Grupo Fleury

Brazil-based healthcare company Grupo Fleury was targeted in a REvil ransomware attack that led to the disruption of its operations.

The company’s systems remained down and the services on the page displayed that they are unavailable because of an attempted external attack.

With the systems offline, business operations were disrupted, and customers were not able to timetable lab investigations or other clinical exams online.

However, the group prioritized the restoration of services using “all technical resources and efforts.

Source: https://heimdalsecurity.com/blog/grupo-fleury-becomes-the-latest-victim-of-a-revil-ransomware-attack/

TPRM report: https://scoringcyber.rankiteo.com/company/grupo-fleury

"id": "gru2029251122",
"linkid": "grupo-fleury",
"type": "Ransomware",
"date": "06/2021",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"

{'affected_entities': [{'industry': 'Healthcare',
                        'location': 'Brazil',
                        'name': 'Grupo Fleury',
                        'type': 'Healthcare Company'}],
 'description': 'Brazil-based healthcare company Grupo Fleury was targeted in '
                'a REvil ransomware attack that led to the disruption of its '
                'operations.',
 'impact': {'operational_impact': 'Disruption of business operations and '
                                  'inability to schedule lab investigations or '
                                  'clinical exams online',
            'systems_affected': ['Healthcare Systems', 'Online Services']},
 'motivation': 'Financial Gain',
 'ransomware': {'ransomware_strain': 'REvil'},
 'response': {'remediation_measures': 'Prioritized restoration of services '
                                      'using all technical resources and '
                                      'efforts'},
 'threat_actor': 'REvil',
 'title': 'REvil Ransomware Attack on Grupo Fleury',
 'type': 'Ransomware'}