It's been a thing for a long while, including in the US and Europe.

But this is Argentina. The vulnerabilities were most likely put there deliberately by the security services, of course they don't want them exposed.