lockbit2 attacks Tyresoles do Brasil - Aracaju (Coroa do Meio)

Incident Date:

February 5, 2022

World map

Overview

Title

lockbit2 attacks Tyresoles do Brasil - Aracaju (Coroa do Meio)

Victim

Tyresoles do Brasil - Aracaju (Coroa do Meio)

Attacker

Lockbit2

Location

Coroa do Meio, Brazil

Aracaju, Brazil

First Reported

February 5, 2022

Ransomware Attack on Tyresoles do Brasil - Aracaju (Coroa do Meio)

Tyresoles do Brasil - Aracaju (Coroa do Meio), a consumer services company specializing in automotive diagnostics, servicing, and maintenance, has been targeted by the ransomware group Lockbit2. The company's website was compromised, and the attack was announced on the group's dark web leak site.

Tyresoles do Brasil is a trusted and experienced provider of automotive services, offering a range of products and services, including Goodyear tires, batteries, lubricants, and spare parts for preventive and corrective maintenance. The company has a team of trained and evaluated professionals, and they invest in the continuous training of their mechanics to ensure they are up-to-date with the latest technologies and best practices.

The company's website provides information on various types of tires, including those for high-performance vehicles, SUVs, and pick-ups, as well as off-road tires for severe conditions. They also offer services for eixos direcionais, livres, and de tração moderada, with guarantees for increased performance and durability.

The vulnerability that led to the ransomware attack on Tyresoles do Brasil is not explicitly stated in the available information. However, it is known that ransomware attacks often exploit weaknesses in software, outdated systems, or human error, such as phishing emails or unsecured remote access.

The Lockbit2 ransomware group is known for its aggressive tactics, often targeting large organizations and demanding high ransoms. The group has been active since 2019 and has been linked to several high-profile attacks, including those on the City of Pensacola, Florida, and the University of California, San Francisco.

In response to ransomware attacks, it is crucial for companies to implement robust cybersecurity measures, such as regular software updates, employee training, and secure remote access protocols. In the event of an attack, companies should have a well-defined incident response plan in place, including data backups and a plan for negotiating with attackers, if necessary.

Tyresoles do Brasil has not yet released a public statement regarding the ransomware attack. The company's website remains operational, but it is unclear whether the attack has affected their services or operations.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.