Cyber Incident Victim: Instituto de Previdência de Feira de Santana
Date:
Mar 2025
Location:
Brazil
Summary
The president ofthe Instituto de Previdência de Feira de Santana, Midiã Leite, was targeted in a cyber attack on her social media accounts during the Carnival period, resulting in her access being blocked by perpetrators who used sophisticated methods such as facial recognition to compromise her profiles. She stated that any communication appearing to come from her through those channels should be disregarded, as attackers may attempt to deceive others for fraudulent purposes. She said she is pursuing all available legal and technical measures to regain control of her accounts and address the incident, while urging the public to avoid interacting with suspicious messages and to report them to the appropriate authorities.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On March 3, 2025, during the Carnival period, the president of the Instituto de Previdência de Feira de Santana (IPFS), Midiã Leite, became the target of a cyber attack. The attack was directed at her personal social media accounts. Attackers succeeded in gaining unauthorized access to those accounts. As a result, her access to the platforms was blocked by the perpetrators. The perpetrators employed sophisticated techniques, which included the use of facial recognition technology. The incident was disclosed publicly by Midiã Leite herself.
The compromise raised the risk that malicious actors could impersonate her through those channels. Such impersonation could be used to send fraudulent messages requesting information, actions, or assets from third parties. Midiã Leite explicitly warned the public to disregard any communication purporting to come from her via the compromised social media. She stated that she is pursuing all available legal and administrative measures to address the breach. Those measures include both juridical actions and technical efforts aimed at recovering control of the accounts. Authorities have advised the community to avoid interacting with suspicious messages and to report any dubious activity to the appropriate authorities.