A coalition of international law enforcement agencies has successfully dismantled the dark web leak site associated with the 8base ransomware group as part of a coordinated takedown effort.
According to a message displayed on the group’s dark web leak site, which has been reviewed by TechCrunch, “This hidden site and the criminal content have been seized by the Bavarian State Criminal Police Office on behalf of the Office of the Public Prosecutor General in Bamberg.”
The message indicates that law enforcement agencies from Europe, Japan, the United States, and the United Kingdom participated in the takedown operation.
Lucy Sneddon, a representative from the U.K.’s National Crime Agency (NCA), verified the authenticity of the takedown notification in a message to TechCrunch, stating that the U.K. played a “supportive role” in this operation.
Other law enforcement representatives involved in the takedown have not yet responded to inquiries from TechCrunch.
Security researchers were the first to identify the seizure notice on Monday.
The 8base gang, which is driven by financial motives, emerged in 2022. Security analysts have linked this group to the RansomHouse extortion network, and they are known for employing double-extortion strategies, where they encrypt data and threaten to release sensitive details unless a ransom is paid.
In 2023, U.S. authorities issued a warning about the 8base gang’s broad targeting across various sectors, particularly in the United States, including healthcare. The gang was also responsible for a cyber incident affecting the United Nations Development Programme the previous year.
Before this week’s takedown, the 8base group described itself on its dark web leak site as “honest and straightforward pentesters.” Similar to the notorious Clop ransomware group, 8base asserted that it only targets entities that disregard the privacy and significance of their employees’ and customers’ data.
8base has utilized various ransomware variants, including Phobos, in its attacks. Last year, the U.S. government successfully extradited a suspected Russian hacker believed to be a principal operator within the infamous Phobos ransomware scheme.
Compiled by Techarena.au.
Fanpage: TechArena.au
Watch more about AI – Artificial Intelligence
