This was stated by the President of Costa Rica, Rodrigo Chavez. national emergency in the country after cyber attacks continue. It is a ransomware-as-a-service (RaaS) group that allows affiliates to rent access to an organization’s infrastructure, for example, to spread attacks. They will be associated with the Russian cybercriminal group Wizard Spider.

OUR ransomware it is a type of malware for capturing data through encryption. As a rule, criminals set the ransom amount for this information in cryptocurrencies.

In the situation in Costa Rica, the victims were various government agencies, including the Ministry of Finance; Ministry of Labor and Social Security; Ministry of Science, Innovation, Technology and Telecommunications; National Meteorological Institute; Social Development Foundation and Bolsa Família; Alajuela Intercollegiate Headquarters; among others.

On their website for releasing the stolen data, the Conti group claims to have already released most (97%) of the data. 672 GB this will contain information from the government of Costa Rica.

The Costa Rica Ministry of Finance, which should have been attacked first, has not yet fully assessed the damage caused by Conti and how taxpayer information systems, payments and customs authorities have been affected. The Conti group has already claimed a ransomware attack on government offices in Costa Rica last month and has reportedly demanded a $10 million ransom. The Costa Rican government reportedly refused to pay the amount.

The country’s public health agency (CCSS) has also previously said “a perimeter security review is underway.” [devido ao] Conti Ransomware to check and prevent possible attacks at the CCSS level.

“We have signed a decree so that the country can protect itself from the criminal attack that cybercriminals are making on us. This is an attack on the Motherland and we have signed a decree to have the best way to protect ourselves.” – Rodrigo Chavez, President of Costa Rica.

“We have signed a decree so that the country can protect itself from the criminal attack that cybercriminals are making on us. This is an attack on the Motherland and we have signed a decree to have the best way to protect ourselves.” – Rodrigo Chavez, President of Costa Rica.

Other victims of these ransomware attacks are the Irish Health Authority (HSE) and the Irish Department of Health. In May 2021, the FBI also warned that Conti hackers were trying to break into more than a dozen U.S. health and first aid organizations. The US State Department has pledged up to $10 million for information on the identity and whereabouts of the Conti cybercriminals, as well as an additional $5 million reward for the arrest or other conviction of these individuals.

…..

Via: BleepingComputer