This smells like something being blocked by Cloudflare’s WAF (Web Application Firewall) rules. I’d imagine there might be a rule there to try to block requests that look like they could involve sensitive files like the passwd file
https://developers.cloudflare.com/waf/
The UI should probably alert you of there being an issue posting after getting a 403 response
Wait so what do they mean by stopping operations in Brazil then? Just the offices and staff? The article isn’t super clear on it