Ransomware victim disclosure
← All victimsAdministración Tributaria Provincial del Chaco (ATP)
listed as atp.chaco.gob.ar · Claimed by Projectrelic · listed 1 year ago
Status timeline
- ListedMay 2, 2025
- Data leakeddate unknown
At a glance
- Group
- Projectrelic
- Status
- Data leaked
- Country
- Argentina
- Listed on leak site
- May 2, 2025
About the victim
AI dossier — public-source company profileATP (Administración Tributaria Provincial) is the provincial tax authority for Chaco Province, Argentina. It administers tax collection, registration, and compliance for regional taxes including gross income tax (ingresos brutos), manages taxpayer records, and provides administrative and educational services to contributors.
- Industry
- Government – Tax & Revenue Administration
- Address
- Av. Las Heras 95, 3500 Resistencia, Chaco, Argentina
Attack summary
Severity: medium — Government tax authority breach with potential access to sensitive personal and financial taxpayer data at scale, but no proof files, exfiltration confirmation, or operational impact details are provided in the leak post. Classification reflects data sensitivity and potential exposure scope rather than confirmed disclosure.Projectrelic claims to have attacked the Chaco provincial tax authority. The leak post content is marked as AI-generated with no substantive claim details provided. No specific data exfiltration or encryption activities are documented in the available post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- taxpayer registrations
- tax identification numbers (CUIT)
- payment records
- personal identification documents
- government administrative records
Original description
AI-summarised, not from the leak postN/A
Sources
- Victim siteatp.chaco.gob.ar
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

