Cyber Incident Victim: Peruvian Congress of the Republic

In early August 2022, personal information belonging to workers, advisers, pensioners, and legislators of Peru's Congress of the Republic appeared on Scribd, a document-sharing platform. The leaked dataset contained full names, national identity document numbers, job positions, personal and corporate email addresses, and mobile phone numbers of individuals associated with the parliamentary body. The exposure occurred through documents uploaded under an undisclosed account name, accessible to the public on the platform. Shortly after the data appeared online, multiple congressional staff members and parliamentarians began receiving suspicious text messages targeting their mobile devices. These messages represented attempted phishing operations designed to compromise recipients' devices, though specific technical details of the attack vectors were not disclosed in available reports. The timing and content correlation between the leaked data and subsequent phishing campaigns suggested threat actors exploited the exposed information to craft targeted social engineering attacks. Diario Correo, a Peruvian news outlet, verified the authenticity of the leaked records through direct examination of the Scribd documents. The publication withheld the exact name of the uploaded file containing the dataset, citing security considerations. No initial claims of responsibility by any hacking group or disclosure of the leak's origin method (such as breach or insider threat) were reported at this stage.

The unauthorized disclosure directly enabled malicious actors to conduct precision phishing operations against high-value legislative targets. By leveraging accurate personal and professional contact details, attackers increased the perceived legitimacy of their messages to trick recipients into compromising device security. While the full operational impact—such as confirmed account takeovers, malware infections, or secondary data theft—remained unspecified, the incident demonstrated immediate risks to congressional communications integrity and individual privacy. The phishing attempts specifically targeted mobile devices, indicating potential objectives related to intercepting communications or installing surveillance tools. No public statements from congressional cybersecurity teams or law enforcement regarding containment measures, forensic investigations, or takedown efforts targeting the leaked documents were reported in the immediate aftermath. The incident exposed systemic vulnerabilities in the protection of sensitive legislative personnel data, with consequences extending beyond privacy violations to active exploitation for cyber-enabled attacks against government institutions.