Overview
- Cyberintelligence firm Hackmanac flagged a dark‑web post by a user called 'HaciendaSec' claiming access to an updated taxpayer database covering 47.3 million people.
- The Finance Ministry confirms the claim is being reviewed and says security protocols are active, with no indications of intrusion so far.
- Spain’s state cybersecurity services, including CCN‑CERT under the CNI, are investigating and coordinating verification efforts.
- Investigative sources report inconsistencies in the attacker’s sample and note the forum thread offering the data has been removed, leaving authenticity in doubt.
- The purported trove includes DNIs, contact details, IBANs and tax records, and a separate alert concerning the Science Ministry remains unconfirmed.