Antel TuID Digital Allegedly Breached Exposing 8GB of Data From the Uruguayan State Telecom’s E-Government Platform
Threat actor LaPampaLeaks claims breach of Antel's TuID Digital identity platform, exposing 8GB of Uruguayan citizen
Summary
A threat actor operating under the handle LaPampaLeaks claims to have compromised TuID Digital, Uruguay's state-owned telecom Antel's e-government digital identity platform, by obtaining an API key from Antel's backend infrastructure. The alleged breach exposes sensitive personal data on thousands of Uruguayan citizens—including national IDs, biometric validation status, contact information, and identity transaction records—as well as targeting records on police, government officials, journalists, and lawyers. The attacker released 8GB of internal files and API documentation, along with sample records demonstrating access to and potential ability to modify citizen identity data.
Full text
Breach Report · Uruguay Antel TuID Digital Allegedly Breached Exposing 8GB of Data From the Uruguayan State Telecom’s E-Government Platform A threat actor claims to have compromised TuID Digital, the digital identity platform operated by Uruguayan state-owned telecom Antel, by obtaining the API key stored alongside internal files on Antel’s server backend. They state they could view and modify the data of any citizen who completed an online procedure and effectively gain control over thousands of digital identities, releasing 8GB of internal files plus a sample of records on persons of interest including police, government officials, journalists, and lawyers. Post details Actor(s)LaPampaLeaks SectorGovernment / Telecommunications (state-owned) TypeData Leak with API key disclosure Format8GB of internal files plus JSON API responses PriceFree CountryUruguay Date06/05/2026 Compromised data CI (cédula de identidad) national ID First names, last names, middle name, full name Email address Phone number, prefix, cellphone Date of birth, gender Latest update timestamp Document type, serial number, country Mail and cellphone validation flags Security level and biometric validation status Identity signature transactions (idSignIdentityTx) Registration officer, revoked date, addresses City contract sign, location, department Identification expiry, registration authority signIdentityLegalPersonDto, signIdentityEnterpriseDto Accepted certificates, active PFCert, certificate issuance mode Mail token, password hash flag, register info Internal proposals, employee feedback, legal documents Technological infrastructure works, small databases Number portability records (Portabilidad numérica) Antel backend and frontend documentation TuID Digital API keys Screenshots 01 02 03 04 05 Want the non-blurred screenshots? Subscribe and check out the threat feed section. darkwebinformer.com/pricing
Indicators of Compromise
- malware — API Key Theft / Credential Compromise