Cyber Incident Victim: The Argentinian National Institute of Statistics and Census

The National Institute of Statistics and Census (INDEC) of Argentina announced via social media on December 5, 2022, that its website had been taken offline due to a virus affecting its hosting server and user validation system. The institute proactively disconnected affected systems to prevent further spread and protect other servers and data. According to subsequent reporting by Infobae, the virus had been detected within INDEC’s periodic backup system. During a scheduled backup execution on the night of December 4-5, the virus activated and encrypted the virtual machine responsible for authenticating internal users. This encryption event prompted INDEC to deactivate remaining servers as a precautionary containment measure, resulting in widespread service unavailability. The institute did not initially disclose whether data exfiltration or deletion occurred, focusing instead on system isolation and recovery efforts.

INDEC restored its website by the evening of December 5, following security testing across all systems to ensure data protection. The institute publicly apologized for service delays, emphasizing that the extended downtime was necessary to validate system integrity before reconnection. No ransomware group claimed responsibility for the incident, and INDEC’s communications characterized the event strictly as a “virus” without referencing extortion attempts or data leaks. Operational impacts were confined to temporary website inaccessibility and authentication disruptions for internal users, with no explicit mention of compromised statistical data or long-term operational consequences. The response prioritized containment through server isolation, backup system scrutiny, and phased reactivation after verification.