A hacker calling himself “Sosyopat” has issued a serious threat. He is demanding $50,000 from the company Partrunner Mexico in exchange for not publishing what he claims are two enormous databases: one containing information on more than 100 million people and another with data on 80 million.
The message was sent via Telegram, where the hacker warned that if he does not receive the money within three days, he will share all that information on clandestine cybercrime forums such as XSS and Cracked. “We will leak this data on all forums such as XSS and Cracked if our conditions are not met,” he wrote from his account.
He also made it clear that the files include the Partrunner database and mentioned that he has some 180 million citizen records in his possession, including names, personal data, and other sensitive information.
What data is at stake?
According to what Sosyopat shared, the hacker showed screenshots and fragments of several databases. What is worrying is that the information appears in plain text (i.e., without any protection) and he also showed an interface that allows people to be searched by name, age, street, and even occupation.
“Imagine what could happen if this system ends up in the wrong hands,” he said, making the level of risk clear.
He also said that he has not tried to contact the Mexican government, but instead went directly to Partrunner Mexico. “They didn't respond, and this is just the tip of the iceberg,” he said. According to him, it is not about attacking the state, but about making Mexican companies take responsibility for their data management. “We want them to fix their mistakes and pay for this irresponsibility” he said.
Sosyopat demands $50,000 to prevent the leak of data belonging to millions of Mexicans (Source: Publimetro México)
XSS: The dark web forum where it all began
Everything points to Sosyopat already being active on XSS, a well-known Russian forum in the world of cybercrime. It is an exclusive space where access to compromised systems, stolen databases, exploits, and all kinds of sensitive information are trafficked.
That's where one of his first posts was found, offering Mexican documents for $500. Among the items he was selling were driver's licenses, INE credentials, photos of cars, and even access to the Partrunner administration panel.
Shortly thereafter, the trail led to Telegram, where a bot linked to Sosyopat offered those same documents in a more accessible way: $3.30 per individual file and $7 for complete packages. That particular database included data on around 3,900 Mexican individuals.
Read more: Sale of Mexican Identities on Telegram for $134 Pesos
Partrunner Mexico and the data that was exposed
The hacker's main focus seems to be Partrunner Mexico, a logistics and shipping platform. According to Sosyopat, that's where he found a database with more than 20,000 IDs, many of them driver's licenses and vehicle documents. He claims that he took that information directly from their servers.
The message was clear: they have three days to pay $50,000. He even said that, if necessary, he could send proof to demonstrate that he has the data in his possession.
And he made it clear that, from his point of view, this is not just meaningless extortion. “There has to be a price for not respecting people's privacy,” he said, noting that his goal is for companies to face the consequences of mishandling the data of millions of people.
