Ransomware victim disclosure
← All victimsConasa
listed as Сonasa · Claimed by Cicada3301 · listed 1 year ago
Status timeline
- ListedJul 15, 2025
- Data leakeddate unknown
At a glance
- Group
- Cicada3301
- Status
- Data leaked
- Country
- Spain
- Listed on leak site
- Jul 15, 2025
- Data size
- 260 GB
About the victim
AI dossier — public-source company profileConasa is a Brazilian utility and infrastructure company operating water, sanitation, and electricity services across multiple municipalities. The organization manages numerous subsidiary companies (Águas de Itapema, Luz de Belém, Sanema, etc.) and maintains investor relations operations, indicating it is a publicly traded or significant private enterprise.
- Industry
- Water & Sanitation Utilities
Attack summary
Severity: high — Confirmed exfiltration of 260 GB from a publicly-traded utility company managing critical water and sanitation infrastructure across Brazil. Such data likely includes operational, financial, and governance records of significant sensitivity. Infrastructure utilities managing public services represent critical assets.Cicada3301 claims to have exfiltrated 260 GB of data from Conasa. The group has published the data but no specific details on data type or operational encryption impact are stated in the post.
Data the group says was taken
AI dossier — extracted from the leak post- Corporate documents
- Investor relations materials
- Operational data
- Corporate governance records
What the group claims
Status: 9d 15h 27m 17s - Size Data: 260 GB
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

