Breach Report · Mexico
Laboratorios CEFLO Allegedly Breached Exposing 21K Positive HIV, Syphilis, and COVID Test Results From the Mexican Lab
A threat actor describing themselves as specializing in “stealing medical data” claims to have breached Mexican clinical lab Laboratorios CEFLO, releasing the dataset for free out of stated retaliation after the lab allegedly ignored a paid pentest offer. The leak contains roughly 21,000 patient records flagged positive for HIV, syphilis (V.D.R.L.), COVID, and other tests, with samples showing full names, birth dates, and result types.
Post details
Actor(s)Alameda_slim
SectorHealthcare / Clinical laboratory
TypeData Leak
FormatCSV-style records
PriceFree (reply or upgrade gated)
Records~21,000 positive results
CountryMexico
Date06/05/2026
Compromised data
- Full names (nombre, apellidos)
- Date of birth (fecha_nacimiento) and age (edad)
- Phone number (telefono)
- Email (some)
- Test date (fechaalta) and result capture date
- Test type and abbreviation (HIV, V.D.R.L., etc.)
- Result (positive/negative)
- Internal IDs (id_resultado, id_perfil, id_paciente, id_usuario, id_examen)
- Status, comments, analyzer, autovalidation flags
- Recipient/destination data (destinatarios)
