8Base Infiltrates 5 Across 4 Countries

By Bogdan Pătru . 22 April 2024

Tech Writer

Fact-Checked this

The 8Base gang announced 5 victims in an unprecedented attack spanning across 4 countries. These are the US, Germany, Italy, and France. According to the gang’s OP, the targets are medium-to-high value, so they’re likely to pack serious revenue numbers.

8Base actors are known to prioritize private corporations with healthy revenue scores that increase the likelihood of a meaty profit
Neither of those attacked have commented on the event so far
Out of the 5 companies, Speedy France appears to be the largest, with 500 centers and more than 1,400 employees specializing in car maintenance and repair
8Base isn’t known to attack multiple targets at once, especially several high-value ones at once

As data shows, ransomware attacks have reached a new peak in 2023 and the trend seems to be on an upward trend for the current year. According to the latest numbers:

Ransomware attacks have produced 55% more victims in 2023 compared to the previous year
Q2 and Q3 of 2023 claimed more victims than the entire 2022, with little over 2900 successful breaches
Ransom payments surpassed $1 billion in 2023
Ransomware groups have started to target high-value targets more, leading to higher ransoms and increased notoriety for the hackers

It’s also important to note that 2023 marked an important year for new-coming ransomware actors. We have a lot of new cybercriminal gangs making a name for themselves in a very short time span. 8Base is one of them.

X showing the 8BASE attack on the 5 victims — https://twitter.com/FalconFeedsio/status/1782415133215428846

But what makes 8Base so feared and intimidating? The group started publicly in early 2023, operating based on simple extortion tactics. The hackers would steal the data and summon the victim for negotiations to prevent the data from leaking publicly.

In May of the same year, 8Base decided to move to the double-extortion practice, which also encrypts the victim’s system. This created even more leverage that the hackers could use during negotiations to increase the value of the ransom.

It didn’t take long for 8Base to start targeting high-value institutions. The hackers always follow the money trail and they’re only interested in the target’s revenue.

How to Deal with an 8Base Attack?

The most natural and straightforward advice is: don’t negotiate and don’t pay the ransom. But this is easier said than done. Some companies have no choice but to negotiate, especially when their reputation is on the line.

Or when, by the nature of their services, they cannot afford to have their systems offline for too long. So, they decide to take the financial loss and regain control over their systems, than to play the stubborn game and lose more in the long run.

Even so, cybersecurity experts advise against it. First, because paying the ransom doesn’t guarantee that the hackers won’t leak the data publicly. Or that they won’t share it with other cybercriminal groups. Which they do more often than not.

Second, because negotiating and agreeing to pay automatically marks the victim as vulnerable. This will inevitably lead to more breaches and more losses down the line.

Naturally, the ultimate decision belongs to the victim. But it’s a good perspective to ponder on anyway.

Our Mission

We believe security online security matters and its our mission to make it a safer place.

Author, Creative Writer, and Tech-Geek Bogdan has followed his passion for the digital world ever since he got his hands on his first PC. After years of accumulating knowledge and experience, the good Samaritan in him whispered to him one day about the virtue of sharing that knowledge with those who needed it. It was in 2014 when that idea would grow into a life-defining passion. One that keeps driving him to this day.

Cookie	Duration	Description
CookieLawInfoConsent	1 year	CookieYes sets this cookie to record the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie.
viewed_cookie_policy	1 year	The GDPR Cookie Consent plugin sets the cookie to store whether or not the user has consented to use cookies. It does not store any personal data.
wpEmojiSettingsSupports	session	WordPress sets this cookie when a user interacts with emojis on a WordPress site. It helps determine if the user's browser can display emojis properly.

Cookie	Duration	Description
_ga	1 year 1 month 4 days	Google Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognise unique visitors.
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.
_gat_UA-*	1 minute	Google Analytics sets this cookie for user behaviour tracking.
_gid	1 day	Google Analytics sets this cookie to store information on how visitors use a website while also creating an analytics report of the website's performance. Some of the collected data includes the number of visitors, their source, and the pages they visit anonymously.
_omappvp	1 year 1 month 4 days	The _omappvp cookie is set to distinguish new and returning users and is used in conjunction with _omappvs cookie.
_omappvs	20 minutes	The _omappvs cookie, used in conjunction with the _omappvp cookies, is used to determine if the visitor has visited the website before, or if it is a new visitor.

8Base Infiltrates 5 Across 4 Countries

How to Deal with an 8Base Attack?

Our Mission

Bogdan Pătru

Leave a Comment Cancel