The Superintendency of Tax Administration (SAT) reported this Tuesday, April 28, through a statement, that it maintains permanent monitoring of its institutional systems and that, so far, it has not recorded computer security incidents.
The institution indicated that the verification was carried out after publications about possible cyberattacks directed at the Tax Administration.
“The SAT maintains permanent monitoring of the institutional systems, in accordance with the provisions of the computer security protocols, which, at the moment, do not present any incident,” the entity noted on its social networks.
Likewise, the SAT called on the population to obtain information through its official channels.
The statements come in a context of alerts about computer attacks in public institutions and higher education centers.
The Ministry of Labor and Social Security (Mintrab) reported that it investigated an incident that occurred on Sunday, April 26 on the Your Employment platform, after reports on social networks about a possible hack and data leak.
According to Mintrab, the attack targeted the software that manages the platform. The entity explained that the incident was caused by the use of old API programming code, a vulnerability that has already been mitigated.
The ministry added that it temporarily disabled the portal to carry out investigations and that its teams continue to review the systems to prevent new incidents.
In the university sphere, the cybersecurity company Vecert Analyzer warned about an alleged attack on the Integrated Financial Information System (SIIF) of the University of San Carlos of Guatemala (Usac), which would have exposed bank data of workers.
According to the alert, the leaked information would include names, Unique Identification Code (CUI) numbers and payroll records corresponding to the years 2025 and 2026.
However, Marco Fuentes, head of the Data Processing Department of the USAC, stated: “It was determined that a cyber attack was registered today; Likewise, it was established that the systems, services and databases were not altered or manipulated.”
The official added that the access occurred through the reporting module, which contains public information.
Separately, the Dark Web Informer account indicated that the Rafael Landívar University (URL) would also have been the victim of a cyberattack, in which 84,620 photographs and personal data of students and professors would have been leaked.
Given these versions, the URL reported that it is analyzing the case and asked its community to only respond to the information disclosed through its official channels.
These facts add to an incident reported by the Ministry of National Defense (Mindef), which confirmed a computer attack on the portal of the General Directorate of Control of Arms and Ammunition (Digecam).
According to the institution, the attack occurred on April 7 and consisted of a denial of service that lasted for 13 hours, which allowed data to be extracted.