Brazil’s Tribunal de Justiça do Estado do Rio Grande do Sul was hit with an REvil ransomware assault yesterday that encrypted worker’s information and compelled the courts to close down their community.
Tribunal de Justiça do Estado do Rio Grande do Sul (TJRS) is the courtroom system for the Brazilian state of Rio Grande do Sul.
The assault began yesterday morning when staff all of a sudden discovered that every one of their paperwork and pictures have been not accessible and ransom notes had appeared on their Home windows desktops.
Quickly after the assault began, the official TJRS Twitter account warned staff to not log in to the TJ community’s techniques regionally or through distant entry.
“The TJRS informs that it faces instability in pc techniques. The techniques safety staff advises inner customers to not entry computer systems remotely, nor to log into computer systems inside the TJ community,” tweeted the TJRS courtroom system.
REvil ransomware chargeable for the cyberattack
A Brazilian safety researcher referred to as Brute Bee shared a screenshot with BleepingComputer of staff sharing the ransom notes and discussing the assault between one another.
These ransom notes are for the REvil ransomware operation, which BleepingComputer has independently confirmed was chargeable for the assault.
BleepingComputer was advised that the REVil ransomware operation demanded a $5,000,000 ransom to decrypt information and never leak information.
In a translated audio recording shared with BleepingComputer, an individual described the assault as “horrible” and “the worst factor that ever occurred there,” with IT employees having a “hysterical stress assault” as they rush to revive 1000’s of gadgets.
This cyberattack shouldn’t be the primary ransomware assault on Brazil’s courtroom techniques.
This previous November, Brazil’s Superior Courtroom of Justice was attacked by the RansomEXX ransomware gang who started encrypting gadgets in the course of video convention courtroom periods.
On the similar time, web sites of different Brazilian federal authorities businesses have been offline, however it was not clear in the event that they have been shut all the way down to be protected or below assault.
This can be a growing story …
H/T Brute Bee