On October 23, the Federal Police (PF) launched Operation Cryptojacking, focused on dismantling a scheme to invade the systems of the National Health Surveillance Agency (Anvisa). The operation investigates a cyberattack that used security flaws in the agency's servers to carry out illegal cryptocurrency mining, a practice known as "cryptojacking".
The attack was quickly identified by authorities, which allowed Anvisa to reestablish its operations without compromising sensitive data. Although there was no evidence of a leak of critical information, the misuse of the agency's servers caused impacts on the performance of the institution's systems.
The action included the execution of a search and seizure warrant in Porto Velho, Rondônia, as part of an investigation conducted by the Regional Superintendence of the Federal District. According to preliminary information, the cybercriminals exploited a vulnerability in Anvisa's systems to install cryptocurrency mining software, taking advantage of the agency's computing resources to generate profits without being detected.
Mining cryptocurrencies, such as Bitcoin and Monero, requires high processing power to solve complex mathematical calculations. By hacking into Anvisa's servers, hackers were able to use this public infrastructure to generate digital coins, which, although not intended to directly steal information, resulted in the abusive use of resources, compromising network efficiency and increasing energy consumption.
Cryptojacking is a stealthy form of cyberattack that has become increasingly common, mainly due to the lack of explicit demands, as is the case with ransomware attacks. This makes this practice difficult to detect, as the illegal activities can continue without the victim immediately noticing the intrusion. In addition to harming the performance of the attacked systems, it can also damage equipment and compromise essential services, especially in public institutions such as Anvisa.
Those responsible for the attack face charges of hacking electronic devices and disrupting essential services. The Federal Police said it will continue to investigate possible connections between this attack and other cybercrimes at government agencies in an effort to contain this growing digital threat.
What is Cryptojacking?
Cryptojacking is an illegal practice in which cybercriminals use third-party devices, such as computers and servers, to illegally mine cryptocurrencies. Unlike other types of cyberattacks, this practice does not aim to steal data or directly extort money. Instead, hackers exploit the victim's computing resources to make a profit by mining digital currencies.
This type of attack, despite being less noticeable at first glance, can cause great damage, such as overloading systems, increasing energy consumption and even damaging the devices used, without the victim immediately noticing the invasion.
