Cyber Incident Victim: Provincia de Santa Fe, Argentina
Date:
Mar 2024
Location:
Argentina
Summary
The Comuna de San Agustín suffered a cyberattack resulting in unauthorized access to its financial accounts and the theft of approximately 20 million pesos through multiple transfers. The local government detected the breach upon resuming operations, prompting immediate reports to law enforcement and financial institutions. Stolen funds, intended for supplier payments and salaries, threaten critical operations, potentially disrupting wage disbursements, public services, and infrastructure projects. Authorities are collaborating with cybersecurity experts to investigate the incident and strengthen defenses, while the institution faces significant financial strain if recovery efforts fail. Community welfare commitments remain a priority amid ongoing crisis management.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 2 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On March 29, 2024, the Comuna de San Agustín in Santa Fe Province, Argentina, experienced a cyberattack resulting in the theft of approximately 19-20 million Argentine pesos from its central bank account. Attackers executed four unauthorized transfers of 4.9 million pesos each, totaling 19.6 million pesos, during business hours on Friday. They attempted two additional transfers that failed due to insufficient remaining funds. The intrusion remained undetected until Monday, April 1, when administrative staff resumed normal operations and discovered the discrepancies. Comunal President Cristian Osta immediately filed a criminal report with the local police station in San Agustín and notified the Banco de la Provincia de Santa Fe (NBSF SA) branch in Franck, where the compromised account was held. Authorities from the fiscalía and the Policía de Investigaciones (PDI) were also formally alerted to initiate an investigation.
The stolen funds were designated for operational expenses, including salary payments to municipal employees, settlements with local suppliers, and planned public works projects. Financial records confirmed the illicit transfers drained resources critical for maintaining essential community services. Osta emphasized the institution had no prior history of such security breaches, noting the attack jeopardized the Comuna’s ability to meet its financial obligations. If unrecovered, the loss could disrupt wage disbursements, delay infrastructure projects, and impair routine municipal services. In response, the Comuna collaborated with NBSF SA to attempt fund recovery through banking protocols while cybersecurity experts assisted law enforcement in analyzing the attack vector and identifying perpetrators. The administration committed to public transparency, issuing official communications via social media and pledging to strengthen digital defenses to prevent future incidents. Ongoing coordination with judicial and financial authorities continued as of April 1 to mitigate operational impacts and restore fiscal stability.