Renaper: Eight employees have been investigated over data leaks, but the government denies a breach

Renaper: Eight employees have been investigated over data leaks, but the government denies a breach
National Register of Persons (Renewal)

The government has filed a criminal complaint against As a result of leaking information of at least 44 officials and public figures of knowledge in generalAmong them are Marcelo Tinelli, Lionel Messi, Maximo and Florencia Kirchner. As they explain from the National Registry of People (Renaper), it was not a hack despite their awareness that the improper use of A key given to a public body. In the investigation they targeted eight employees.

As detailed by Renaper, over the weekend Twitter user named @aniballleaksWhich was referred to the Minister of Security Anibal FernandezAnd He posted on that social network photos of 44 members of the DNI, including the president himself Alberto FernandezMarcelo Tenelli, Lionel Messi Maximo and Florencia Kirchnerand Elisa Carrillo, Sandra Arroyo Salgado, Alberto Nisman, Jorge Lanata, Nelson Castro and Alfredo Leoco.

The account was created on September 25 and in its first release provided “all personal data of the Gendarmerie, Army, Naval Prefecture, Navy, Air Force and Ministry of Defense 119,316 records”. But the data that set off the alarm in the government was when, on the morning of Saturday, October 9, it began publishing images of the DNI For more than 40 people, including, Gustavo Pelez, Juan Manzor, Santiago Cafiero, Oscar Barelli, Maximo and Florencia Kirchner, former presidents Macrista AFI Gustavo Arribas and Silvia Majdalani.

In addition, the user promised that he could sell “all the data in the national identity document about anyone in Argentina. This includes Photo, names, surnames, address, DNI processing number and everything necessary to create a false identity.” The DNI procedure number has become one of the most sensitive data due to its use in certain procedures with the state, such as, for remote procedures, in ANSES and in the CuidAR application.

Twitter user @aniballleaks leaked a DNI photo of Santiago Cafiero
Twitter user @aniballleaks leaked a DNI photo of Santiago Cafiero

As shown from Renaper to InfobaeThe alleged sale of personal data to 45 million Argentines could not be verified. However, “the computer security team queried 44 people in order to ascertain the last consumption made through the use of the digital identity (SID) system in the said profiles, Revealing that 19 photos were referenced at the same moment they were posted on Twitter from a VPN (Virtual Private Network) connection certified between ReNaPer and the nation’s health ministry.n, and all photos were recently consulted from the same contact.”

See also  Amazon has some great smartphone deals with Xiaomi, OnePlus, and Samsung

In the record, this connection could have caused “many single queries to the Renaper databases between 15:01 and 15:55 by the SID data validation service which, once the DNI and the person’s gender, goes back to the person consulting all The data printed in the national identity document, including the photo and other personal data, which were immediately uploaded to the social network Twitter, without the consent of its owner.

Twitter user @aniballleaks leaked Axel Kiselov's ID photo
Twitter user @aniballleaks leaked Axel Kiselov’s ID photo

For the case, the agency drafted a criminal complaint Tuesday to Federal Criminal and Correctional Court No. 11 Secretary No. 22 after discovering that, through the use of keys granted to public bodies, in this case the Department of Health, “photos leaked as belonging to personal proceedings that were Implemented in Renaper. From the agency of the Ministry of Interior it was confirmed that it was an improper use of the user or theft of the user’s password, and that the database was not subjected to any data breach or leakage”.

They also discovered that an individual authorized user had improperly used the identity verification service for personal purposes through a certificate approved by the National Department of Health, connected via the corresponding VPN, using their username and password.

In this sense, Renaper explained that the specialists conducted a preliminary analysis in which they ruled out “explicit, unauthorized entry into the systems or massive leakage of organism data.” In any case, Home Office Infobae recognized that there were eight people with this level of “access to the keys” but clarified: “They may have stolen the key and that’s why the IP address is being investigated”.

See also  Metacritic Implements 36-Hour Delay On User Critiques, To Ensure "Gamers Have Time To Enjoy"

Read on

How companies and public institutions verify the data of 45 million Argentines
In most RENAPER offices, there is no passport processing role for up to a month
Renaper will be open on Saturdays so young people can renew their DNI: requirements, venues and prices

Leave a Reply

Your email address will not be published. Required fields are marked *