Twitter has suspended a hacker who allegedly stole all data from the Argentine database containing the IDs and information of all 45 million citizens of the country.
One threat actor using the @aniballeaks handle said he had managed to hack into the Argentine National Register of Persons – also known as RENAPER or Registro Nacional de las Personas – and offered to post the data on a cybercriminal forum Selling.
The leaked data includes names, home addresses, birthdays, Trámite numbers, citizen numbers, government-issued photo IDs, work identification codes, and ID card issuance and expiration dates.
Originally, the hacker began leaking information from famous Argentines such as Lionel Messi and Sergio Aguero. But speaking to The Record, the hacker said he planned to release the information of “1 million or 2 million people” while looking for buyers who were interested in the data.
The hacker also tacitly confirmed how he managed to break into the National Register of Persons, stating that it was “careless employees” who gave them access to the system.
The Argentine government issued a statement on October 13 denying that the National Register of People was hacked. However, the statement also stated that a VPN was used by someone from the Ministry of Health to access the digital identity system just before the Twitter account leaked the first data on the high profile Argentines.
Tony Pepper, CEO of cybersecurity firm Egress, called the hack “monumental”.
“The black market in stolen data is big business and cyber criminals will stop at nothing to find their next big payday. Data is at risk, “said Pepper.
“With the data of millions at risk, Argentine citizens are now prime targets for follow-up attacks such as financial fraud, sophisticated phishing and scams aimed at stealing more personal information, identities and even their money.”