The ransomware attack was carried out by unknown operators who are now demanding a ransom for the decryption key.
The cyberinfrastructure of the Brazilian Superior Court of Justice (STJ) has suffered a massive ransomware attack, as a result, its services including the official website have been forced to go offline.
The ransomware attack took place between Monday and Tuesday this week but the details of it were only revealed earlier today.
The ransomware operators are claiming that the entire STJ database has been encrypted and any attempt to restore the file will go in vain.
See: Police lose evidence to Ryuk ransomware attack; suspects walk free
Although it is unclear who is behind the attack; the hackers are demanding an unknown amount of ransom to decrypt the encrypted Court data. For now, STJ’s website is offline with the following notice:
Notice translated from Google Translate
Furthermore, a ransom note has also been left by the hackers asking Court officials to contact the group through Protonmail based email address: [email protected].
The ransom states the following:
GM Superior Tribunal de Justica, Inspect this message attentively and contact someone from the IT dept. Your files are fully crypted. Correction of the names or content of affected items (*.stj888) may cause restoring fail.
You can send us any affected item (smaller than 900KB), and we would repair it. Affected files must not contain useful intelligence. The rest ..
Support the originator by clicking the read the rest link below.
