RANSOMWARE VICTIMEDUCATION
Company in Education
medusa📍 Brazil (BR)📅 November 24, 2025
Attack Intelligence
Company in Education was compromised in a ransomware attack attributed to medusa in November 2025. The organization, operating in the Education sector in Brazil, was added to the group's data leak site as part of an extortion campaign.
medusa operates as a financially motivated ransomware-as-a-service (RaaS) operation, exfiltrating sensitive data and threatening public disclosure to pressure victims into paying ransom demands.
Quick Facts
CountryBrazil (BR)
SectorEducation
Attack DateNov 24, 2025
Threat Group
External Links
Data sourced from Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Victim listing does not imply confirmed breach — intelligence based on group claims.