ransomexx attacks Unimed Belem

Incident Date:

October 18, 2022

World map



ransomexx attacks Unimed Belem


Unimed Belem




Belem, Brazil

, Brazil

First Reported

October 18, 2022

Unimed Belem Suffers Ransomware Attack by RansomEXX

Unimed Belem, a prominent medical cooperative and health insurance operator in Brazil, recently fell victim to a ransomware attack orchestrated by the RansomEXX group. The attackers announced their exploit on their dark web leak site, showcasing a sample of 5.6GB of data purportedly stolen from Unimed Belem. Operating within the Healthcare Services sector, Unimed Belem is recognized as one of the largest health insurance networks in Brazil. This cyberattack has significantly disrupted their operations, though the full extent of the data breach and the ransom demands have not been disclosed by the company.

The healthcare sector's rich repository of sensitive data makes it an attractive target for cybercriminals. Factors such as outdated software, weak security protocols, or insufficient cybersecurity awareness among employees could have contributed to the vulnerability of Unimed Belem to this ransomware attack. The increasing prevalence of ransomware incidents underscores the importance of robust preparation and response strategies. These include maintaining a contingency plan and allocating a dedicated budget for cybersecurity to mitigate the impact of such attacks.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.