Cyber Incident Victim: Ministerio de Desarrollo Social
Date:
Mar 2025
Location:
Uruguay
Summary
A cyber attackerleaked sensitive data from the Ministry of Social Development, including photos of almost three hundred Uruguayan citizens' identity cards and driver's licenses, email addresses and internal documents. The leaked material also contains reports on pregnancies among minors, detailing institutional responses, possible power imbalances, judicial proceedings and interventions by health, education and justice sectors, plus a document highlighting security obstacles that hinder the Family Accommodation Program's work in certain areas. The ministry, together with the national computer emergency response team, is investigating the breach and adhering to data protection regulations set by the personal data control unit.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
OnMarch 1, 2025, a cyber attacker posted on the BreachForums forum claiming to have exposed photographs of nearly 300 Uruguayan identity cards and driver's licenses, along with email addresses and other internal data obtained from the Ministerio de Desarrollo Social (Mides) network. The attacker also shared that they would soon upload access credentials to Mides systems. Among the leaked material were documents analyzing pregnancies in minors under fifteen years old across various localities, which included references to the possible age of the progenitor and descriptions of institutional approaches to each case. Additional leaked files detailed interventions by health, education, and justice sectors, noted judicialization of certain situations, and described the work of protection‑of‑infancy teams and psychosocial attention teams in those cases.
Another leaked document examined geographic areas in Montevideo and other departments where the Programa de Acompañamiento Familiar (PAF) teams encounter difficulties in circulation and work due to insecurity. The leaked material includes photographs of identity cards, driver's licenses, and email addresses of nearly 300 citizens. The pregnancy analysis document contains references to the possible age of the progenitor and notes on institutional approaches, health, education, and justice interventions, as well as mentions of judicialization and protection‑of‑infancy team involvement. The attacker’s statement about forthcoming access credentials indicates an intention to share further data. In response, Mides acknowledged the security incident involving exposure of information and confirmed that it is being investigated jointly with the Centro Nacional de Respuesta a Incidentes de Seguridad Informática (CERTuy). The investigation follows the established protocols of the Agencia de Gobierno Electrónico y Sociedad de la Información y del Conocimiento (Agesic). Mides stated that it will comply with the current personal data protection regulation defined by the Unidad Reguladora y de Control de Datos Personales (URCDP) and will update the public as the investigation progresses. The General Secretariat Directorate of the ministry will oversee adherence to these obligations.