Cyber Incident Victim: CVC

The ransomware attack against Brazilian tourism company CVC occurred on October 2, 2021, disrupting multiple critical business systems. Attackers compromised the corporate website of CVC Corp, the company's holding entity, and disabled its central customer service operations. This forced the company to take affected systems offline while working to contain the incident. Only the virtual storefront had been restored to functionality at the time of initial reporting. CVC issued a public statement confirming the ransomware nature of the attack while asserting compliance with security protocols to protect user data. The company emphasized that core operational functions including shipment processing and reservation systems remained unaffected despite the disruption to customer-facing platforms. Service restoration proceeded gradually following stability verification of recovered systems, though no specific timeline was provided for full recovery of all impacted services.

The incident triggered immediate financial repercussions, with CVC shares declining 5.88% to R$21.78 on the São Paulo stock exchange by mid-morning on October 4. Company representatives declined to disclose specifics regarding compromised systems or attacker communications when contacted by media, stating investigations remained ongoing with further updates contingent on findings. This attack occurred within a broader Brazilian cybersecurity context where ransomware incidents ranked highest in Latin America according to 2021 Kaspersky data, with the country recording approximately 11,000 hourly attacks against Windows workstations. Previous high-profile ransomware cases in Brazil included the JBS meat processing conglomerate, which paid an $11 million ransom earlier that year, though no comparable payment details were confirmed in the CVC incident. The company maintained operational continuity for core travel services throughout the disruption while working to fully restore affected digital platforms.