Ransomware Group: BEAST

VICTIM NAME: Escauto Centro Automotivo

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the BEAST Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

On August 16, 2025, BEAST published a leak page attributing Escauto Centro Automotivo as a victim of a ransomware incident. The post frames the event as a data leak rather than a straightforward encryption event, aligning with BEAST’s double-extortion pattern. The post date corresponds to the publication date of the leak page. The victim is described as a small Brazilian retailer operating in the Automobile Parts Stores sector, employing about 5 to 9 people with annual revenue in the BRL 500k to BRL 1M range. The exact headquarters address is redacted; the organization is indicated to be based in Brazil. The page bears the BEAST LEAKS branding and asserts data exfiltration from Escauto Centro Automotivo. There is no explicit ransom amount stated in the visible excerpt, and the page does not appear to offer downloadable data.

The leak page includes ten images, presented as screenshots of internal documents or data extracts, though the exact contents of these images are not described in the excerpt. The post excerpt reiterates the victim’s profile and branding, reinforcing the data-leak narrative rather than a conventional encryption claim. Taken together, the page suggests a data-leak event associated with BEAST, without specifying any ransom figure in the visible text. No additional downloadable items are indicated on the page beyond the ten images.