A hacker from the HellCat ransomware group is threatening to leak 106GB of sensitive data allegedly stolen from Telefónica, one of Spain’s largest telecommunications companies.
Telefónica has not confirmed the breach.
The hacker, known online as “Rey,” shared a 2.6GB sample leak, which expands into 5GB and contains over 20,000 files. The files reportedly include internal emails, tickets, customer records, purchase orders, and employee data from multiple countries, including Spain, Germany, Peru, Argentina, and Chile.
Rey claims the breach happened on May 30 and that they had 12 hours of full access before Telefónica’s security team cut off the connection. According to the hacker, the breach was possible due to a Jira server misconfiguration — the same kind of issue used in a previous breach in January.
BleepingComputer reached out to Telefónica and several top executives but received no official response. A Telefónica O2 employee dismissed the claims, suggesting the leaked data might be from an old incident. However, some leaked email addresses still belong to active employees, which raises doubts about the company’s denial.
To pressure Telefónica, Rey said they will release the full file tree and may leak all 106GB if the company continues to stay silent. The leaked data was originally shared via PixelDrain, but the links were later removed. The files are now being shared on other platforms, including some flagged as unsafe by Google Chrome.
If this article helped you, please consider supporting our work. Every small contribution keeps Abijita.com independent and running.
Until Telefónica issues an official statement, it remains unclear whether the data is new or part of a past breach. Either way, the leak has raised serious concerns about data security and transparency.
