In a post published on a dark web forum, a threat actor is offering an alleged full network access to one of Brazil’s largest holding companies, which operates across multiple critical sectors, including financial services, electricity, oil and gas, power, energy, and investment.
The threat actor boasts of having gained control over the company’s extensive network, which supports more than 800 employees and generates $1.2 billion in revenue annually. The post outlines the extent of the breach, claiming that the attacker has secured access to C2 systems, shells, cloud infrastructure, and more. It further alleges control over approximately 1,400 devices within the company’s network. The threat actor also claims to possess full administrative privileges, including control over all network forests, domain administration, and enterprise-level administrator accounts.
The post invites interested parties to engage in dealings via escrow. The asking price for this access is $50,000.
