A threat actor claims to have breached the Spanish traffic management website, sede.dgt.gob.es. According to the claim, the attacker is offering access to a database containing information on 1.6 million users, including details about their cars and online activities. The data is being sold for $2000, with a base price plus access to the database.
The compromised data includes numerous fields such as user identification numbers, names, surnames, address details, car registration information, vehicle types, and specifics about traffic infractions. Additional data points cover dates, times, and locations of infractions, descriptions, inspector details, resolution codes, and payment statuses. The dataset allegedly also contains timestamps and various administrative records.
The company implicated in this breach provides services related to managing fines and sanctions. Users can handle a range of tasks through this service, including paying fines, requesting refunds, submitting appeals, identifying offending drivers, and checking public notices for unnotified sanctions.
