The Uruguayan government announced on Monday that it is investigating a “cybersecurity incident” that exposed the personal information of President Yamandú Orsi. The attack also included allegations of “political corruption” and threats against officials and politicians. The attack reportedly originated in Argentina.
The cyberattack targeted the website of the National Directorate of Civil Aviation and Aeronautical Infrastructure (Dinacia), which operates under the Ministry of Defense. According to an official statement, the site “is currently functioning normally.”
Investigation and Official Response
Following an in-depth analysis by the cybersecurity team of the Ministry of the Interior, no evidence of unauthorized access to the Public Security Management System (SGSP) was detected. Several media outlets had initially reported otherwise. The Institutional Communication Secretariat of the Presidency assured that “there is no data in its possession that is compromised.”
Meanwhile, the National Police’s cybercrime unit and the Agency for Electronic Government and Information and Knowledge Society (Agesic) are investigating the origin of the attack to determine responsibility.
Media reports claim that the Dinacia website was breached on Monday, with information extracted from the SGSP system the previous Friday.
Alleged Attackers and Online Claims
Local journalist Eduardo Preve stated on the social media platform X that “the attack originated from Argentina and was carried out by ‘La Pampa Leaks’ in collaboration with ‘BogotaLeaks’ and ‘Uruguayo1337,'” citing discussions on the hacking forum BreachForums.
Screenshots of the Dinacia website, circulated by multiple news sources, show images of President Orsi and Mauricio Papaleo, the director of security at Agesic. These images were allegedly taken from their official identification documents.
Additionally, President Orsi’s personal phone number was reportedly exposed but was not displayed in the publicly released material.
Message from the Hackers
A message accompanying the breach claimed that “Uruguay is worsening, with increasing political corruption, organized crime, and poverty, while the government focuses only on political agendas dictated by the 2030 Agenda and the World Economic Forum (WEF).”
The message continued: “We are tired of progressivism, the lies of politicians, and, most of all, the declining reputation of Uruguay. The country needs real leaders, not puppets.”
It also warned: “We have access to all addresses, SGSP records, classified information, and dossiers on every politician and public official. We know who they are, where they are, and they will pay for what they are doing to Uruguay.”
Security Measures and Official Statements
Leonardo Blengini, the director of Dinacia, explained to El Observador newspaper that the attack involved “a patch placed over the website,” describing it as a kind of “overlay image” rather than an actual system breach. He dismissed claims that hackers had gained internal access to the government portal.
Growing Concerns Over Cybersecurity in Uruguay
This cyberattack has raised concerns about Uruguay’s cybersecurity infrastructure and the potential risks associated with government data breaches. While officials have downplayed the severity of the attack, the exposure of sensitive personal information, coupled with the hackers’ threats, has triggered alarm within the political and security sectors.
As the investigation continues, authorities will need to strengthen cybersecurity measures to prevent future incidents and reassure the public about the safety of their personal data. Meanwhile, the origins of the attack and the motives behind it remain under scrutiny, as experts work to track down those responsible for the breach.