Brazilian courts hit by REvil ransomware attack
The ransomware group REvil attacked the judicial network of the Brazilian state of Rio Grande do Sul, encrypting files on computers, leading to the suspension of courts.
The attack took place on April 28th. In a Twitter post, representatives of the Tribunal de Justiça do Estado do Rio Grande do Sul (TJRS) notified of the incident and advised: “internal users not to remotely access a computer or log into computers on the TJRS network”.
⚠️ O TJRS informa que enfrenta instabilidade nos sistemas de informática. A equipe de segurança de sistemas orienta aos usuários internos a não acessarem os computadores de forma remota, nem se logarem nos computadores dentro da rede do TJ.#TJRS pic.twitter.com/2mnMwdMROI
— tjrsoficial (@TJRSoficial) April 28, 2021
According to a media outlet, the ransomware group demanded $ 5 million for the data recovery. It is not yet known whether negotiations are underway with the attackers.
Earlier, the group published on its website on the darknet a number of screenshots of documents allegedly stolen from one of the leading Japanese construction companies Kajima Construction Corporation. The ransomware demanded that the company buy back the data before May 1 of this year.
See how to protect yourself here