⚠️ You’re about to leave this site and be redirected to:

Skip to content Dark Web Informer - Cyber Threat Intelligence

⚠️ You’re about to leave this site and be redirected to:

Support
Sign In Subscribe
Ransomware

GMA News and Public Affairs Hit by Ransomware Attack

 and  Dark Web Informer - Cyber Threat Intelligence
4 min read

💡 Subscribe to DarkWebInformer.com for Unmatched Cyber Threat Intelligence 💡

Why Subscribe? Let me do the work and save you time.

Stay ahead of cyber threats and safeguard your digital assets while enhancing your cybersecurity awareness with just some of these exclusive subscriber-only features:

  • 📜
    Real-Time Threat Feed: Stay updated with 100–200 daily alerts covering ransomware disclosures, breaches, and leaks—now featuring unredacted screenshots starting March 26.
  • 📡
    Detailed Threat Posts: Stay updated on breaches, leaks, ransomware, DDoS attacks, and more.
  • 📤
    On-Demand Data Export: Export all 14,000+ alerts to JSON, CSV, or XML at any time for deeper analysis.
  • 🖼️
    Unfiltered Data Visibility: Instantly access high-resolution, watermark-free screenshots of leaked information. Unredacted details allow for fast, accurate threat assessments.
  • 🔗
    Direct Claim URLs: Instantly access claims with direct links for fast verification.
Subscribe Now Pay with Crypto

⚠ Disclaimer: This report includes actual screenshots and/or text containing unredacted personally identifiable information (PII) gathered from publicly available sources. The sensitive information presented within this report is intended solely for cybersecurity awareness and threat intelligence purposes. Dark Web Informer explicitly condemns unauthorized access, distribution, or misuse of the personal data displayed or referenced here. Users must treat exposed data responsibly and ethically.

🧩 Overview

The threat actor known as Devman has claimed responsibility for a significant ransomware attack targeting GMA News and Public Affairs, one of the largest media networks in the Philippines. The group alleges that they encrypted systems and destroyed domain trust relationships within the victim’s infrastructure.

📌 Key Details

  • 📅 Date of Attack: May 7, 2025
  • 🏢 Victim Organization: GMA News and Public Affairs
  • 🌐 Victim Site: gmanetwork.com
  • 🛡️ Victim Country: 🇵🇭 Philippines
  • 🏭 Victim Industry: Media & Broadcasting
  • 💰 Ransom Demand: $2.5 million
  • 📦 Stolen Data: 65 GB
  • 📂 Attack Method: Ransomware deployed via Group Policy Object (GPO); domain trust destruction
  • 📎 Data Access: Files from Windows servers and NAS were browsed and exfiltrated
  • 💬 Threat Actor: Devman

Subscriber-only content…

This post is for subscribers on the Pro tier

Subscribe

Already have an account? Sign In

Related

Latest