A hacker group known as Guacamaya has stolen classified government information from multiple military and government agencies in several Latin American countries.
Among the data stolen by a hacker group known as Guacamaya (Ara in Spanish) was a vast trove of emails from Mexico’s Defense Ministry that shed light on the country’s low resilience to cyberattacks due to a lack of investment and awareness.
The Guacamaya group claimed to have stolen six terabytes of data, including data related to the 2014 local police kidnapping of 43 students who were allegedly turned over to a drug gang to kill them.
News of the Defense Ministry’s data breach was confirmed by Mexican President Andres Manuel Lopez Obrador. He gave no details about the hack, merely stating that attackers exploited a change in the military’s IT systems.
The hack also revealed details about his medical condition of the president affected by a form of angina and the surveillance of the US ambassador to Mexico.
Recently, the Chilean Army’s Joint Chiefs of Staff suffered a data breach, giving Guacamaya hackers access to their emails and releasing more than 400,000 messages containing private information about the Army and Ministry of Defense. According to media reports, the security gap also affects the Chilean police.
The group also stole emails from the military in El Salvador, Peru and Colombia, as well as El Salvador’s National Police.
“It’s no coincidence,” he said.
According to Solano and other analysts consulted by Reuters, the vulnerability exploited by the hackers stems from a vulnerability discovered last year in a Microsoft server called ProxyShell.
Follow me on Twitter: @Security questions and Facebook
(security matters – chop, guacamaya)