A threat actor has allegedly claimed to possess administrative-level access to the Remote Desktop Protocol (RDP) of “gob.es,” the official domain of the Spanish government. This domain is a critical piece of national infrastructure, hosting various governmental services and information. The alleged breach, if confirmed, could represent a significant cybersecurity incident with far-reaching implications for the security of government data and operations.
According to a post on a hacking forum, the individual claims to have admin credentials and visibility over numerous computers within the Spanish government’s network. The actor is reportedly seeking assistance from other individuals with experience in escalating privileges to gain access to all computers on the network. This development raises serious concerns about the potential for unauthorized access to sensitive information and the possible disruption of governmental functions. The investigation into these claims is likely to be a high priority for Spanish authorities.
Allegedly Compromised Data/Access:
- Administrative RDP access to gob.es
- Visibility into multiple computers on the government network
- Potential for full network access and privilege escalation (as sought by the actor)
