Sunday, January 17, 11:07
Home security Brazil Supreme Court: Victim of RansomExx ransomware

Brazil Supreme Court: Victim of RansomExx ransomware

The Supreme Court of Brazil he fell victim ransomware attack (RansomExx) during a court hearing by teleconference.

"The Supreme Court (STJ) announces that its technology network has been hacked attack on Tuesday afternoon, during meetings", Said the President of STJ, Humberto Martins, on the site of the Federal Supreme Court.

The government is working to restore them systems and the restoration of all judicial services as soon as possible.

The Brazilian journalist Mateus Nunes told BleepingComputer that other Brazilian government service sites are offline. However, we do not know if the same criminals attacked these sites separately or if they are somehow connected to the hosting systems and the website of the Court.

The systems are offline

Its systems Superior Court of Justice (also known as STJ) shut down to stop the spread of ransomware throughout the network of the court, but many court documents and backups had already been encrypted.

The site and systems of the Supreme Court are still offline, three days after the ransomware attack. It is said that they will start working again when all the systems are fully restored.

"A Domain Admin account was abused, which allowed an attacker to gain access to our servers, log in to virtual environment management teams, and finally encrypt part of our virtual machines.Said one of the IT technicians.

According to the Brazilian Supreme Court, all litigation, both virtual and / or teleconferencing, will be suspended or annulled until the safety of the court.

In addition, the IT department of the court proposed to all users, including judges, trainees and external collaborators, not to use their computers, even personal ones, if they are still connected to the court network.

The RansomExx gang ransomware behind the attack

Brazil's Supreme Court has not named the ransomware gang responsible for this attack, but one of the ransom notes found on an encrypted computer shows the hackers of RansomExx ransomware.

According to an anonymous source of Bleeping Computer, its systems Pernambuco State Court (Tribunal de Justiça do Estado de Pernambuco - TJPE) were also hit by RansomExx ransomware on 27 October. The encrypted archives had received the .tjpe911 extension.

RansomExx (version of Defray777 ransomware) has been used by many attacks in June 2020 targeting large organizations.

The Texas Department of Transportation (TxDOT), Konica Minolta, IPG Photonics and Tyler Technologies are also victims of RansomExx ransomware.

During their attacks, RansomExx operators breach victims' networks and steal undecrypt sensitive documents. Then they spread to other systems.


Please enter your comment!
Please enter your name here

Digital Fortress
Pursue Your Dreams & Live!


Save battery by turning off 5G on iPhone

The new 5G wireless standard comes with the promise of better speeds and greater data transfer convenience. As the ...

iPhone / iPad: How to close all Safari tabs at once

If you have dozens of Safari tabs open on your iPhone or iPad and want to close them quickly, it might be ...

Emotet has "evolved" and is at the top of the malware charts!

The infamous Emotet trojan returns to the top of the malware charts, having been "refreshed" and evolved to be more difficult to detect. The world ...

Signal: How to protect your messages with passcode?

In recent days the Signal messaging application has become quite popular. The Signal ...

The 5 best secure alternatives for WhatsApp

WhatsApp is one of the most popular messaging platforms, but it is definitely not accepted by everyone. Especially after his last ...

Android: How to see which apps have access to your site

It's no secret that smartphone apps have access to many permissions - if you let them. It is important to make sure ...

Canon lets you take pictures from space

Instead of releasing new cameras for CES 2021, Canon is doing something different: It lets you take pictures from space ....

Wikipedia vs Big tech: Who fights misinformation?

As Election Day turned into US Election Week, Facebook, Twitter and YouTube were trying to prevent ...

Tesla: It is called to recall cars due to problematic screens

The touch screen in some Tesla cars seems to have a problem, which could ...

Ransomware is responsible for half of all data breaches in hospitals

Almost half of the data breaches committed in hospitals and the wider healthcare sector are due to ransomware attacks, ...