Australia's Court Services Victoria is warning that video recordings of court hearings were exposed after suffering a reported Qilin ransomware attack.
CSV is an independent statutory authority that provides services to Victoria's court systems, including case management systems and administrative solutions.
In a statement published today on its website, CSV says it detected a cyberattack on December 21, 2023, that allowed hackers to disrupt operations and access its audio-visual archive containing sensitive hearing recordings.
The impacted system was immediately isolated and disabled, but the ensuing investigation revealed that the breach occurred at an earlier date, December 8th, 2023, with the exposed recordings going as far back as November 1, 2023.
Supreme Court - hearings from the Court of Appeal, Criminal Division, and Practice Court between December 1 and 21, and two regional hearings in November 2023.
County Court - hearings from all criminal and civil courts from November 1 to December 21, 2023.
Coroners Court - all hearings that took place between November 1 and December 21, 2023.
The above recordings contain a mix of public and confidential information, so depending on the case, they may expose sensitive information regarding court cases.
Where possible, impacted courts will send out breach notices to those deemed impacted by the incident.
CSV has also notified the authorities about the potential data breach, including the Victoria Police, Victorian Department of Government Services, and Australia's National Identity and Cyber Support Community Service.
Though CSV is still in the process of restructuring the impacted system with more focus on security, court operations in Victoria will not be affected, and all cases scheduled for January 2024 are expected to proceed normally.
The authority's does not name the cybercriminals responsible for the attack, but sources speaking to ABC News report that the Qilin ransomware gang carried out the attack.
Since its launch, the ransomware operation has had a steady stream of victims but has seen increased activity towards the end of 2023.
BleepingComputer has not been able to independently confirm if Qilin is behind the attack, and there is no mention of CSV on their data leak site.
Kansas courts confirm data theft, ransom demand after cyberattack.
Integris Health patients get extortion emails after cyberattack.
Nissan Australia cyberattack claimed by Akira ransomware gang.
Healthcare software provider data breach impacts 2.7 million.
FBI disrupts Blackcat ransomware operation, creates decryption tool.
This Cyber News was published on www.bleepingcomputer.com. Publication date: Tue, 02 Jan 2024 15:55:11 +0000