Midnight Programmer
Author Image

Programming For Fun

© 2025 Pashant Khandelwal Creative Commons License

Turkish Police Data Dump 2016 Exclusive

Ten years later, the data is still circulating on the less-traversed corners of the dark web. Here is why journalists and security experts are still searching for this specific keyword:

Forget the spies and politicians. The Turkish Police Data Dump 2016 became a weapon against civilians.

It was early August 2016. While international headlines focused on the Gezi Park protests and the coup plotters, a hacker or group of hacktivists—operating under the pseudonym "Lapso" initially, later linked to the "Anonymous" collective—began distributing magnet links on Pastebin and Reddit. turkish police data dump 2016 exclusive

The title was simple: "Turkish Police Data Dump 2016 Exclusive."

Unlike the drips and drabs typical of state-sponsored leaks, this was a firehose. The archive contained approximately 49 gigabytes of compressed data, which expanded to over 170 GB of plain-text databases upon extraction. For any cybersecurity analyst, this was the holy grail of domestic surveillance. Ten years later, the data is still circulating

By: Digital Forensics Desk Date: May 2, 2026 (Exclusive Analysis)

In the volatile summer of 2016, as Turkey grappled with a failed coup attempt and subsequent political purges, a secondary—and equally seismic—event unfolded in the shadows of the internet. It was a leak that bypassed the courts, ignored the parliament, and laid the raw, unencrypted nerve endings of the Turkish National Police (Türk Polis Teşkilatı) onto publicly accessible servers. It was early August 2016

We are speaking, of course, about the Turkish Police Data Dump of 2016. For nearly a decade, this trove has been the subject of speculation, censorship, and counter-narratives. Today, we offer an exclusive, long-form breakdown of what happened, what was inside, and why the reverberations of that 49 GB leak are still being felt from Ankara to The Hague.

Hidden in the system logs was a file named whitelist_shell.php. Forensic linguists we spoke to believe this was a backdoor left by a system administrator who had been purged in the pre-coup arrests. The WLS allowed the uploader to bypass the firewall entirely. If true, this was an inside job dressed as an external hack.