DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

El Salvadoran database raises questions of possible political intrigue

Posted on August 21, 2023 by Dissent

A database listed for sale on a popular hacking forum may raise some political questions for El Salvadorans.

On August 16, a listing offered 114GB of files with facial photos and 5.1 million records with El Salvadorans’ “full name, dui, date of birth, address, telephone, email and hd photo of the face.”

The listing showed facial photos without names. Image: DataBreaches.net.

DataBreaches was contacted by someone affiliated with the hack and provided with access to the records in a text file. The data, initially described to DataBreaches as a vaccination database, did not appear to have any actual health data, and on inquiry, the contact admitted that the team had assumed the data were vaccination records, but now it was not clear. To add to the confusion, the data had not even been exfiltrated from any government health agency — or any government agency at all, for that matter.

“There was a backup in the cloud of a member of the government,” the contact told DataBreaches. When asked, he said that the member was Alejandro Muyshondt, a former national security advisor. The contact’s team claims they had access to Myshondt’s mega.nz account months ago and downloaded the data then. They never contacted him or the government to attempt to ransom it, however.

“They put him (Muyshondt) in jail a few days ago for being a double agent and allegedly leaking classified information,” the contact informed DataBreaches. Why Muyshondt would have had this particular dataset and whether it had been shared improperly with anyone prior to this forum listing is unknown to DataBreaches, as is the original source of the dataset.

The El Salvadoran listing is one of two El Salvadoran databases listed on the same hacking forum. The second, and earlier one, is a leak of data involving the El Salvadoran police, which is listed by a different forum user.

Both listings, however, have something in common. Both hacks are the work of the same group of hacktivists known to DataBreaches as “FocaLeaks.”  DataBreaches  reported on their El Salvadoran police data breach in September of 2021.

In February of 2022, FocaLeaks also announced that they were in the process of doxing all government politicians and were uploading the data to the Internet Archive. The project was announced on Twitter in a non-suspended account:

Empezamos la jornada con una f1ltr@c10n que nos pasaron que contiene la info de todos y cada uno de los diputados, espero les sirva para sus investigaciones.
Parte 1, contacto: [email protected]

https://t.co/eiLBuWDTN3 #elsalvador #nuevasideas #sv #politica #nayib #sivar pic.twitter.com/fyAykgQtg9

— FocaLeaks (@foca_leaks) February 28, 2022

The newest listing is the first time DataBreaches has seen FocaLeaks try to sell data instead of just leaking it.

Inquiries to the country’s health agency went unanswered, and it is not clear to whom further inquiries might even be addressed at this point as the security advisor is detained.

So why was the president’s National Security Advisor in possession of this data set and why had it been uploaded to Mega.nz? Was there any connection to any of the alleged wrongdoing by the national security advisor?  DataBreaches will update this post if more information becomes available.

Related posts:

  • FocaLeaks claims to have hacked El Salvador Police, gained access to records on civilians, agents, and criminal investigations
  • Confused about the drama with the new BreachForums? Reading this will either help you or make your head spin.
  • Operation Anti Security Breakdown and targets, the full time line
  • El Salvador PNC confirms investigation of FocaLeaks
Category: Breach IncidentsHackNon-U.S.

Post navigation

← MS: Potential cyberattack throughout Singing River Health System
FL: Data breach under investigation involving Gadsden County court records →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Horizon Healthcare RCM discloses ransomware attack in December
  • Disgruntled IT Worker Jailed for Cyber Attack, Huddersfield
  • Hacker helped kill FBI sources, witnesses in El Chapo case, according to watchdog report
  • Texas Centers for Infectious Disease Associates Notifies Individuals of Data Breach in 2024
  • Battlefords Union Hospitals notifies patients of employee snooping in their records
  • Alert: Scattered Spider has added North American airline and transportation organizations to their target list
  • Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Supreme Court Decision on Age Verification Tramples Free Speech and Undermines Privacy
  • New Jersey Issues Draft Privacy Regulations: The New
  • Hacker helped kill FBI sources, witnesses in El Chapo case, according to watchdog report
  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.