Top Tweets for #TUID
@ADanielHill This is NOT #Trademark infringement.. UK Companies House registration number (11935300) is a Corporate Record, NOT a Registered #Trademark and grants zero IP rights.. Additionally, you can't trademark "Director Personal Info" anyways. #TuID #BCALTD https://t.co/7hutu6zIzH

You guys are smart - @TheBlueGem3 @MargTokar does this ring a bell ?? (Refer to say references to โNothing-Burgerโ #DataBreaches). Feel free to throw me a message: Iโve got some things to deliver to some folks <3
Literally - if @AlbertaNDP isnโt going to stand up for #Alberta, well - Iโve tried to report ( discrimination is a real thing here in these parts amongst some institutions/organizations/large Universitiesโฆ).
Happen to know anyone in sayโฆthe Military who I can drop some things off with? (Part of the reason why I cannot just โthrow it out to the public or anybody - so who else would be appropriate to responsibly disclose to?) @jsrailton @GCIndigenous @citizenlab @canada_disabled @ElectionsAB @YourAlberta @ABFedLabour @Treaty8FNA @CT6FN_ ??
La primera parte contiene los comentarios de #pampaleaks sobre lo que se informa.
Transparencia Radical o nada. ๐ก๏ธ๐ท TELEGRAM: https://t.co/USiSaT233d #Ciberseguridad #Uruguay #TuID #LaPampaLeaks #TransparenciaRadical #ProtocoloDelSilencio #CybermidnightClub #HackNotCrime
@Clavosenruta
@medsci_yb3r
@07Stigmas
@anakinswal
@ElQueNews
@faustozavala
@NJciprian
@bmdsa33
@AndresMurias
@MigueGaspar
@DigitalArmyio
@AndreBConte
@delunavintage
@0xToxSec
@SixxisD1344
@BLuef0x__
@delunavintage
@PacketWalker
@PerezComenale
@grazianopascale
@bmdsa33
@Belolo22
@ONVentu
@VECERTRadar
@TheHackersNews
@JackRhysider
@SixxisD1344
@bis3946
@delunavintage
@aldo_delgado
@JeffLiford
@Anonym_UY
@faustozavala
@DigitalArmyio
@FrancoBaci
@SBMcCallister
@unixdoss
@LizardSquadRyan
Tu identidad digital #tuid ahora es de todos.
"Tranquilos todos, aqui no ha pasado nada..."
https://t.co/BJ7iYK2Pg4
A quien le pertenece nuestra identida digital ahora?
๐จ ยฟQuiรฉn controla realmente la narrativa cuando se vulnera la identidad digital de todo un paรญs? ๐บ๐พ
Mientras las instituciones se escudan en el "Protocolo del Silencio" para minimizar la filtraciรณn de 8GB de TuID, los investigadores forenses independientes se convierten en la รบnica defensa ciudadana.
Mira nuestro nuevo video, La Anatomรญa Forense de un Encubrimiento, para entender cรณmo expertos como @ADanielHill combaten la opacidad estatal con #TransparenciaRadical y exponen los verdaderos riesgos sistรฉmicos.
La confianza pรบblica no se recupera con comunicados de prensa. ๐ก๏ธ๐ป
#RadicalTransparency
@urharmless
#TuID #LaPampaLeaks #Cybersecurity #DigitalIdentity #Uruguay #HackNotCrime
@grazianopascale
@AnonymousBsns
@bmdsa33
@SixxisD1344
@NickolasLiberal
@Belolo22
@ElQueNews
@delunavintage
@ONVentu
@YourAnonSurge_
@oovelma
@VECERTRadar
@liontarakos
@TheHackersNews
@LogicFails
@JackRhysider
@El_Ruso_Berrea
@davidbombal
@CoreRecon
#TUiD leak ...
๐จ Who really controls the narrative when a nation's digital identity is breached? ๐บ๐พ
When institutions hide behind the "Protocol of Silence" to minimize the 8GB TuID leak, independent forensic researchers become the public's only defense.
Watch our latest video, The Forensic Anatomy of a Cover-Up, to see how experts like @ADanielHill are fighting government opacity with #RadicalTransparency and exposing the true systemic risks to our digital immune system.
Public trust cannot be patched with a PR campaign. ๐ก๏ธ๐ป
#Cybersecurity #TuID #LaPampaLeaks #DigitalSovereignty #ProtocolOfSilence #HackNotCrime #CybermidnightClub
@ADanielHill Es totalmente absurdo la verdad ajaja
#PAMPALEAKS HARDCODED API KEYS DEL #TUID @ANTEL HACK:
"No hay nadie que dijo esto porque antel no se digna a decir que ni siquiera fue una vulnerabilidad muy complicada de explotar"
@grazianopascale @Contraviento_uy @PatriciaJMadrid @jmartinezjorge @VECERTRadar @GGILD1983 @ONVentura @YourAnonSurge_ @OOVelma @VECERTRadar @LizardSquadRyan @EricaReneeOwens @PerezComenale
<?php
header('Content-Type: application/json; charset=utf-8');
header('Access-Control-Allow-Origin: *');
define('API_BASE_URL', 'https://t.co/0O24NirJ7R');
define('OAUTH_CLIENT_ID', 'mobile_id');
define('OAUTH_CLIENT_SECRET', 'rigkepcuy---');
define('OAUTH_BASIC_AUTH', 'bW9iaWxlX2lkOn---');
function getOAuthToken() {
$url = API_BASE_URL . '/auth-server/oauth/token';
$data = 'grant_type=client_credentials';
Fue el Gobierno? El Ente del Estado? umm quien te da la informaciรณn menos alejada de la realidad? (los "cyber criminales").... En quien confรญas mas?
Nota: No soy Pampaleaks!
#PampaLeaks #CybermidnightClub #Ciberseguridad #Uruguay #TUID @ANTEL

Pero nos querรญan dar tranquilidad, aseguraban que no habรญa nada importante en lo que habรญan robado, ...
#Pampaleaks pone en venta datos de #TuId.
Seguridad cero en Antel.
Deberรญan remover a todos si son serios.
Lo peor ir te imponen el uso de TuId hasta para trabajar.
AntelDenadie
๐จ CYBER INTELLIGENCE ALERT: GOVERNMENT DOXXING - URUGUAY ๐บ๐พ
โ ๏ธ CRITICAL THREAT: SALE OF ACCESS TO STATE DATABASES AND LEAK OF YOUR DNIC AND YOUR IDENTITY (TuID)
[STATUS: UNDER INVESTIGATION / THREAT ACTOR]
The threat actor known as "lapampaleaks" has announced on clandestine networks and the Spear Forum the activation of a cyber intelligence and people reporting service specifically designed to track, profile, and exfiltrate private data of any Uruguayan citizen. As a technical demonstration, the attacker exposed the detailed identity dossiers of three high-ranking political and institutional figures in Uruguay, blaming the breach on security vulnerabilities at the Ministry of the Interior and the Agency for Electronic Government and the Information and Knowledge Society (AGESIC).
๐ค Actor: lapampaleaks
๐ฏ National Infrastructure Compromised:
Databases and reports from the National Directorate of State Intelligence (DNIC).
Integrated records from the Ceibal educational and connectivity platform.
Massive extraction (scraping) of data from Uruguay's official sovereign digital identity system, TuID.
Persistent active access within state networks.
๐ ANALYSIS OF TECHNICAL CAPABILITIES (MONITORING SYSTEM)
Visual evidence demonstrates that the actor does not possess a simple static text dump, but rather an interactive web-based intelligence query tool (Cyber Intelligence Tool with FastAPI) that consumes structured state data:
Relationship and Kinship Mapping: The developed backend includes specific endpoints such as /family and /familypro (Get Family Pro), allowing buyers to automatically track the target's entire family tree, romantic partners, children, and business associates.
Exposed Sensitive Information Fields:
Full names, photographs of official identification documents, private phone numbers, and personal email addresses (e.g., Gmail, Hotmail).
Financial credit scoring data, bank accounts, and financial institutions (e.g., Scotiabank, Itaรบ), along with tax debt history.
Precise geographical details: Department, tax address, and residential geolocation data.
Political Doxxing as Proof: To validate the authenticity of the compromised system access, the threat actor published confidential intelligence dossiers belonging to the former President of the Republic.
๐ STRATEGIC INTELLIGENCE NOTE
[VECERT ANALYSIS]: This incident represents a critical breach in the digital identity trust chain within Uruguay. By compromising or exfiltrating data from core systemsโsuch as TuID (which citizens use to authenticate themselves with banks, government ministries, and for notarial procedures)โthe attackers have not only violated privacy but have also enabled an ecosystem ripe for large-scale financial fraud, SIM swapping attacks, and identity theft for the purpose of opening fraudulent accounts. The claim of possessing "active access within state entities" suggests that the group may maintain persistence within internal government networks through compromised credentials or backdoors (WebShells) that have gone undetected by perimeter security teams.
๐ก๏ธ URGENT TECHNICAL MITIGATIONS AND RECOMMENDATIONS
๐ Endpoint Blocking and Invalidation: CERTuy and AGESIC infrastructure teams are urged to trace anomalous requests originating from local environments or APIs that match the exposed FastAPI structure (`/familiares`) in order to identify the source server and take it offline.
๐ Comprehensive Audit of the TuID System: Conduct an in-depth review of data exfiltration logs and batch requests on TuID and Ceibal servers to contain the data leak and revoke any compromised access tokens.
โ ๏ธ Stricter Identity Verification: Banking and telecommunications entities in Uruguay must cease relying on static data (such as ID numbers, family members' names, or addresses) as valid factors for verifying a customer's identity during remote or telephone-based transactions.
โก MONITORING AND ASSESSMENT
๐ Intelligence System: https://t.co/wk9bZJ2Nli
๐ก๏ธ Quickly assess your website's security at: https://t.co/YnDw1QjN9c
#CyberSecurity #Uruguay #Doxxing #TuID #Ceibal #DNIC #AGESIC #SpearForum #ThreatIntelligence #CiberAlerta #VECERT #Infosec #IdentityTheft #PrivacyLeak
![VECERTRadar's tweet photo. ๐จ CYBER INTELLIGENCE ALERT: GOVERNMENT DOXXING - URUGUAY ๐บ๐พ
โ ๏ธ CRITICAL THREAT: SALE OF ACCESS TO STATE DATABASES AND LEAK OF YOUR DNIC AND YOUR IDENTITY (TuID)
[STATUS: UNDER INVESTIGATION / THREAT ACTOR]
The threat actor known as "lapampaleaks" has announced on clandestine networks and the Spear Forum the activation of a cyber intelligence and people reporting service specifically designed to track, profile, and exfiltrate private data of any Uruguayan citizen. As a technical demonstration, the attacker exposed the detailed identity dossiers of three high-ranking political and institutional figures in Uruguay, blaming the breach on security vulnerabilities at the Ministry of the Interior and the Agency for Electronic Government and the Information and Knowledge Society (AGESIC).
๐ค Actor: lapampaleaks
๐ฏ National Infrastructure Compromised:
Databases and reports from the National Directorate of State Intelligence (DNIC).
Integrated records from the Ceibal educational and connectivity platform.
Massive extraction (scraping) of data from Uruguay's official sovereign digital identity system, TuID.
Persistent active access within state networks.
๐ ANALYSIS OF TECHNICAL CAPABILITIES (MONITORING SYSTEM)
Visual evidence demonstrates that the actor does not possess a simple static text dump, but rather an interactive web-based intelligence query tool (Cyber Intelligence Tool with FastAPI) that consumes structured state data:
Relationship and Kinship Mapping: The developed backend includes specific endpoints such as /family and /familypro (Get Family Pro), allowing buyers to automatically track the target's entire family tree, romantic partners, children, and business associates.
Exposed Sensitive Information Fields:
Full names, photographs of official identification documents, private phone numbers, and personal email addresses (e.g., Gmail, Hotmail).
Financial credit scoring data, bank accounts, and financial institutions (e.g., Scotiabank, Itaรบ), along with tax debt history.
Precise geographical details: Department, tax address, and residential geolocation data.
Political Doxxing as Proof: To validate the authenticity of the compromised system access, the threat actor published confidential intelligence dossiers belonging to the former President of the Republic.
๐ STRATEGIC INTELLIGENCE NOTE
[VECERT ANALYSIS]: This incident represents a critical breach in the digital identity trust chain within Uruguay. By compromising or exfiltrating data from core systemsโsuch as TuID (which citizens use to authenticate themselves with banks, government ministries, and for notarial procedures)โthe attackers have not only violated privacy but have also enabled an ecosystem ripe for large-scale financial fraud, SIM swapping attacks, and identity theft for the purpose of opening fraudulent accounts. The claim of possessing "active access within state entities" suggests that the group may maintain persistence within internal government networks through compromised credentials or backdoors (WebShells) that have gone undetected by perimeter security teams.
๐ก๏ธ URGENT TECHNICAL MITIGATIONS AND RECOMMENDATIONS
๐ Endpoint Blocking and Invalidation: CERTuy and AGESIC infrastructure teams are urged to trace anomalous requests originating from local environments or APIs that match the exposed FastAPI structure (`/familiares`) in order to identify the source server and take it offline.
๐ Comprehensive Audit of the TuID System: Conduct an in-depth review of data exfiltration logs and batch requests on TuID and Ceibal servers to contain the data leak and revoke any compromised access tokens.
โ ๏ธ Stricter Identity Verification: Banking and telecommunications entities in Uruguay must cease relying on static data (such as ID numbers, family members' names, or addresses) as valid factors for verifying a customer's identity during remote or telephone-based transactions.
โก MONITORING AND ASSESSMENT
๐ Intelligence System: https://t.co/wk9bZJ2Nli
๐ก๏ธ Quickly assess your website's security at: https://t.co/YnDw1QjN9c
#CyberSecurity #Uruguay #Doxxing #TuID #Ceibal #DNIC #AGESIC #SpearForum #ThreatIntelligence #CiberAlerta #VECERT #Infosec #IdentityTheft #PrivacyLeak](https://pbs.twimg.com/media/HImhTM4WMAAH5nQ.png)
#Uruguay El grupo #lapampaleaks publico en un foro de UnderGround la venta de acceso a bot que incluye la consulta a la mayoria de BD estatales del pais, incluyendo los datos del reciente incidente de #Antel #TuID-

The LaPampaLeaks breach of Uruguay's TuID
#LaPampaLeaks #TuID #Antel #AGESIC #Uruguay #Cybersecurity #DataBreach #DigitalIdentity #RadicalTransparency #CybermidnightClub #HackNotCrime
Last Seen Hashtags on Sotwe
gooner
Seen from Argentina
solo89
Seen from Thailand
เธเนเธฒเธฃเธงเธเธเธฑเธเธงเนเธฒเธง
Seen from Thailand
exny xlii**video
Seen from Jordan
zelal
Seen from Turkey
NoLimit()
Seen from Turkey
nolimit ()+filter:native_video
threotriathlon
Seen from Kenya
nolimit()+nolimit()+nolimit()+filter:native_video
Seen from Germany
texture
Seen from Italy
Most Popular Users

Elon Musk 
@elonmusk
240.6M followers

Barack Obama 
@barackobama
119.2M followers

Donald J. Trump 
@realdonaldtrump
111.7M followers

Cristiano Ronaldo 
@cristiano
110.6M followers

Narendra Modi 
@narendramodi
107M followers

Rihanna 
@rihanna
97.6M followers

NASA 
@nasa
92.2M followers

Justin Bieber 
@justinbieber
90.9M followers

KATY PERRY 
@katyperry
87.6M followers

Taylor Swift 
@taylorswift13
81.5M followers

Lady Gaga 
@ladygaga
73M followers

Virat Kohli 
@imvkohli
69.9M followers

Kim Kardashian 
@kimkardashian
69.8M followers

YouTube 
@youtube
68.7M followers

Bill Gates 
@billgates
63.9M followers

Neymar Jr 
@neymarjr
62.6M followers

The Ellen Show
@theellenshow
62.4M followers

CNN 
@cnn
61.9M followers

X 
@x
60.8M followers

Selena Gomez 
@selenagomez
60.7M followers















