A Twitter post by the Twitter handle @DailyDarkWeb has informed that a ransom team is facilitating sale of unauthorized access for Brazilian Government. The name of the Ransom team is Everest.
The Twitter handle @DailyDarkWeb shared a screenshot of the update by the ransom team. The screenshot displays a piece of information that informs about the sale of access to the Gov Brazil network. The information further mentions that 3 TB+ worth of data is available. Lastly, the information mentions an email id that interested people can contact.
#Brazil 🇧🇷 – Unauthorized #Access is on #Sale for Brazilian Government by Everest #ransomware #DarkWeb pic.twitter.com/HI7bwdbE7n
— Daily Dark Web (@DailyDarkWeb) September 1, 2022
The Everest ransomware has been known to be active for few years now. It reportedly emerged in the year 2018. They have been known for attacking companies and organizations. They even attacked the Brazilian government previously.
According to reports, they attacked the national treasury of the Brazilian government. Adding to it, they have also attacked a network of the Attorney General of the National Treasury in August 2021.
The Everest ransomware belongs to the Everbe 2.0 family. This family includes Embrace, PainLocker, EvilLocker and Hyena Locker ransomware.
Everest ransom group makes use of the double extortion technique. They try to facilitate maximum profits from their attacks. Their technique demands payment not only for the decryption key but also to ensure that the company’s data won’t be released.
They have been known to use the tactic of spam emails that comes in with a Word or Excel file. They fill the spam box with commercial e-mails from advertising companies, which creates a chance for the mails to go straight into the inbox rather than the spam box.
