Data leakage in Brazil decreases 31% in 2021

Data leakage in Brazil decreases by 31% in 2021

Avatar of otávio queiroz
Despite the low compared to 2020, Surfshark points out that 24,2 million Brazilians had their data breached, placing the country in 6th place in attacks

From January to November this year, 24,2 million Brazilians had their data breached due to hacker attacks or breaches in systems. The information was published by Surfshark, a Dutch technology company that offers VPN services. In the overall ranking, the Brazil occupies the sixth position, behind the US, Iran, India, Russia and France. Although the numbers are initially startling, they represent a 31% drop compared to the same period last year, when 35 million accounts were breached. It is worth remembering that Brazil oscillates between the 4th and 5th largest connected population in the world.

The analysis of the database Surfshark Alert determined that 2021 was slightly worse than the previous year in terms of data breach cases. In the first 11 months of the year, 952,8 million accounts were hacked, which means that 1 in 5 people is affected globally. In 2020, 921,8 million breaches occurred during the same period, signaling a 3,4% growth and 31 million compromised internet users. The numbers raise an alert for the importance of debates on cybersecurity and the implementation of solutions that increase the security of information circulating on the internet.

Data leakage in Brazil decreases 31% in 2021
In the first 11 months of the year, 952,8 million accounts were hacked worldwide (Playback/Internet)

The United States was the hardest hit, with 212,4 million accounts breached by criminals, an increase of 22% compared to last year. In second place comes Iran, which registered 156,1 million of hollow profiles and an expressive leap of 10.842% compared to 2021. India, on the other hand, closes the top 3 with 86,6 million of people committed, almost three times more than last year.

“The growth in breached users is alarming considering the reputational and financial damage that can be caused when a person's private data is stolen or leaked. Criminals can use it in various illegal schemes such as phishing emails, fake bank calls and even identity theft,” explains Vytautas Kaziukonis, CEO of Surfshark. “Unfortunately, this trend is going nowhere. Therefore, all Internet users should educate themselves about online privacy and take precautionary measures to protect themselves.”

The 2021 ranking looked like this:

Data leakage in Brazil decreases by 31% in 2021. Despite the low compared to 2020, surfshark points out that 24,2 million Brazilians had their data breached, placing the country in 6th place in attacks
Brazil ranks sixth in the ranking of countries with the highest numbers of data breaches recorded from January to November this year (Disclosure/Surfshark)

featured middle east

Middle Eastern countries stood out when it came to an increase in the number of breaches recorded in 2021. In Iran, for example, 150 million accounts (an increase of 10842% from 2020) were compromised during the first 11 months of the year. The numbers were leveraged, among other reasons, by the violation suffered by the messaging system and also thanks to the intensification of the cyber war between Israel and Iran

In percentage terms, Sudan had the second highest increase in the number of violations, with an increase of 4178% (9,2 million cases this year, up from 214,6 in 2020). The UAE ranked third with 515% (from 1,5 million in 2020 to 9 million in 2021), followed by Iraq with an increase of 456% year on year.

India also ranked fifth on the growth list this year, with a 352% increase over 2020. The country saw a total of 86,6 million user accounts stolen in 9 big data breaches in 2021, including the cases of Domino's India and Air India.

Despite the high registered from January to November, the Surfshark believes in a possible reduction in the annual total. According to the company, there has been a big drop in data breaches in the last three months. If this trend continues for the rest of the year, we could see a total 8,8% reduction in data breach numbers compared to the previous year.

Main cases that hit Brazil in 2021

Dark Web

Dark web
More than 200 million Brazilians were exposed in a mega spill that took place at the beginning of the year (Reproduction/Internet)

In January, a leak exposed the data of more than 200 million Brazilians. Among information such as CPF, RG, full names, addresses, e-mails and telephone numbers were also vehicle data, income tax returns, credit scores and even the status of receiving benefits from the federal government.

The volume was traded on dark web forums divided into installments, with prices starting at US$500, around R$2,8 at the current price. The main objective of criminals was to use personal information to prepare scams and digital frauds, such as phishing.


facebook app
Facebook users had personal information such as email, phone and professional records leaked in April (Reproduction/Internet)

In April, personal data from more than 533 million accounts in the Facebook were located on a hacking website on the internet. Among the information disclosed were e-mails, telephone numbers, social network profiles, geolocation and professional records. According to the social network, the information was from 2019 and the leak was the result of a flaw in an API (Application Programming Interface).

This was not the first time that data from millions of members of the largest social network, which has about 2 billion users, have been released on the internet. In 2018, the scandal of Cambridge Analytica, a British company that used the personal data of tens of millions of users without authorization Facebook for political propaganda purposes.


Renner store
Renner's e-commerce also suffered from attacks in 2021 (Reproduction/Internet)

In the month of August it was the turn of the e-commerce of Winner be a victim of ransomware. At the time, the company's platform went down after the company's system was the target of a cyber attack. The company said that there was no leakage of personal data from its customers and claimed that it did not pay any ransom.

At the time, the Procon-SP notified the Renner Stores asking for explanations about the cyber attack suffered. Despite the situation, the network's on-site stores throughout Brazil did not suffer from the blackout and maintained customer service normally.


Attentive building
Atento had corporate information disclosed by a hacker group in October (Disclosure/Atento)

In October, the customer service and call center Attentive was another victim of ransomware, which crashed systems and harmed the work of its customers, such as banks, health plans, delivery platforms and even airlines. Days later, the Lockbit group released the company's corporate data, with information from the corporate, financial and commercial sectors. It is believed that the action took place due to the lack of payment of ransom, the value of which was not disclosed.

In a press release, the Attentive It said investigations into the cyberattack were ongoing and that it was working with "consultants and relevant authorities to assess the impact of the incident on business and take appropriate action."


ifood app
Commercial establishments had their information changed within the iFood platform in November (Reproduction/Internet)

In early November, iFood also had its system breached. On that occasion, the names of the establishments were replaced by political and anti-vaccine messages. The problem remained for a few hours and several restaurants and cafeterias had their services compromised by the event.

In an official note, iFood stated that the disfigurement took place through an account of an employee of the company, who was allowed to change settings, such as registration information (names, locations, etc). The platform also reported that 6% of businesses were affected and there was no exposure or leakage of customers.


Security flaw in Log4j software library scared experts and companies in early December (Playback/Internet)

In early December, a security breach on a global scale worried digital security experts and companies around the world. The loophole was linked directly to the software library log4j, which is used by almost all major Java-based enterprise applications and servers. The flaw allowed any hacker or cybercriminal to gain access to critical parts of systems and applications.

The problem was initially revealed by security researchers at AlibabaWith the Minecraft da Microsoft issuing another statement confirming that they were also affected. According to experts, the flaw affects most companies and web services, from iCloud da Apple Lossless Audio CODEC (ALAC), to the products of Google Cloud. They further said that, among other activities, hackers used the loophole for crypto mining scams.

Government agencies

connect your
Conect Sus was affected due to a hacker attack in December (Reproduction/Internet)

Brazilian government systems also did not escape attacks in 2021. Among the targets are: the SUS (Unified Health System) registry system, systems of the Ministry of Economy and General Controllership of the Union (CGU) and Federal Police. Internal and external networks of the folders, as well as official government websites, remain offline or with intermittent access.

Several official notes have been released by federal agencies in recent weeks. The Ministry of Health, for example, reported that systems are being re-established and that new tests are being carried out in search of loopholes in the systems.

See also:

Amid so many leaks, anyone becomes vulnerable these days. Learn how to protect yourself from leaking nudes on the internet in this matter of showmetech.

Source: Surfshark.

Sign up to receive our news:

Leave a comment

Your email address will not be published. Required fields are marked with *

Related Posts