Light S.A.
| Primary URL | Location | Industry | light[.]com[.]br |
Country
Brazil
|
Energy
|
|---|
Profile
Light S.A. is a Brazilian electrical energy company with its headquarters located in Brazil.
The organization engages in the generation, transmission, and distribution of electricity to end‑users across its service territory.
As a participant in the Brazilian power sector, it operates under the regulatory framework established by national energy authorities.
Its customer base includes residential, commercial, and industrial consumers who rely on its supply for daily operations.
By providing essential power services, Light S.A. contributes to the stability and development of the country's energy infrastructure.
Light S.A. holds a licensed status as a utility, which obliges it to comply with oversight from agencies such as the National Agency of Electric Energy (ANEEL).
The company functions within a market that features a mix of hydroelectric, thermal, wind, and solar generation sources.
Its operational responsibilities include maintaining grid reliability and adhering to technical standards set forth by sector regulations.
These distinguishing attributes position Light S.A. as a key player in the delivery of electricity throughout Brazil.
The organization's role in critical infrastructure means it is subject to both physical and cyber‑security risk considerations.
On June 17, 2020, Light S.A. was targeted by the Sodinokibi (REvil) ransomware group, which encrypted systems and demanded a ransom of approximately fourteen million United States dollars in Monero cryptocurrency.
The attackers specified that the demanded amount would double if payment was not received by a set deadline, a common pressure tactic employed by the group.
Investigation revealed that the intrusion exploited the known Windows vulnerability CVE‑2018‑8453, using packed malware binaries that incorporated geographic whitelisting to avoid certain regions.
Researchers noted that the ransomware variant lacked a universal decryption key, leaving victims dependent on the threat actor’s private key for any potential data recovery.
During the attack, Light S.A.’s public website became inaccessible, and the company acknowledged the breach while refraining from releasing detailed technical specifics about the incident.