Centrais Eletricas Brasileiras (Eletrobras), a state-owned utility company in Brazil was targeted in a ransomware attack by the Darkside group that forced them to shut down some operations and services temporarily.
The attack hit the administrative network of its Eletronuclear subsidiary, which runs two nuclear power plants—Angra1 and Angra 2.
The attackers also stole sensitive data and dumped it online, including network access logins and engineering plans.
Source: https://threatpost.com/ransomware-attacks-major-utilities/163687/
TPRM report: https://scoringcyber.rankiteo.com/company/eletrobras
"id": "ele223271022",
"linkid": "eletrobras",
"type": "Ransomware",
"date": "02/2021",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Energy',
'location': 'Brazil',
'name': 'Centrais Eletricas Brasileiras (Eletrobras)',
'type': 'State-owned utility company'}],
'data_breach': {'data_exfiltration': 'sensitive data dumped online',
'type_of_data_compromised': ['network access logins',
'engineering plans']},
'description': 'Centrais Eletricas Brasileiras (Eletrobras), a state-owned '
'utility company in Brazil was targeted in a ransomware attack '
'by the Darkside group that forced them to shut down some '
'operations and services temporarily. The attack hit the '
'administrative network of its Eletronuclear subsidiary, which '
'runs two nuclear power plants—Angra1 and Angra 2. The '
'attackers also stole sensitive data and dumped it online, '
'including network access logins and engineering plans.',
'impact': {'data_compromised': ['network access logins', 'engineering plans'],
'operational_impact': 'shut down some operations and services '
'temporarily',
'systems_affected': ['administrative network of Eletronuclear '
'subsidiary']},
'ransomware': {'data_exfiltration': 'sensitive data dumped online'},
'threat_actor': 'Darkside Group',
'title': 'Ransomware Attack on Eletrobras by Darkside Group',
'type': 'Ransomware'}