By: Leonardo Neri

After CVC, Renner and Westwing, it was now Porto Seguro's turn to suffer an attempted cyber attack on the company's service channels and systems, which demonstrates how information security and the applicability of digital legislation in the country are still flawed, and the lack of investment on the subject in the corporate world allows for an increase in crimes of this size.

The insurance group, in a statement, stated that the attempted invasion caused instability in its service portal and in some systems linked to the company. After such impact, all of the company's security protocols were activated, and the normal service environment is gradually being reestablished.

It is worth noting that to date no leaks of information from the company's customers and partners have been identified.

It is worth noting that, although there are countless types of system infiltration, the most common in the country are still those known as ransomware, which consists of data hijacking and system blocking, which results in criminals trying to obtain large sums of money for release. However, Porto Seguro did not confirm the financial level involved in the attack.

It is noted that in the General Data Protection Law (LGPD), to date, there is no criminal punishment for such crimes. However, it is noted that in the Penal Code, article 154-A, a penalty of 3 months to 1 year of imprisonment is provided for crimes of hacking into a computer system, with an increase of 1/3 if it causes financial loss. If the act results in obtaining content of private communications, commercial or industrial secrets, confidential information (data) or unauthorized remote control, the penalty is greater, totaling 6 months to 2 years.

All these cases indicate a need for greater debate on the topic, not only in the context of information security, but also in terms of investment and executive satisfaction of the combination of federal civil and criminal standards, with the purpose of resolving the events that occurred.

Source: https://neofeed.com.br/blog/home/porto-seguro-e-nova-vitima-de-um-ataque-cibernetico-no-pais/

https://www.tjdft.jus.br/institucional/imprensa/campanhas-e-produtos/direito-facil/edicao-semanal/invasao-de-computador#:~:text=O%20C%C3%B3digo%20Penal%2C%20em%20seu,de%20invas%C3%A3o%20de%20dispositivo%20inform%C3%A1tico.&text=A%20pena%20prevista%20%C3%A9%20de,em%20at%C3%A9%20um%201%2F3.