Websites belonging to the Brazilian Ministry of Health (MoH) have been hit by a massive ransomware attack that made COVID-19 vaccination data of millions of citizens unavailable.
After that attack, which happened around 1 a.m. today, all MoH websites, including ConecteSUS, which track citizens’ trajectories in the public health system, were no longer functional. This includes the COVID-19 digital vaccination certificate, available through the ConecteSUS app.
According to a report from Lapsus$Group, which claimed responsibility for the attack, about 50TB of data was extracted from MoH’s systems and subsequently deleted. “If you wish to return the data, please contact us,” the statement read, along with contact details of the attack’s authors.
Just before 7 a.m., the images containing the hacker’s message were removed, but the websites remained inaccessible.
At the time of writing, the Department of Health has not responded to ZDNet’s request for comment, has contacted ZDNet about the measures taken to mitigate the attack and restore the system, and whether a backup copy is available. data is sent to the report or not. stolen from your system.
The incident followed an earlier attack on Brazil’s health regulator (Anvisa) in September. The attack targeted travelers’ health certificates, which are mandatory for travelers. people who enter Brazil through airports.
The attack came shortly after the Brazil-Argentina match was cancelled, with Anvisa disrupting the match after four Argentine players were accused of violating COVID-19 travel protocol.
Similarly, the latest problem facing the Ministry of Health comes as the Brazilian government is increasing pressure to require COVID-19 vaccination certificates from international visitors to Brazil, in the face of an increase in ommicron variant. .
This is not the first major security issue facing the Brazilian Ministry of Health in recent months. In November 2020, the personal and health information of more than 16 million COVID-19 patients in Brazil was leaked online after a hospital employee uploaded a spreadsheet containing usernames, passwords, and keys. access sensitive government systems on GitHub.
Less than a week later, another major security incident occurred. The personal information of more than 243 million Brazilians, both living and dead, has been made public online after web developers left passwords for a key government database in the source code of a website. official from the US Department of Education for at least six months.
https://community99.com/brazilian-ministry-of-health-is-hit-by-a-cyber-attack-and-covid-19-vaccination-records-disappear/ Brazil’s Ministry of Health was hacked and COVID-19 vaccination records disappeared – Community News