The Ministry of Economy of the Government of Brazil announced this week that the internal network of the National Treasury was impacted by a ransomware attack. Multiple government agencies are investigating the impact of the attack.
According to the Ministry of Economy, the ransomware attack was discovered on Friday night, but it is not known when the intrusion first took place. At present, the ransomware attack is being investigated by cyber security specialists from the National Treasury Secretariat and the Digital Government Secretariat.
“On Friday night (13) a ransomware attack on the internal network of the National Treasury Secretariat was identified. Containment measures were immediately applied and the Federal Police called.
“The effects of the criminal action are currently being evaluated by security specialists from the National Treasury Secretariat and the Digital Government Secretariat.
“In this first stage, it was evaluated that the action did not damage the structuring systems of the National Treasury Secretariat, such as the Integrated Financial Administration System (SIAFI) and those related to Public Debt. Sanitary measures are being taken. New information on the subject will be disclosed in a timely manner and with due transparency,” the Ministry said.
The government also issued a parallel statement along with B3, the Brazilian Stock Exchange, concerning the ransomware attack.
“The National Treasury Department and B3, responsible for the Treasury Direct operation, communicate that the ransomware attack suffered last Friday against the National Treasury Department’s internal network in no way affected the platform. Direct Treasure. Purchases and sales can still be carried out normally,” it said.
In recent times, a number of federal institutions in Brazil have been targeted by ransomware actors. For instance, In November last year, a ransomware attack struck Brazil’s Superior Court of Justice, enabling hackers to infiltrate the network and forcing authorities to shut down the network.
In June, Brazil’s largest medical diagnostics company Grupo Fleury also suffered a debilitating ransomware attack that forced it to take systems offline and initiate restoration operations. Bleeping Computer reported that the firm suffered a REvil ransomware attack, with the REvil gang demanding as much as $5 million in cryptocurrency. It is not known if a ransom was ultimately paid.