Daily Dark Web
  • Home
  • Data Breaches
  • Inside the Adversary
    • Dark Web Informants
  • DDW Top Lists
  • Ransomware News
  • DarkWeb News
    • Vulnerability
    • Cyber Attacks
  • Unauthorized Accesses
  • About Us
No Result
View All Result
  • Home
  • Data Breaches
  • Inside the Adversary
    • Dark Web Informants
  • DDW Top Lists
  • Ransomware News
  • DarkWeb News
    • Vulnerability
    • Cyber Attacks
  • Unauthorized Accesses
  • About Us
No Result
View All Result
Daily Dark Web
No Result
View All Result
Home Ransomware News

Medusa Ransomware Attack Hits Brazilian University USCS and Staffing Firm WR Commercial

November 25, 2025
Reading Time: 1 min read
Medusa Ransomware Attack Hits Brazilian University USCS and Staffing Firm WR Commercial

The Medusa ransomware group has updated its dark web leak site with a new list of alleged victims, targeting organizations in the education and service sectors in Brazil. The group, known for its double-extortion tactics, claims to have successfully breached the networks of the following entities:

  • WR Comercial (🇧🇷): Based in São Paulo, this company specializes in outsourcing skilled staff for essential services such as security, cleaning, and administrative support. They connect businesses with workers for facility management and operational roles.

  • Universidade Municipal de São Caetano – USCS (🇧🇷): A prominent municipal university headquartered in São Caetano do Sul. USCS offers a wide range of undergraduate and postgraduate programs (including MBAs and doctorates) and provides community services such as free legal assistance and health care.

According to the actor, sensitive internal documents have been exfiltrated from both organizations. The group has set ransom demands of $100,000 for WR Comercial and $250,000 for USCS. Based on the file trees and samples provided by the threat actor, the allegedly compromised data includes:

  • Service contracts and agreements

  • Financial records and folders

  • Personnel management files (“Gestão de Pessoas”)

  • Internal administrative file structures

  • Student or employee records

Tags: BrazilcyberattackCyberSecuritydark webdata-breacheducation sectorMedusa Ransomwarestaffing servicesUniversidade Municipal de São CaetanoUSCSWR Comercial
ShareTweet

Related Posts

Qilin Ransomware: Inspira, Muller, A&A, Longwood, Exclusive, Istarpal
Ransomware News

Qilin Ransomware: Inspira, Muller, A&A, Longwood, Exclusive, Istarpal

April 27, 2026
Narteks Tekstil A.S. Suffers Krybit Ransomware Attack
Ransomware News

Narteks Tekstil A.S. Suffers Krybit Ransomware Attack

April 27, 2026
Synmosa Biopharma Hit by Dragonforce Ransomware Attack
Ransomware News

Synmosa Biopharma Hit by Dragonforce Ransomware Attack

April 27, 2026
K2 Electric Inc Targeted in Genesis Ransomware Attack
Ransomware News

K2 Electric Inc Targeted in Genesis Ransomware Attack

April 22, 2026
Rutan & Tucker Law Firm Suffers Data Breach by Silentransomgroup
Ransomware News

Rutan & Tucker Law Firm Suffers Data Breach by Silentransomgroup

April 22, 2026
Qilin Breach: Sea Air, Kolin, INDCAR, PTS, Huonker, Ferguson, SEL, Sterimed, Avitrans, Rusk
Ransomware News

Qilin Breach: Sea Air, Kolin, INDCAR, PTS, Huonker, Ferguson, SEL, Sterimed, Avitrans, Rusk

April 22, 2026
Next Post
Everest Ransomware Group Breaches Air Miles España Data

Everest Ransomware Group Breaches Air Miles España Data

RansomHouse Group Breaches Swedish Arts Council (Kulturrådet)

RansomHouse Group Breaches Swedish Arts Council (Kulturrådet)

Recommended Stories

Threat Actor Claims to Have Leaked KYC Data of Embily Crypto and Fractal ID

Threat Actor Claims to Have Leaked KYC Data of Embily Crypto and Fractal ID

July 19, 2024
Threat Actor Claimed to Breach Database for Italian Delivery Service Yummy

Threat Actor Claimed to Breach Database for Italian Delivery Service Yummy

August 23, 2024
FunFun688.com Casino Database Breach Exposes Sensitive User Information

FunFun688.com Casino Database Breach Exposes Sensitive User Information

December 25, 2024

Popular Stories

  • SudamericaData Breach Exposes Over 1TB of Argentine Records

    SudamericaData Breach Exposes Over 1TB of Argentine Records

    0 shares
    Share 0 Tweet 0
  • Threat Actor Claims Sale of Dell Database Containing 49 Million Customer Records

    0 shares
    Share 0 Tweet 0
  • SUUMO, CHINTAI, At Home, HOME’S Suffer Data Breach

    0 shares
    Share 0 Tweet 0
  • Financial Tech Giant SilverLake Axis Allegedly Breached – 423GB of Data for Sale

    0 shares
    Share 0 Tweet 0
  • Telekom Serbia Investigates Leak of 160,000 Customer Records

    0 shares
    Share 0 Tweet 0
Daily Dark Web

Disclaimer: Daily Dark Web (DDW) is an independent media platform providing information, analysis, and reporting on cybersecurity, cyber incidents, and related digital developments. All content published on this website is for informational and journalistic purposes only. DDW does not support, endorse, or promote any illegal activities, threat actors, or organizations referenced in its content. Any statements, claims, or opinions expressed by third parties, including interview subjects, are their own and do not reflect the views of DDW. Such content may include unverified information and should be interpreted critically. DDW does not participate in, facilitate, or coordinate any activities discussed or referenced on this platform. Under no circumstances should any content be interpreted as encouragement, instruction, or endorsement of unlawful actions. All interactions and publications are conducted in the public interest to enhance awareness and understanding of the evolving cyber landscape.

No Result
View All Result
  • About Us
  • Home
  • Newsletter
  • Privacy Policy

Disclaimer: Daily Dark Web (DDW) is an independent media platform providing information, analysis, and reporting on cybersecurity, cyber incidents, and related digital developments. All content published on this website is for informational and journalistic purposes only. DDW does not support, endorse, or promote any illegal activities, threat actors, or organizations referenced in its content. Any statements, claims, or opinions expressed by third parties, including interview subjects, are their own and do not reflect the views of DDW. Such content may include unverified information and should be interpreted critically. DDW does not participate in, facilitate, or coordinate any activities discussed or referenced on this platform. Under no circumstances should any content be interpreted as encouragement, instruction, or endorsement of unlawful actions. All interactions and publications are conducted in the public interest to enhance awareness and understanding of the evolving cyber landscape.

Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?