⚡️🚨 NEW - A hacker breached Brazil's national emergency alert system, and woke up everyone by pushing a fake "Extreme Alert" reading "misantropi4" to phones across São Paulo, Rio, Brasília and other states, overriding silent mode in the middle of the night. Telecoms regulator Anatel pulled the national warning platform offline and the Federal Police are investigating what officials call a probable remote intrusion into Brazil's critical public-warning infrastructure. This is really bad. According to our research, at least one of Brazil's government IT workers was infected with an infostealer. We found: - He was doing goverment infrastructure work on his home RGB gaming PC - He was running Windows 7 (EoL Jan 2020) - No antivirus - NO MFA for some critical infra - His browser held gov VPN creds for himself and two colleagues (they were using each others creds?) - Search history includes "ativar windows 10," "download office 2019 + ativador," "comprar office 365," and "download mobaxterm cracked" - Malware dropped via malicious game installer - The keys to his password managers were in the stolen browser: a LastPass account and a keypass[.]mdr[.]gov[.]br vault - Exposed: VPN, GitLab, Jenkins, webmail, SSO, M365, and dev/staging environments across mec[.]gov[.]br and mdr[.]gov[.]br