This morning, the websites of the Ministry of Health and ConecteSUS were down after an alleged hacker attack. In the early hours of the morning, a message was left by the attacking group saying that “you have suffered ransomware” and “50 TB of data have been copied and deleted”.
Ransomware is a type of virus that hijacks access to system data by encrypting it. Most of the time, the hacker promises to release access after paying a fee. However, this time, the ConecteSUS application was not affected, which is the platform responsible for issuing the Covid-19 National Vaccination Certificate.
The Lapsus$ Group took responsibility for the hacker attack and wrote: “Contact us if you want your data back” and so far, the Ministry of Health has yet to comment on the matter. Early on, around 6.40 a.m., the Ministry of Health and ConecteSUS websites were still down, but with one difference: the hacker group’s message had been deleted.
It’s worth remembering that in November 2020, the Superior Court of Justice (STJ) confirmed that it had been the target of a hacker attack that encrypted data and forced the court to suspend sessions and take its website offline. The attack did not reach the backup and preserved the blocked cases.
In September this year, the website of Anvisa (the National Health Surveillance Agency) was also hacked. The agency said that the attack was of the defacement type, i.e. changing the aesthetics of the web page, without altering data or impacting on the institution’s other systems.
Via Olhar Digital
