A well-known hacker is back in the game... and now offers hacking services on demand. Eternal (also known as Holistic-K1ller) is no novice in the world of cybercrime in Mexico. This old acquaintance is back and has launched a hair-raising service: customized hacks to infiltrate Mexican government systems.
The most alarming thing? He is openly offering it on a cybercriminal forum. Literally anyone can approach him and ask him to attack a specific institution, a particular platform, or even an individual account. It's like ordering food delivery, but instead of tacos, you're ordering a cyberattack.
In his post, Eternal explains that his “service” is 100% customized. The customer can select exactly what they want to compromise: domains, users, platforms... whatever. And it's not limited to Mexico: he also offers attacks targeting international targets.
From federal government entities to state and municipal servers, Eternal promises access to whatever you ask for: active credentials, administrative access, confidential data, and more. But this isn't just about getting a list of passwords leaked on the internet. It goes much further than that.
The hacker claims they can:
Access critical infrastructure.
Set up highly targeted phishing campaigns.
Map entire institutional networks.
And extract large amounts of sensitive information.
It all depends, of course, on what you ask for and how much you are willing to pay. Because yes, the price varies depending on the level of difficulty and the type of access you are looking for.
To show off what it is capable of, Eternal did not hesitate to release a “free sample”: it published credentials that, according to it, belong to institutions in the state of Nuevo León. And note that it did not choose that state at random. Nuevo León has been one of the states most affected by cyberattacks so far this year.
And this is not something new or isolated. In the first few months of 2025 alone, several databases containing sensitive information about citizens and officials in that state have already been leaked. Many of them ended up for sale on underground digital forums.
Among the most high-profile cases is the massive leak of the INE's electoral roll in that region, as well as employment databases from the local Labor Secretariat and even academic data on students and staff at the UANL.
The hacker Eternal offers customized hacks against Mexican government systems (Source: Publimetro Mexico)
Read more: Servoescolar Hacked in Mexico: One Million Students at Risk
As part of its “show of force,” Eternal shared several sample files showing active credentials from various Nuevo León government agencies.
Among the most sensitive: access to the state judiciary, with institutional emails from the pjenl.gob.mx domain and passwords that still work. It also exposed accounts of officials from the Attorney General's Office, including emails, internal portals, and records related to judicial system suppliers.
But that wasn't all. The package also includes access to state government platforms, such as Declaranet (the asset declaration system), authentication modules, and institutional accounts with nuevoleon.gob.mx emails. In some cases, there are even absurdly common passwords or personal codes that could be associated with cell phones or devices used by public servants.
The name Holistic-K1ller is not new to those who closely follow the world of cybersecurity in Mexico. In recent months, he has been behind some serious leaks, including one in which he published private information about President Claudia Sheinbaum: addresses, phone numbers, emails, and even details about her family. This guy not only knows what he's doing, but he's clearly willing to cross all lines.