Panama’s Ministry of Financial system and Finance (MEF) has disclosed that one in all its computer systems could have been compromised in a cyberattack..
The federal government famous that it activated the security procedures for these conditions, stating that the incident has been contained and did not affect core programs which are very important to its operations.
“The Ministry of Financial system and Finance informs the general public that at the moment an incident involving doable malicious software program was detected on one of many Ministry’s workstations,” MEF says in an official assertion.
“The established security protocols have been instantly activated, and preventive measures throughout all the IT system have been bolstered to include the intrusion.”
“You will need to emphasize that none of MEF’s central programs or platforms have been compromised and so they proceed working usually.”
Panama’s MEF is a crucial ministry within the nation, managing fiscal coverage, public spending, and debt administration. Most significantly, it handles the Panama Canal revenues, the nation’s largest supply of revenue.
The MEF says that non-public and institutional knowledge are protected, and all industry-standard measures are in place to stop future incidents.
Hoewever, the INC Ransom gang has claimed an assault on MEF final week in a submit on its knowledge leak website. The hackers say that they stole greater than 1.5 TB of knowledge from MEF’s programs, together with emails, monetary paperwork, budgeting particulars, and extra.
The risk group added MEF to its listing of victims on the darkish internet on September 5, and leaked knowledge samples within the type of inner paperwork as proof of the breach.
Supply: BleepingComputer
BleepingComputer contacted MEF to ask concerning the validity of INC Ransom’s claims, however we now have not obtained a response by publication time.
INC Ransom emerged in mid-2023 as a ransomware-as-a-service (RaaS). They focused a number of high-profile victims akin to Yamaha Motor, Xerox Enterprise Resolution, Scotland’s NHS, McLaren Well being Care, the Texas State Bar, and Ahold Delhaize.
In Could 2024, a risk actor utilizing the moniker “salfetka” posted on the Russian-speaking hacking boards that they’d the supply code for the ransomware and provided to promote it for $300,000.
46% of environments had passwords cracked, practically doubling from 25% final yr.
Get the Picus Blue Report 2025 now for a complete take a look at extra findings on prevention, detection, and knowledge exfiltration tendencies.
