A ransomware attack targeted Atenção Primária à Saúde Brazil, resulting in the exfiltration of 100GB of SQL files containing over 50 million patient records from systems managed by the Brazilian Ministry of Health. The threat actor nova claimed responsibility, with samples of the compromised data to be provided upon contact; the impacted country is #Brazil.
Incident Details
- Victim: Aten,ção Primária à Saúde Brazil
- Country: BR
- Actor: nova
- Source: http://novadmrkp4vbk2padk5t6pbxolndceuc7hrcq4mjaoyed6nxsqiuzyyd.onion/#atencao-primaria-a-saude-brazil
- Discovered: 2025-12-04 01:53:41.380830
- Published: 2025-12-04 01:52:25.676774
Information
- Ransomware affected Atenção Primária à Saúde in Brazil.
- System provided by Ministério da Saúde of Brazil.
- Impact involved extracting all SQL files totaling 100GB from their systems and cloud storage.
- Millions of patient records were compromised, with over 50 million record lines.
- Samples of the affected data will be provided to the company upon contact.
- The targeted system is accessible at https://esusbelacruz.fixtecnologia.com.br/.
Disclaimer: This post is based on public claims made by the ransomware group "nova". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.