More than 20 million people, including 7 million minors, were exposed to the leak, which was revealed by internet security firm vpnMentor during a routine project.
Ecuador is home to about 16.5 million people, meaning that the entire population could be affected. The additional several million may be because the leaked data also includes data on the deceased, according to the Ecuadorian Prosecutor General's Office.
At this stage it is not known exactly how many live Ecuadorians are affected.
According to a vpnMentor report published on Monday, the breach was found on an unsecured Miami server that appears to be owned by an Ecuadorian consulting and analysis company, Novaestrat.
The breach exposed a wealth of personal information about the millions affected ̵
1; their full names, date and place of birth, home and email address, national taxpayer identification and numbers, employment information and more.
Also leaked financial information, including bank account balance, balance and type of credit.
Even Wikileaks founder Julian Assange's information was found in the leaked pipe, the report said. Assange received political asylum and has lived at the Ecuadorian embassy in London from 2012 to this year.
VpnMentor reported the breach of Ecuador officials on September 11, the National Telecommunications Ministry reported. The violation was quickly closed, but the damage was done.
"Once data is exposed to the world, it cannot be undone," warned vpnMentor. "The database is already closed, but the information may already be in the hands of malicious countries."
The leak already exposes individuals and companies to the risk of identity theft, financial fraud, business espionage and other security threats, the report  Investigators detained William Roberto G., the legal representative of Novostrat, on September 16, 2019. ” data-src-mini=”//cdn.cnn.com/cnnnext/dam/assets/190917115357-ecuador-data-04-small-169.jpg” data-src-xsmall=”//cdn.cnn.com/cnnnext/dam/assets/190917115357-ecuador-data-04-medium-plus-169.jpg” data-src-small=”http://cdn.cnn.com/cnnnext/dam/assets/190917115357-ecuador-data-04-large-169.jpg” data-src-medium=”//cdn.cnn.com/cnnnext/dam/assets/190917115357-ecuador-data-04-exlarge-169.jpg” data-src-large=”//cdn.cnn.com/cnnnext/dam/assets/190917115357-ecuador-data-04-super-169.jpg” data-src-full16x9=”//cdn.cnn.com/cnnnext/dam/assets/190917115357-ecuador-data-04-full-169.jpg” data-src-mini1x1=”//cdn.cnn.com/cnnnext/dam/assets/190917115357-ecuador-data-04-small-11.jpg” data-demand-load=”not-loaded” data-eq-pts=”mini: 0, xsmall: 221, small: 308, medium: 461, large: 781″ src=”data:image/gif;base64,R0lGODlhEAAJAJEAAAAAAP///////wAAACH5BAEAAAIALAAAAAAQAAkAAAIKlI+py+0Po5yUFQA7″/>
The Ecuadorian authorities are already competing for a permit not the violation.
On Monday, prosecutors and federal police forces searched the home of Novaestrat's legal representative, William Roberto G., seized electronic equipment and computers. Later that evening, police found him and detained him in the northwestern province of Esmeraldas.
"It will be moved immediately so that the prosecutor of Ecuador can gather information in the course of the ongoing investigation," tweeted Interior Minister Maria Paula Romo.
"If confirmed that they violate the privacy of the Ecuadorians, it is a criminal offense to be punished," Telecommunications Minister Andres Michelena said on Twitter.
On Monday evening, Michelena stated that the bill for protection of personal data, which has been in operation for months, will be sent to the National Assembly within 72 hours .
This breach is not a data hack or cyberattack against government databases, according to a release on the Ministry of Telecommunications website. It adds that the security systems of government institutions have been updated and can identify and counter attacks and that Novaestrat may have committed this breach in cooperation with former government officials who had access to information.