On February 19, 2025, a cyberattack struck the Unidas group, specifically targeting its fleet management division, Ouro Verde, based in Paraná, Brazil. The attack disrupted over 250 devices, including TVs, IoT devices, and servers. This marks the second time the division has fallen victim to cyberattacks. Ouro Verde, founded in 1973 and acquired by Brookfield Asset Management in 2019, has faced significant cybersecurity challenges in recent years.
The attack was attributed to NexusQassamy, a Turkish-speaking hacktivist group.
The group’s message, displayed on company TVs, condemned Israel’s actions in Gaza. The group featured graphic images of injured civilians and accused the Israeli government of genocide. The message boldly proclaimed “HACKED BY NEXUSQASSAMY” and criticized the global inaction on the situation in Gaza, urging the world to awaken to the ongoing violence.
Unidas acknowledged the breach but chose not to comment further on the incident. An anonymous report from the company revealed frustrations over inadequate cybersecurity measures. The report mentioned that the board of directors showed little concern for security and had no clear response plan for cyberattacks.
This lack of preparedness has left the company vulnerable to repeated intrusions, with no apparent barriers against such attacks.
NexusQassamy’s motivation for the attack appears to stem from political and ideological views. On their Telegram channel, they announced the attack as a demonstration of Islamic power, emphasizing their commitment to Sharia law. Their message suggested a broader mission beyond the immediate cyberattack, reflecting the hacktivist nature of their actions. This incident underscores the rising threats from politically motivated cyber groups, targeting organizations worldwide.
Reference:
