• Home
  • News
  • 8Base Targets Sweden, US, and France

8Base Targets Sweden, US, and France

Miklos Zoltan

By Miklos Zoltan . 25 January 2024

Founder - Privacy Affairs

Alex Popa

Fact-Checked this

8Base took responsibility for attacking and infiltrating 4 victims today, namely Glimstedt, Sunfab Hydraulics, Midwest Service Center, and Ligue Enseignement Isere. None of the victims made any public statements.

  • The ransomware attacks led to data leak and encryption, causing the victims’ websites to go offline
  • The normal operations also froze, as is the case with most ransomware attacks
  • 8Base currently ranks as one of the more aggressive and dangerous ransomware groups
  • The organization takes pride with its MOs and ability to infiltrate most targets

Ransomware attacks are on a spree recently and 8Base is proof of that. The group spiked its activity considerably since June of 2023 and it doesn’t seem to slow down. There are theories as to why that is.

One notable theory is that actually paying the ransoms incentivizes attackers to stay in business. Especially if the ransoms are significant in value, as is most often the case. For this reason, most experts advise refraining from paying the ransom.

X showing the 8BASE attack on the four new victims
https://twitter.com/FalconFeedsio/status/1750133849303203872

That’s because, aside from serving as motivation for the attackers to continue their cybercriminal activities, paying the ransom doesn’t guarantee anything. The attacker may still leak the data publicly or refuse to provide the decryption key.

The alternative? Rely on experts to circumvent the problem and figure out a decryption key. And since prevention is the best guardian, upgrading the defensive software and relying on double verification are always necessary.

Who Is 8Base?

8Base took off in March of 2022, but kept a low profile until recently. Experts noticed a spike in cybercriminal activity starting with June of 2023 and going into 2024. The organization doesn’t appear to have a favorite industry.

It attacks pretty much indiscriminately, targeting primarily small and medium-sized companies. The preferred countries are US and the UK, but considerably activity has been observed in other countries as well.

Compared to other ransomware actors, 8Base is still on the low end in terms of casualties. The organization has amassed around 80 victims over the span of a year and a half. This is a far cry from the hundreds of victims attributed to other groups.

Or, as is the case with Lockbit, more than 1,700 victims. However, nearly half of the victims have been recorded in June last year. This shows that 8Base is testing its capabilities and limits, which is an ominous sign of the times to come.

Our Mission

We believe security online security matters and its our mission to make it a safer place.

Leave a Comment