Information security: password change recommendations

Following good security practices is vital when changing your password.

Publicado em 08/03/2024 10h36

On February 29, 2024, Anvisa's Network and Cybersecurity Incident Handling Team sent a security notification by e-mail recommending to users of any of the Agency's external systems that they should immediately change their passwords to access the systems, such as Solicita, Notivisa, Petition, SNGPC, among others.

It is important to clarify that there was no concrete invasion of the systems. The reason for the communication was solely to strengthen the security measures adopted in Anvisa’s information and technological environment.

One of the biggest vulnerabilities faced by organizations nowadays is related to compromised credentials. This occurs when an unauthorized party gains access to confidential or protected information and involves phishing (attempted fraud to obtain confidential information), social engineering (a psychological manipulation technique that exploits human mistakes to obtain private information) and other forms of targeted attacks.

In this increasingly complex and interconnected scenario, it is vital to take preventive actions and to adopt proactive credential monitoring strategies. Those measures play a fundamental role in reducing risks and ensuring the integrity, confidentiality, and availability of information.

Therefore, we reinforce the importance of following good security practices when defining a new password. The more complex the password, the harder it will be for a hacker to breach. So, when defining your password, you should include upper and lower case letters, number(s) and special character(s), as advised in the aforementioned notification email.

To change your password, go to Security System (https://www1.anvisa.gov.br/segurancaLogin), log in as usual with your email and old password, choose the company/institution you are representing and click on “change password”.

If for any reason you are unable to change your password, we ask you to request a password reset by contacting the Customer Service Center via one the channels below:

- Phone: https://www.gov.br/anvisa/pt-br/canais_atendimento/atendimento-por-telefone
- Webchat: https://www.gov.br/anvisa/pt-br/canais_atendimento/webchat
- Electronic Form: https://www.gov.br/anvisa/pt-br/canais_atendimento/formulario-eletronico

We remind you that even if you access Anvisa systems by using the Gov.br login or digital certificate, and if you have received the notice email requesting a password change, you must follow the same procedures mentioned above in the External Security System (https://www1.anvisa.gov.br/segurancaLogin).