Tomas Frias University Hit by Stormous Ransomware Attack

Incident Date: Nov 17, 2024

Attack Overview

VICTIM

Tomas Frias Autonomous University

INDUSTRY

Manufacturing

LOCATION

Bolivia

ATTACKER

Stormous

FIRST REPORTED

November 17, 2024

Request Removal

Ransomware Attack on Tomás Frías Autonomous University by Stormous Group

Tomás Frías Autonomous University (UATF), a prominent public higher education institution in Potosí, Bolivia, has reportedly fallen victim to a ransomware attack by the Stormous group. This incident highlights the vulnerabilities faced by educational institutions in the digital age, particularly those with significant historical and academic standing.

About Tomás Frías Autonomous University

Established in 1892, UATF is a key player in Bolivia's educational landscape, offering a wide range of academic programs across twelve faculties. With approximately 14,981 students and 579 faculty members, the university is recognized for its contributions to fields such as mining engineering and environmental research. Its strategic location and ongoing development projects, like the University Citadel, underscore its commitment to academic excellence and regional development.

Details of the Ransomware Attack

The Stormous ransomware group claims to have exfiltrated sensitive data from UATF, including personal information of students and internal communications. This breach raises concerns about the security measures in place at the university, which, like many educational institutions, may have been targeted due to potential vulnerabilities in its IT infrastructure. The attack underscores the need for effective cybersecurity protocols to protect sensitive academic and personal data.

Profile of the Stormous Ransomware Group

Stormous has emerged as a controversial entity in the cybercrime landscape, known for its politically motivated attacks and alleged pro-Russian alignment. The group operates primarily on the dark web, often claiming responsibility for high-profile attacks, though many of these claims lack verification. Stormous's tactics include scavenger operations, where they exploit data leaks from other threat actors, raising questions about the authenticity of their operations.

Potential Vulnerabilities and Attack Vector

While specific details of how Stormous penetrated UATF's systems remain unclear, educational institutions are often vulnerable due to outdated software, insufficient cybersecurity training, and the vast amount of personal data they handle. These factors make them attractive targets for ransomware groups seeking to exploit weaknesses for financial or political gain.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.