everest attacks GOV Brazil
Incident Date:
August 30, 2022
Overview
Title
everest attacks GOV Brazil
Victim
GOV Brazil
Attacker
Everest
Location
First Reported
August 30, 2022
Ransomware Attack on Radio Mais Brazil
Company Overview
Radio Mais Brazil, a UK-based media and internet company, has been targeted by the ransomware group Everest. The attack was announced on the group's dark web leak site, and the victim's website is currently displaying a notice that their servers have been compromised. Operating within the Media & Internet sector, Radio Mais Brazil's website features various programs, podcasts, and news updates, indicating a significant presence in the media industry.
Vulnerabilities and Threats
The specific vulnerabilities that led to the successful attack on Radio Mais Brazil are not detailed. However, ransomware attacks typically exploit weaknesses in software, outdated systems, or human error, such as phishing emails or unsecured remote access.
Impact and Response
The impact of the ransomware attack on Radio Mais Brazil, while not explicitly stated, can include data loss, system downtime, and financial losses due to ransom payments or recovery costs. The company should adhere to best practices for responding to ransomware attacks, which include isolating affected systems, restoring data from backups, and reporting the incident to law enforcement and cybersecurity agencies.
The ransomware attack on Radio Mais Brazil underscores the persistent threat of cybercrime in the media and internet sector. Companies within this industry are advised to prioritize cybersecurity measures to safeguard against such attacks and mitigate their consequences.
Sources
- FBI: Ransomware - https://www.fbi.gov/scams-and-safety/common-scams-and-crimes/ransomware
- Cybercrime Magazine: Ransomware Report - https://cybersecurityventures.com/ransomware-damage-report/
- Sophos: State of Ransomware 2023 - https://www.sophos.com/en-us/medialibrary/PDFs/whitepaper/sophos-state-of-ransomware-2023-wp.pdf
- Internet Crime Complaint Center (IC3): Ransomware - https://www.ic3.gov/Media/Y2020/PSA200915
- CISA: Report Ransomware - https://www.cisa.gov/stopransomware/report-ransomware
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.