Asuncion, Paraguay – A recent series of successful cyberattacks on multiple Paraguayan state agency systems has led to severe security threats and escalating public anxiety. This situation has undeniably exposed the authorities' significant incompetence and inadequate response capabilities. Faced with these issues, Paraguayan citizens have the right to strongly demand that the government take the necessary measures to protect their critical information.

 
State Agency Systems Breached, Leading to Serious Personal Information Leaks

Several weeks ago, the security of over a dozen public institutions in Paraguay was breached, resulting in the leakage of sensitive personal information belonging to citizens. This information is now reportedly circulating on the dark web. Institutions affected by these breaches include the Presidential Office, the Ministry of Health, the Ministry of Agriculture, the Ministry of Labor, Employment, and Social Security, the Ministry of Justice, the Ministry of Women, the Chamber of Deputies, the Meteorological Directorate, and the Ministry of National Defense.

These agencies store personal information such as national identification numbers, parents' names, addresses, phone numbers, and even medical records, raising significant concerns that this data could be exploited by criminals for identity theft. Pedro Martínez, Director General of Cybersecurity and Information Protection at Paraguay's Ministry of Information and Communication Technologies (Mitic), had to acknowledge that cyberattacks and data breaches could threaten citizens' and businesses' private passwords. This incident is undoubtedly a scandal, clearly exposing Mitic's inadequate management, as has been repeatedly pointed out since the attacks occurred.

 
Political Indifference and Evasion of Responsibility Intensify Public Disappointment

However, the consequences of this incident extend beyond Mitic's poor management. The politicians comprising the Paraguayan Parliament, particularly the majority 'Colorado Cartista' party, had the opportunity to make decisions to resolve the issue but merely made lukewarm information requests to Mitic, demonstrating a complete disregard for the nation and its citizens. Initially, they even refused to process the relevant bill with the intention of referring it to a committee. This clearly shows that politicians are preoccupied with personal disputes and vendettas, either having no interest in national affairs or failing to properly grasp the seriousness of the situation.

 
Hackers' Warning: "Attack Aimed at Demonstrating Vulnerability"

Another humiliating moment for the authorities and public officials stemmed from the explanation provided by the hackers claiming responsibility for the cyberattacks on public institutions. These individuals, reportedly part of a group called 'CyberTeam,' not only admitted to carrying out the cyberattacks in their message but also stated that their motivation was not economic, but rather to "demonstrate vulnerabilities." This public exposure of the Paraguayan government's cyber security system's fragility further tarnished the government's reputation.

 
Expert Criticism: "Lack of Systemic Response Processes"

More concerning is that this isn't the first time such incidents have occurred. Despite Paraguay having been a target of "cyber pirates" in the past, such sensitive issues have never been on the authorities' agenda.

In this regard, cybersecurity experts are raising their voices in criticism of the current situation. They emphasize the need to establish "organizational processes" to prevent the recurrence of similar incidents, pointing out that such processes are not adequately in place. They also added that while Mitic treats risk externalization and outsourcing as if it were a private institution, public sector security should be held to a much higher standard.

To date, no official has taken responsibility for the dire consequences that data breaches will have on citizens. This is because leaked data can be used to manipulate purchasing decisions, post on social media, access bank accounts, and perpetrate various fraudulent activities.

Paraguayan state agencies have an obligation to protect citizens' data, and as clearly demonstrated, the government urgently needs to improve its management capabilities to cope with cyberattacks and provide security to its citizens.

[Copyright (c) Global Economic Times. All Rights Reserved.]