TRF remains offline 7 days after cyberattack
Posted: Wed Apr 23, 2025 3:56 am
Blogcyber attack , information technology , tndbrasil , trf hacker attack
Hackers have attacked the system of the Regional Federal Court of the 3rd Region. All court services are unavailable.
The 25-story tower on Avenida slovenia mobile database houses the largest Regional Federal Court in the country. The 43 judges handle everything from criminal cases to social security cases in the states of São Paulo and Mato Grosso do Sul.
On the afternoon of this Wednesday (30), the Court stopped. The first warning indicated that several systems were unavailable.
Hours later, the TRF-3 confirmed that it had been the victim of a cyberattack that rendered all services provided by the court unavailable, including hearings and trials. The note highlights that no stored data was compromised.
The president of TRF-3, judge Marisa Santos, ordered the suspension of service to the external public in the courts , where the first-degree Justice operates. She authorized remote work and suspended the deadlines for physical and electronic processes this Wednesday and Thursday (31).
In January 2021, the TRF-3 had already suffered a hacker attack. The Federal Police investigation identified two people responsible. The men, who, in 2021, hacked into the court's electronic process system, managed to tamper with documents, including a report from the Public Prosecutor's Office, and even claimed to be the beneficiaries of payments in two lawsuits totaling R$800,000. The hackers were sentenced to prison. The Federal Police have already begun investigating this Wednesday's attack on the TRF-3.
Digital security expert Hiago Kim, president of the Brazilian Cybersecurity Association, says that shutting down the entire system, as TRF-3 did, is the best way to avoid greater damage.
“This type of attack is generally of interest to large organized groups that hijack data and information and end up leaking this data to the population or gangs that trade data and sell personal information. So, the first measure to be taken is always to shut down the infrastructure to be able to measure and even understand how the scale and extent of the attack worked,” he explains.
Hackers have attacked the system of the Regional Federal Court of the 3rd Region. All court services are unavailable.
The 25-story tower on Avenida slovenia mobile database houses the largest Regional Federal Court in the country. The 43 judges handle everything from criminal cases to social security cases in the states of São Paulo and Mato Grosso do Sul.
On the afternoon of this Wednesday (30), the Court stopped. The first warning indicated that several systems were unavailable.
Hours later, the TRF-3 confirmed that it had been the victim of a cyberattack that rendered all services provided by the court unavailable, including hearings and trials. The note highlights that no stored data was compromised.
The president of TRF-3, judge Marisa Santos, ordered the suspension of service to the external public in the courts , where the first-degree Justice operates. She authorized remote work and suspended the deadlines for physical and electronic processes this Wednesday and Thursday (31).
In January 2021, the TRF-3 had already suffered a hacker attack. The Federal Police investigation identified two people responsible. The men, who, in 2021, hacked into the court's electronic process system, managed to tamper with documents, including a report from the Public Prosecutor's Office, and even claimed to be the beneficiaries of payments in two lawsuits totaling R$800,000. The hackers were sentenced to prison. The Federal Police have already begun investigating this Wednesday's attack on the TRF-3.
Digital security expert Hiago Kim, president of the Brazilian Cybersecurity Association, says that shutting down the entire system, as TRF-3 did, is the best way to avoid greater damage.
“This type of attack is generally of interest to large organized groups that hijack data and information and end up leaking this data to the population or gangs that trade data and sell personal information. So, the first measure to be taken is always to shut down the infrastructure to be able to measure and even understand how the scale and extent of the attack worked,” he explains.