Attacks with the Redline information-stealing malware have facilitated the theft of data from Paraguay's entire population, which was exposed on June 13 after the country refused to pay the demanded ransom, according to The Record, a news site by cybersecurity firm Recorded Future.
Hacking operation Brigada Cyber PMC had leveraged credentials exfiltrated by the infostealer from a government employee's device connected to a domain of the country's Ministry of Public Health and Social Welfare in April 2023 to infiltrate the country's critical systems and pilfer the extensive database, a report from Hudson Rock revealed. "In this case, the compromised credentials provided a backdoor to Paraguays government infrastructure, highlighting the devastating potential of infostealers when they infiltrate high-privilege accounts," said Hudson Rock researchers. Such an attack, which was initially discovered by Resecurity, led to the exposure of information from 7.4 million Paraguayans, including names, birthdates, professions, ID numbers, and certificates. Resecurity noted that details leaked by hackers had been obtained from at least two separate breaches.
Hacking operation Brigada Cyber PMC had leveraged credentials exfiltrated by the infostealer from a government employee's device connected to a domain of the country's Ministry of Public Health and Social Welfare in April 2023 to infiltrate the country's critical systems and pilfer the extensive database, a report from Hudson Rock revealed. "In this case, the compromised credentials provided a backdoor to Paraguays government infrastructure, highlighting the devastating potential of infostealers when they infiltrate high-privilege accounts," said Hudson Rock researchers. Such an attack, which was initially discovered by Resecurity, led to the exposure of information from 7.4 million Paraguayans, including names, birthdates, professions, ID numbers, and certificates. Resecurity noted that details leaked by hackers had been obtained from at least two separate breaches.
