the company that designed the CijepiSe platform. The minister denies any wrongdoing.

Albania Prosecutors Investigate Socialists’ Big-Brother-Style Database

Albania’s Special Structure Against Corruption and Organized Crime has summoned Andi Bushati and Armand Shkullaku, owners and editors of Lapsi.al news website, for questioning about a database, purportedly created by the Socialist Party, which contains the names of 910,000 voters in the Tirana region, along with personal data, including employment and family background records in what critics call a massive tracking system.

Bushati said prosecutors asked him where the information came from, and said he had refused to reveal his source, calling the meeting “a short meeting without much substance” while suggesting that the prosecutors should instead investigate how the personal data of the citizens ended up in the hands of a political party.

The prosecutors have not inspected any party office or commented publicly on what they are investigating.

The news about the database revealed last Sunday sent waves across the political spectrum and the population.

Ruling Socialist Party officials acknowledge that the database exists, but insist the data was provided voluntarily by citizens. They have also claimed that the published excerpts are not theirs.

Socialist parliamentary Group Taulant Balla immediately called the news “Lies!”

“The Socialist Party has built its database over years in door-to-door communication with the people,” he added. Days later, he claimed that the database published was not the one belonging to the Socialist Party.

Edi Rama, the Prime Minister, has acknowledged that his party has a “system of patronage” of voters but said their database is more complex and that the one leaked is probably an old one. Other Socialists have denied that the leaked database is theirs at all.

The opposition Democratic Party claims the data included in the database was stolen by the Socialist Party via the government service website E-Albania, where people apply for different services.

Many citizens who have had access to the database claim the data there are those they supplied to state institutions, and say the database seems well updated.

This E-Albania website was used by the government of Prime Minister Rama to issue permission to go outside during the national lockdown in spring 2020. In their forms, citizens had to provide phone numbers and email addresses.

The database, which BIRN had seen, contains some 910,000 entries of names, addresses, birthday, personal ID cards, employment and other data.

For each voter, a party official known as “patronazhist” a word derived from French patronage, is assigned. If they want to know where somebody works, a search in the database can provide that information.

For each voter, there is data on how they voted in the past and what their likely preference is today. In a separate column titled “comments”, party officials write notes on voters.

In one, a party official notes that “the voter requested employment of his wife” while in another, “the voter didn’t thank [the party] for obtaining his house deeds].

Property issues are widespread in Albania and various governments have been criticized for handing over ownership titles as electoral campaign bribes. The issue of such deeds in elections is currently forbidden.

In several cases, officials noted that some voters do not participate in elections because they are “Jehovah Witnesses,” or “extremist Muslims who are not permitted by religion to vote”.

In one case, the comment indicates that voters’ social media pages are checked by officials: “By investigating his Facebook profile, we can conclude he votes for SP,” a note reads while in another case it reads: “This one has previously voted for PDIU party; should be kept under monitoring.”

A note for a voter identified as business owner reads: “We should contact him for his employees”. In another case: The mother of the voter is employed in the municipality”.

Even family conflicts do not escape the observing eye of the party: “Xxx is relative of xxx but they are not on speaking terms,” a note reads.

The Albanian Helsinki Committee, a rights group based in Tirana, underlined that systematic monitoring of voters by a political party may violate the secrecy of the ballot and is especially concerning if done without a voter’s consent.

On Friday, 12 rights organisations called on the authorities to investigate the matter after indicating that at least the law on the Protection of Personal Data had been violated.

“This case is the illegal collection, elaboration and distribution of personal data of some 1 million citizens without their consent,” the statement reads.

While scores of citizens are interested to know which Socialist Party official is tracking them, Big Brother Albanian style apparently does not lack a note of comedy.

In the database, Socialist Party head and PM Rama, is shown as a voter who works at the Councils of Ministers and is under the “patronage” of Elvis Husha, a party official. Husha is under patronage of another party official.

Journalist Andi Bushati, who first exposed the database, said chances are slim that the prosecutors will do their work. “I don’t really believe that the prosecutors will find the truth of this. When a crime appears, it remains without author,” he commented.

BIRN Launches Online Community to Connect Journalists

The Balkan Investigative Reporting Network launched a new cross-border journalism platform on Wednesday, aiming to connect more than 1,000 journalists who took part in BIRN’s programmes as fellows, trainees and grantees, as well as other journalists reporting on South-East and Central Europe.

BIRD Community offers a unique secure online environment in which to exchange information, as well as a comprehensive database and a rich contacts directory of experts across the Western Balkans.

The idea was the result of more than 15 years of experience in connecting journalists across the Balkans and beyond to produce complex regional analyses and cross-border investigations, as well as BIRN’s experience in providing comprehensive training in investigative reporting. 

The aim of BIRD Community is to make journalistic work much easier and take journalistic networking to the next level. By joining BIRD Community, journalists will get:

  • A secure environment in which they can easily reach out to BIRN’s team members and other colleagues from our alumni network across South-East and Central Europe.
  • Free access to BIRD Source, an easily searchable and comprehensive database with thousands of documents collected by BIRN over the years and exclusive data scraped from public registries and state institutions’ websites as well as information obtained through Freedom of Information requests. BIRD Source also offers journalists the opportunity to share their own documents and leaks, and has a tool that allows them to sketch a diagram online to summarise investigative findings with other journalists.
  • Access to BIRD Directory, with around 1,400 names and contacts of experts from Albania, Bosnia and Herzegovina, Kosovo, Montenegro, North Macedonia and Serbia.
  • Access to Forum in which journalists can easily communicate with other members, privately or publicly.
  • The opportunity to send requests for help, information and advice from other journalists by posting them in the Bulletin Board section. The responses from other members can be made visible to all users or can be kept private.
  • Updates on grants and training opportunities. 

Members can create public or private topics in the Forum section – the former will be visible to all members, allowing any of them to join the discussion, while with the latter, the creator can choose which members will be able to participate. 

The Bulletin Board section is a place to share opportunities with others, ask for help, swap contacts or find a journalist who specialises in a particular topic. In the Bulletin Board section, members can leave posts which can either be private or be seen by all other members. 

Once members subscribe to the posts and topics they want to follow on the Forum and Bulletin Board, they will receive an email each time there is an updates. 

BIRD Community is part of a broader platform that BIRN introduced last year, BIRN Investigative Resource Desk (BIRD) – an innovative interactive platform created for professional and citizen journalists who want to keep up-to-date with the fast-changing world of technology without sacrificing their ethics or the standards of professional journalism.

BIRD Community

Are you a professional journalist or a media worker looking for an easily searchable and comprehensive database and interested in safely (re)connecting with more than thousands of colleagues from Southeastern and Central Europe?

We created BIRD Community, a place where you can have it all!

Join Now