Cybercriminals have carried out 'the largest personal data breach in the country,' exposing a wide-ranging document from a company on the Dark Web, containing personal databases from public entities, banks, and sensitive citizen information.
According to Noticias Argentinas, citing cybersecurity specialist Maximiliano Firtman, the criminals published November 2025 updates under the title: 'A Sudamerica Data data breach exposes over 1 TB of Argentine records.'
On the website, they stated: 'Sudamérica Data is an Argentine company that sells detailed reports on people and companies in Argentina. Unfortunately, on social media, a significant number of people have confirmed they have downloaded it and verified the information is there.'
Firtman called this 'a serious issue due to the type of information and because it is also updated. It's simply leaked information, public on the dark web.' He warned: 'Anyone with access to this can download it. It's a platform widely used by law enforcement to obtain information.'
In a more detailed description, they mentioned the company's owner: 'The owner is an active member of the Argentine Masonry and has contacts that provide him with the databases he sells, so I guess it's a good idea to expose him.'
To sell the content, they explained: 'The breach includes the source code of its websites, internal applications, and databases with sensitive information from Argentine citizens. It also includes information from ARCA or ANSES,' added the journalist.
'It also includes salaries, filed tax returns for social security contributions, including updates from October and some things from November. There is data that has never been leaked before,' concluded the journalist.
This company acted as a collector or purchaser of multiple databases. It was shut down by a court in 2023 but continued operating under the name 'Work Management.' Probably more than 1 TB.'
In an exhaustive description, the cybercriminals specified:
- A database of Argentine citizens from AFIP or ARCA (60,000,000 records);
- A database of vehicle ownership from DNRPA (75,000,000 records);
- Databases from ANSES (Laboral 2024, Laboral 2025) containing phones, emails, addresses, salaries, labor relations, etc., of citizens (176,000,000 records);
- A database of retirees and people receiving state subsidies.
They also emphasized that it also includes 'a database of citizens' cell phones, including companies (100,000,000 records); millions of email addresses collected for marketing campaigns, users, and internal data.'
Firtman referred to this as 'the largest personal data breach in the country' and, in dialogue with Noticias Argentinas, stated: 'According to what the criminal who published it says, the data seems to match a company called Sudamérica Data, which is like a Veraz (credit bureau) for requesting credit reports.'
'Therefore, they have their own databases, but sources also appear whose origin is clearly illegal. It's not just someone's phone number; it also includes the Central Bank's debtor registry. There is private information, such as that from the vehicle ownership registry, which contains the complete database, whether by license plate, ID, owner, or another factor.'
