Cyber Threat Actor: Coletivo Internacional Anonymous
| Actor Type | Location | Known Incidents |
Activist
|
Brazil
|
0 incidents |
|---|
Profile
Coletivo Internacional Anonymous is a hacktivist collective that has been identified in Brazilian cybersecurity reporting as the actor behind a series of attempts against municipal government websites. The group operates under this alias and is known to be based in Brazil, as indicated by the geographic focus of its reported activities. Public sources describe it as a self‑declared collective that frames its actions as protests rather than criminal enterprises.
The collective’s targeting has consistently involved municipal legislative portals, specifically the Câmara Municipal de Salvador, the Câmara Municipal de Teresina, and the Câmara Municipal de Belo Horizonte. These incidents show a pattern of focusing on local government online services within Brazil. According to the Security Report article, the motive behind the Salvador attempt was to protest the handling of sexual harassment cases in universities and to demand the opening of a national parliamentary inquiry (CPI) on the issue. This indicates that the group’s strategic objective is to generate publicity and pressure authorities through disruption of online services, rather than financial gain or espionage.
The reported tactics involve detecting suspicious activity within the technological infrastructure that hosts the targeted portal, prompting the municipal IT team to implement restoration measures. No specific malware families, initial access vectors, or tooling styles are disclosed in the source material, so only the general observation of unauthorized access attempts can be noted. The article confirms that the attacks did not result in data integrity breaches, information leakage, or lasting service disruption, as services were restored without impact. Attribution to a state sponsor or criminal consortium is not mentioned; the group is presented as an independent collective aligned with the broader Anonymous movement only by name, not by any explicit link provided in the sources. Notable operations include the October 2023 attempt against Salvador’s portal, the August 2022 incident affecting Teresina’s site, and the 2021 outage of Belo Horizonte’s municipal portal, each cited as examples of the group’s recurring focus on Brazilian municipal online infrastructure.
