An independent expert believes that ransomware was used to assault Victoria's court system and that the attack was coordinated by Russian hackers.
According to a representative for Court Services Victoria, hackers gained access to a portion of the audio-visual archive of the court system.
This would imply that hearing records including witness testimony from extremely private situations might have been obtained or pilfered.
To alert those whose court appearances were compromised by hackers, CSV is currently setting up a contact center for those who think they might have been impacted.
Though some hearings from before November may have also been impacted, the recordings came from hearings held between November 1 and December 21.
This was the first indication that the attack had taken place.
Court employees received a message that linked them to a text file with threats from hackers on the publication of files taken from the court system.
The message also included instructions on how to retrieve the files from the address on the dark web.
Records from the County Court spanning nearly two months were retrieved.
County Court cases have been most badly impacted, according to a Tuesday morning report from CSV. All criminal and civil proceedings that were uploaded to the network between November 1 and December 21 might have been viewed, including at least two instances of past and present child sex abuse.
Recordings from the Criminal Division, the Practice Court, the Court of Appeal, and two regional proceedings in November may have been accessed, severely impacting the Supreme Court as well.
One October hearing from the Children's Court might have persisted on the network, but none of the sessions from November or December have been compromised.
Expert: The attack was most likely the product of Russian hackers Having reviewed the evidence of the attack, independent cyber security expert Robert Potter concluded that the court system was most likely the target of a Russian phishing attack that used Qilin, a commercial ransomware.
This Cyber News was published on www.cysecurity.news. Publication date: Wed, 03 Jan 2024 16:13:06 +0000