Correos

Nov 14, 2022 — 1 min read

The data from correos.gob.bo, the Bolivian postal agency was put on sale by a seller with a good reputation on a popular hacking forum.

The seller also provided a sample of data and claimed to have 3 sql files, totalling 1.47 GB of data.

Source: https://www.databreaches.net/bits-n-pieces-trozos-y-piezas-5/

TPRM report: https://scoringcyber.rankiteo.com/company/correos

"id": "cor202781122",
"linkid": "correos",
"type": "Breach",
"date": "08/2022",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of a geographical region"

{'affected_entities': [{'industry': 'Postal Services',
                        'location': 'Bolivia',
                        'name': 'Correos Bolivia',
                        'type': 'Government Agency'}],
 'data_breach': {'data_exfiltration': 'Yes',
                 'file_types_exposed': 'SQL',
                 'type_of_data_compromised': 'SQL files'},
 'description': 'The data from correos.gob.bo, the Bolivian postal agency, was '
                'put on sale by a seller with a good reputation on a popular '
                'hacking forum. The seller also provided a sample of data and '
                'claimed to have 3 sql files, totaling 1.47 GB of data.',
 'impact': {'data_compromised': '3 sql files, totaling 1.47 GB'},
 'initial_access_broker': {'data_sold_on_dark_web': 'Yes'},
 'motivation': 'Financial gain',
 'threat_actor': 'Unknown seller with good reputation on a hacking forum',
 'title': 'Bolivian Postal Agency Data Breach',
 'type': 'Data Breach'}

Published by

Harshit Kaur Bhatia

Correos

Intelligence and Security Committee (ISC)

Meta

Gladney Centre for Adoption