In Brazil, the spacebears ransomware threat actor compromised Gerencial Contábil (Gerencial PR), a Paraná-based accounting and business advisory firm, allegedly targeting around 1,000 personal digital certificates (.pfx/.p12) and their passwords for Brazilian government portals, along with client records (tel, email, IDs, passwords, etc.) and approximately 600,000+ files containing personal information. The incident impacted individuals and organizations connected to the firm’s multi-office operations across Paraná. #brazil
Incident Details
- Victim: Gerencial
- Sector: Business Services
- Country: BR
- Actor: spacebears
- Source: http://5butbkrljkaorg5maepuca25oma7eiwo6a2rlhvkblb4v6mf3ki2ovid.onion/companies/52/gerencial
- Discovered: 2026-06-17T05:59:15.690549+00:00
- Published: 2026-05-21T00:00:00+00:00
Information
- Gerencial Contábil (Gerencial PR) is a Brazilian accounting and business advisory firm based in Paraná, offering accounting, tax, payroll, business consulting, and HR outsourcing services for small and medium-sized businesses.
- The company also helps entrepreneurs with company formation, tax compliance, and business management.
- It operates through multiple offices across Paraná, including Pato Branco, Francisco Beltrão, Dois Vizinhos, Cascavel, Guarapuava, and other cities.
- Its services are tailored to sectors such as commerce, industry, service providers, and non-profit organizations.
- Reportedly exposed data includes around 1,000 personal digital certificates in .pfx/.p12 format, along with their corresponding passwords for access to Brazilian government websites.
- Other allegedly exposed information includes client data such as phone numbers, email addresses, identification details, and passwords.
- More than 600,000 files containing personal information were also reportedly included.
Disclaimer: This post is based on public claims made by the ransomware group "spacebears". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.