The threat group has leaked data that it claims was stolen in the breach and is promising more government-targeted attacks.
Costa Rican President Rodrigo Chaves declared a state of national cybersecurity emergency over the weekend following a financially motivated Conti ransomware attack against his administration that has hamstrung the government and economy of the Latin American nation.
The attack—attributed to the prolific Conti ransomware group–occurred three weeks ago not long after Chaves took office; in fact, the state of emergency was one of his first decrees as president. The first government agency attacked was the Ministry of Finance, which has been without digital services since April 18, according to a published report.
Other Costa Rican agencies affected include the Ministry of Labor and Social Security; the Ministry of Science, Innovation, Technology and Telecommunications; the National Meteorological Institute, among others. At this time, the entire scope of the damage is not known.
Conti reportedly demanded a ransom of $10 million from Costa Rica’s government in exchange for not releasing stolen information from the Ministry of Finance, according to a published report. Costa Rica so far has declined to pay, which resulted in Conti updating its data-leak site