Hackers have breached the computer systems of Victoria’s Court Service in Australia, gaining access to sensitive video and audio recordings of court hearings, including those at a children’s court. The attack is believed to have occurred between November 1, 2023, and December 21, when the network compromise was discovered. Staff initially realized the issue when they were locked out of their PCs, with messages stating “YOU HAVE BEEN PWNED” appearing on their screens. The attackers demanded ransom payments to prevent the stolen data from being published, directing staff to the dark web. Court Services Victoria suspects the Qilin ransomware-as-a-service group, though no conclusive evidence has been presented. The Serbian energy company EPS has also fallen victim to a ransomware attack, reportedly by Qilin.
Court Services Victoria has confirmed unauthorized access to its audio-visual in-court technology network and warned that hearings before November 1 may have also been compromised. The Supreme Court and various divisions have potentially had their recordings accessed. CSV is focused on ensuring the safety of its systems and notifying individuals involved in hearings that may have been affected. CSV CEO Louise Anderson expressed regret for the distress caused by the incident and emphasized that maintaining security for court users is their top priority. Other court systems and records are unaffected as they are separate from the compromised audio-visual network.
Fortunately, CSV took immediate action to isolate and disable the affected network, allowing court hearings to continue. The investigation into the attack is being conducted by Victoria police in collaboration with CSV. Acting Premier Ben Carroll urged anyone with relevant information to cooperate with the authorities.
Key Points:
1. Hackers breached Victoria’s Court Service computer systems, accessing sensitive video and audio recordings of court hearings, including those at a children’s court.
2. The attack occurred between November 1 and December 21, when the compromise was discovered.
3. Staff were locked out of their PCs and received messages demanding ransom payments to prevent the publication of stolen data.
4. Court Services Victoria suspects the Qilin ransomware-as-a-service group, though no definitive evidence has been provided.
5. The Serbian energy company EPS has also been targeted by Qilin ransomware.
6. Unauthorized access to audio-visual in-court technology network occurred, potentially compromising hearings before November 1.
7. CSV is focused on securing its systems and notifying affected individuals.
8. The Supreme Court and various divisions may have had their recordings accessed.
9. CSV CEO Louise Anderson prioritizes the security of court users and apologizes for any distress caused.
10. Other court systems and records remain unaffected.
11. Immediate action was taken to isolate and disable the compromised network, allowing court hearings to proceed.
12. The investigation into the attack is being carried out by Victoria police in collaboration with CSV.
13. Acting Premier Ben Carroll encourages individuals with relevant information to assist the authorities.