The NightSpire ransomware group, which operates a double-extortion model, has claimed responsibility for breaching several global companies. The group, known for exfiltrating data and threatening public leaks via its dark web portal, has updated its site with new entries.
The latest list of alleged victims posted by the group includes:
- Brihta (🇷🇺): A Slovenian-based marketing and social media management agency.
- Vrata Tech (🇮🇳): An Indian information technology services company, part of the Arvind Mafatlal Group, specializing in IT infrastructure and cybersecurity.
- Speedmais (🇧🇷): A Brazilian company that provides call center and digital customer service solutions.
According to the actor’s post, the group claims to have exfiltrated significant amounts of data and has set a leak deadline of November 10, 2025. The data size claims include 1.5TB from Brihta and 2.3GB from Speedmais. The entry for Vrata Tech did not specify a data size.
