What Happened
In March 2026, specifically around March 29-30, the Spanish educational platform Integratek (associated with integratek.es) suffered a data breach when the threat actor group RuskiNet exfiltrated and began distributing 84,000 user records on a hacker forum, likely via an unpatched vulnerability in the platform’s Content Management System (CMS) or exposed SQL backend. The exposed data included sensitive professional personally identifiable information (PII) such as full names, verified email addresses, and country-level geographical metadata for educators and specialists in the educational innovation sector, enabling risks like spear-phishing, credential stuffing, and vishing attacks. This incident, described as a “Tier 1” strategic threat, eroded trust in Integratek’s web application security and could prompt investigations by Spain’s Agencia Española de Protección de Datos (AEPD) under GDPR, with recommendations for users to reset credentials and enable hardware-based MFA. No exact breach date in 2026 was specified in the query, but intelligence surfaced in late March.
