THREATNOIR
Subscribe
Back to Feed
BreachesMay 27, 2026

🚨🇪🇸 Spanish public payroll panel allegedly offered for sale A threat actor claims to have acc...

Spanish threat actor claims access to 371 payroll accounts on public management portal for sale.

Read at source

Summary

A threat actor is allegedly offering access to 371 payroll accounts on a Spanish public management portal, claiming the ability to modify bank deposit details for SEPA payroll payments. This represents a critical breach of Spanish public sector infrastructure with potential for widespread financial fraud and employee wage theft.

Indicators of Compromise

  • malware — Spanish public payroll portal compromise

Entities

SEPA payroll system (technology)Unknown Spanish payroll portal attacker (threat_actor)