@JuanCPosadaA_@Luismola@juanmacias DDD va + allá de lo "técnico", táctico en la jerga: Hablaríamos de Entities, VO, Aggregates, Repositories etc.
DDD estratégico, que podría verse como la parte más teórica o de negocio, hablaríamos de Ubiquitous Language, Bounded Contexts, subdomains...
Leed a Evans y Vernon
🇪🇸 A threat actor is advertising an alleged dataset tied to Spain’s Agencia Tributaria electronic platform — the country’s official tax administration portal.
According to the listing, the exposed records allegedly include:
• full names
• DNI/NIE/CIF national identity identifiers
• birth dates
• residential information
• multiple phone numbers
• country/province data
• taxpayer-related metadata
• technical indicators/flags
And if authentic, this is exactly the kind of dataset cybercriminals love most:
high-confidence identity infrastructure.
Why?
Because government-linked identity datasets dramatically increase the effectiveness of:
• financial fraud
• tax scams
• identity theft
• synthetic identity creation
• banking impersonation
• social engineering
• telecom fraud
• SIM swapping
• account recovery abuse
One especially important point:
DNI/NIE identifiers are foundational identity attributes in Spain.
When attackers combine:
• national IDs
• phone numbers
• birth dates
• residence information
they can often build highly convincing fraud profiles.
And modern cybercrime is increasingly about:
identity correlation.
Not just “stealing passwords.”
Another major concern:
tax-related data carries unusually high trust value.
People panic when they receive:
• tax notices
• audit warnings
• refund alerts
• “missing payment” messages
Attackers know this extremely well.
So datasets like these can become fuel for:
• phishing campaigns impersonating tax authorities
• fake refund operations
• identity verification fraud
• malicious e-signature requests
• banking takeover attempts tied to tax filings
And yes…
some phishing emails now have better branding consistency than government portals themselves.
The listing also references:
• electronic certificates
• digital signatures
• taxpayer verification systems
which is particularly notable because trust ecosystems around digital identity infrastructure are now prime targets globally.
Governments increasingly rely on:
• centralized citizen identity systems
• e-government platforms
• electronic signatures
• digital tax workflows
which means compromise impact scales rapidly.
Another trend worth watching:
large citizen identity datasets are becoming strategic underground assets.
They are reused repeatedly across:
• fraud marketplaces
• credential stuffing ecosystems
• KYC bypass operations
• crypto onboarding fraud
• mule recruitment
• financial identity laundering
because verified identity data is now effectively a commodity.
At this stage, the authenticity and scope remain unverified.
However, organizations operating national-scale digital identity infrastructure should continuously monitor for:
• credential exposure
• unauthorized API access
• abnormal taxpayer queries
• identity enumeration activity
• phishing campaigns abusing government branding
• suspicious document verification requests
• e-signature abuse attempts
• underground marketplace activity targeting citizen records
Because once identity infrastructure data enters criminal ecosystems, the downstream effects can persist for years.
🇪🇸 #DDW #Intelligence #CyberSecurity #DarkWeb #Spain #DataLeak #ThreatIntelligence #IdentityTheft #Infosec #Fraud
@JaimeObregon Yo estoy tirando de Google Stitch y de ahí con lo que me saca y refino un poco lo tiro ahora mismo a deepseek-v4-flash luego seguiré con cursor el próximo mes.
PS: contentísimo con deepseek BTW
Les gens n'ont pas l'air de l'avoir compris, mais Soizig Le Bihan est une pure opération de trolling qui singe les tweets de Brivael.
Son pseudo Twitter est littéralement "Briviagra" et les gens interagissent avec ses tweets au premier degré 😭
El "Spec-Driven Development" con IA es una trampa.
Estamos repitiendo el desastre de las herramientas CASE de los 90: generar miles de líneas de "automatización espagueti" que nadie entiende.
El cuello de botella no es la velocidad al teclear, es la adquisición de conocimiento. 🧵👇
I am building Obsidian Reader because I wonder how the web would feel if it was designed solely around the reading experience.
There is so much cognitive burden that comes with every site having different layouts, fonts, ads, popups, cookie banners, engagement traps, etc.
@micael_gallego@JaimeObregon Esta hablando de documentación técnica o funcional, y tenemos las herramientas para cubrir todo lo que comentas: control de versiones, notificaciones / RSS ...
@_emmaj__@jorgevermore A ritmo de 4.35 ha corrido 1 hora 3 minutos
cambio de ropa + ducha + tomas de video ... ponemos 20 min como rápido?
Le quedan 37 minutos para gym y comer...
No se Rick
De software legacy a oportunitat estratègica: el punt de partida
👉 Primer de 6 posts: https://t.co/2XkxkWpw8m
Aquest és el primer d'una sèrie de 6 posts on parlaré de:
🔹 Refactoring
🔹 Domain-Driven Design
🔹 Arquitectura hexagonal
🔹 Gestió d’equip
#Refactoring#DDD#legacy
@itziar8g Que ens han fotut al carrer a 52, avui hem arribat a un pacte amb la empresa on almenys s'ha reconegut la improcedència, igualment lluny del que demanàvem inicialment. Més info https://t.co/uBJQHkNAHB