Chile's Agencia Nacional de Ciberseguridad (ANCI) detected an infiltration in a public agency after a staff member's login credentials were stolen. Security Minister Trinidad Steinert described the alert as delicate and deferred the investigation to ANCI. The issue was resolved by closing accesses, though most circulating data stems from prior leaks.
On Friday, May 1, 2026, ANCI issued an alert about alleged malicious activity on public services and telecom platforms, based on intelligence reports. "No ha sido posible corroborar la autenticidad ni el alcance de la información que supuestamente habría sido comprometida," they stated in the notice.
On Sunday, May 3, interim director Michelle Bordachar confirmed in a T13 interview an infiltration in a public agency. She clarified it was not a hack of infrastructure, but "a person working at that institution had their username and password stolen and they entered impersonating them to take information." After notification, "they closed all accesses and the information leak stopped."
Bordachar stressed: "Quiero ser muy clara que de toda la información que está circulando una porción muy pequeña corresponde a información que fue exfiltrada ahora en los últimos días. Todo el resto es información que, lamentablemente, ya estaba dando vuelta antes." Minister Trinidad Steinert, at a press point that day, said it "es un tema que es delicado y, por lo tanto, necesitamos que se realicen las investigaciones respectivas por este departamento especializado."
Entities like BancoEstado, Fonasa, Registro Civil, and ClaveÚnica reported no impacts. BancoEstado stated there is "no afectación en los servicios, exposición de datos de clientes o alteración de información." Lawmakers voiced concerns over cybersecurity.
