Cyber Incident Victim: Centrais Elétricas do Norte do Brasil
Date:
Jun 2014
Location:
Brazil
Summary
Anonymous hackers breached Centrais Elétricas do Norte do Brasil, leaking names, emails, and telephone numbers of approximately 3,400 users as part of a coordinated campaign against Brazilian institutions during the World Cup. The operation, branded #OpWorldCup, targeted multiple entities including government agencies, media outlets, telecom providers, and law enforcement, compromising employee and customer data such as emails, hashed passwords, IP addresses, and personal information to protest perceived corruption and misuse of public funds related to the event.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 3 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 2 actors | Available to members | Available to members |
Description
In June 2014, during the FIFA World Cup hosted in Brazil, the hacktivist collective Anonymous executed a coordinated cyber campaign dubbed #OpWorldCup, targeting multiple Brazilian institutions to protest government spending on the event and alleged corruption. Among the victims was Centrais Elétricas do Norte do Brasil S/A (Eletrobras Eletronorte), a major power utility company serving northern Brazil. The attackers breached the company's systems and exfiltrated personal data belonging to 3,400 users, including full names, email addresses, and telephone numbers. This breach was publicly disclosed alongside compromises of other high-profile entities, including Globo TV, the Brazilian Federal Police, the Regional Electoral Court of the Amazon, and government employee databases. Anonymous linked the operation to broader grievances against FIFA and Brazil’s political establishment, using hashtags like #OpMundial2014 and #FreeBrazil to amplify their message. The group leaked the stolen Eletronorte data through publicly accessible links, though the exact intrusion method remained unspecified in available reports.
The compromise of Eletronorte’s user data exposed sensitive employee and customer information, raising concerns about identity theft and operational security risks for critical infrastructure. No technical details about the breach’s detection, containment, or forensic investigation were disclosed in the source material. Similarly, the article did not confirm whether Eletronorte or other affected entities implemented mitigations like password resets, system audits, or law enforcement coordination. The incident formed part of a wider disruption campaign that included defacements, data dumps, and temporary takedowns of government and media websites, such as the Military Police of São Paulo’s portals. Anonymous justified the attacks as retaliation against perceived corruption and misplaced national priorities, embedding political messages in leaked data—including criticisms of FIFA and references to protests by Brazilian citizens. The scale of the Eletronorte breach underscored vulnerabilities in the digital assets of energy sector entities during a period of heightened hacktivist activity.