Yeah - saw that.

It's likely that they don't know because according to the screenshot it is IDOR - i.e. unsecured, publicly accessible, file URLs. So it's not like someone hacked something, it was just sitting out there for anyone to download.

imagine, spanish tax agency not even know about the attack LOL

https://www.elperiodico.com/es/economia/20260202/hacienda-investiga-posible-ciberataque-comprometeria-126357593

DarthCoin

Hmm that screenshot looks like it is from breachforums (dot bf) but I cant find that post