From that email account ([email protected]) the criminals had been sending emails that distribute malware, similar to what was already reported by Segu-Info a month ago and that were detected by very few antivirus.
If this vulnerability is located on "a non-AFIP server," where is MY financial information stored? Who is responsible for MY information? What other vulnerabilities exist that allow a criminal to access MY information?
Beyond the fact that it is positive that users are informed about vulnerabilities, this type of warning only demonstrates how pathetic the management of information security is on Argentine government sites and throws away any excuse they try to wield from official entities, even creating a "new" National Program of Critical Information Infrastructures and Cybersecurity.
From Segu-Info, last February we warned about these and many other vulnerabilities in our article Viagra.gob.ar: matter of national security, but as always "before there are other urgent issues" and apparently much more urgent than the privacy of the information of Argentine citizens, even when all the related laws in force are being violated.
Cristian from the Segu-Info Newsroom
