Spain's Ministry of Science has partially shut down its IT systems following a reported cyberattack. This shutdown impacts several services used by citizens and companies, particularly administrative systems that manage sensitive data for researchers and students. The ministry described the situation as a "technical incident" but provided few details. However, a hacker using the alias ‘GordonFreeman’ claims responsibility and has published data samples as evidence of the breach. The hacker alleges they exploited a serious Insecure Direct Object Reference (IDOR) vulnerability to gain full administrative access. The leaked data reportedly includes personal records, email addresses, and official documents. Spanish media confirmed that a ministry spokesperson acknowledged the disruption is linked to a cyberattack, although officials have not yet provided specific information about the breach's scope or the measures taken to address it. In response to the incident, the Ministry has suspended all ongoing administrative procedures and will extend deadlines for affected processes in line with Article 32 of Law 39/2015. The forum where the hacker shared the leaked information is currently offline, and no alternative platforms have emerged with the data. BleepingComputer has reached out to the ministry for comments but has not received an immediate response.