Companies and government agencies that don’t keep their systems up to date at a huge risk of suffering encroachments: this has been the case with the Companhia Docas do Ceará (CDC), the manager of the Port of Mucuripe, in Fortaleza; and the government of the Bar (são paulo state). Both of these are operating manually, because the data is encrypted and can only be released upon payment in bitcoin.
- What is it a scam?
- How to recover files encrypted by ransomware
The two attacks took place on the 28th of October. In the case of the CDC, it is not possible to gain access to your e-mail, on corporate or management system Sisport of the website, which allows you to control the port operations such as loading and unloading of the ship, and the emission of the receipt, and so on.
For this reason, the port of Mucuripe have been using the e-mail to external, and by doing so, the control of the entry and exit of cargo in trucks and in ships. “What they did was to encrypt the information,” he says Mayhara Key, managing director, the chairman of the CRC, the guardian of The People. The hackers demand a ransom, payable in bitcoin, to send, to the encryption key.
In this case, it’s not a fake: the RT notes that the hackers have remote access to the servers for the CDC, and criptografaram all of your data, including backing up. The site has been down for several days, and it makes use of the platform, IIS 7.0, Microsoft updated it for the last time in 2009. (IIS, 10.0 has been available since the end of 2016.)
The Ransomware has infected the systems of a top Bar, SP)
At the Bar, in the state of São Paulo, systems, administrative, accounting, and financial administration have been a victim of a scam. “We can’t do it, does not come and does not come out of nothing, everything is locked down, so we don’t have the ability to work,” said the mayor, Maria Emilia Marcari (JPN) in the G1.
All of the data that has been encrypted, and the hacker demanded payment in bitcoin to get it unlocked, in an amount equal to$ 7 million. The municipal government has called in the scam that has hit the server for viruses (another type of malware), and it was revealed that there was a daily backup of the database; from then on, the backup will be performed every day, at the end of the day.
The wages and salaries of thousands of public servants in the city were late or she would have been paid on the 30th day of October, and it just fell in to the account on the 8th of November, after the manual of the Department of Human Resources.
Both the CRC and the city of the Lake and they thought that the attack would be a quick solution: they promised to “normalize” the situation, until the 30th of October. However, the data are encrypted, up to now, no data provided to regain access to the system. The Federal Police are investigating the two cases.