The group that invaded the platforms of the Ministry of Health at dawn this Friday (10), made a new victim.
Hackers attacked the site of the Escola Virtual, a distance learning environment linked to the National School of Public Administration (Enap), linked to the Ministry of Economy.
At around 5:30 pm, the Lapsus$ Group left a message on the website’s home page cursing the president Jair Bolsonaro.
“We came back, however, with more news (and with more power). Let’s explain a few things: our only goal is to get money, we don’t care about the Bolsonaro (aka Bolsofakenews) family of m**”, said the authors of the cyber attack.
Although the message speaks of “power”, data from the Ministry of Health, the target of the first attack, at dawn, was not stolen.
The Federal Police opened an investigation to investigate the invasion and, in a statement, stated that the folder’s system databases were not encrypted by the hackers.
At dawn, when trying to access the portal of Ministry of Health, users found the message: “The internal data of the systems was copied and deleted. 50 TB (Terabyte) of data is (sic) in our hands.”
The message, at dawn, was unavailable, but the platforms remained down.
Platforms such as the Coronavirus Panel, e-SUS Notifica, the National Immunization Program Information System (SI-PNI) and Conecta SUS, which displays vaccination data against covid-19, were also hit.
This year alone, the Ministry of Health’s systems have already suffered two other attacks. In both, attackers criticized the security of the agency’s data.
In late January, a hacker broke into the Ministry of Health’s systems, but there was no information leak, just harsh criticism of the platform.
“THIS SITE IS RUBBISH!”, stated the message, written in capital letters, which was visible on FormSUS – a DataSUS service that gathers information from patients in the public health network.
A few weeks later, in February, a similar hack took place on FormSUS.
“Fix that dirty site or next time you’ll leak the data of those responsible for this crap,” said the message left by the attacker.
At the end of 2020, with the Superior Court of Justice (STJ) and the Superior Electoral Court (TSE), the folder had systems attacked by the Portuguese hacker group CyberTeam. At the time, there was also a loss in the disclosure of data about Covid.
*Errata: Contrary to what was published in the previous version of this text, the Virtual School is not linked to the MEC, but to the Ministry of Economy. The information has been corrected.
When contacted, the press office of the Ministry of Education, in a statement, stated that “the Virtual School domain belongs to the National School of Public Administration (Enap), linked to the Ministry of Economy.
Wanted by CNN, the Ministry of Economy reported that: “We were notified by some government agencies reporting partial unavailability of some services. All necessary evaluation and technical protection measures were taken immediately for the prompt reestablishment of services that eventually presented temporary unavailability. The occurrences are being dealt with individually and we will inform you if we have something relevant to be shared”.
Enap, on the other hand, said it was verifying information about hacker attacks on the Virtual School website.
(With information from Estadão Content)
Reference: CNN Brasil