[German]International law enforcement organizations (FBI, Interpol), have seized the leak site of the ransomware group 8Base, with the participation of the Bavarian State Office of Criminal Investigation and on behalf of the Bamberg Public Prosecutor General's Office. In addition, four European suspects were arrested in Thailand.
Advertising
The 8Base ransomware group
8Base is a ransomware group that first appeared in 2022, according to Check Point. The malware started as crypto-ransomware. In 2023 in particular, the group intensified its activities and significantly refined its methods. The malware was further developed and enables several blackmail methods in its attacks. For example, the group tries to force victims to pay not only by encrypting files but also by threatening to disclose captured data.
The malware is very similar to that of Phobos and related groups. However, there is no known formal relationship between the two groups. There has been many victim – including the VW group.
8Base site seized
A security researcher has now noticed that the leak page of the ransomware group 8Base has probably been confiscated by law enforcement officers.
According to security researchers, the leak site was seized by the Bavarian State Criminal Police Office on behalf of the Bamberg Public Prosecutor General's Office. There do not yet appear to be any press releases from law enforcement, but The Register reports here of an international police operation. This is said to have extended across the USA, Europe and Asia.
Advertising
The Bavarian police seized the dark web portal. Both Europol and the UK's National Crime Agency (NCA) confirmed to The Register that they were involved in the police operation. The law enforcement action not only led to the seizure of the 8Base ransomware group's dark web presence.
There has also been an arrest of four European suspects. They are accused of having extorted 16 million dollars from more than 1,000 victims worldwide. The information about the arrest of these suspects in Phuket (Thailand) as part of Operation Phobos Aetor can be found on this Thai website.
The suspects, two men and two women wanted by Swiss and US authorities, were apprehended on Interpol warrants in coordinated raids at four locations (Mono Soi Palai, Supalai Palm Spring, Supalai Vista Phuket and Phyll Phuket x Phuketique Phyll). Police seized over 40 pieces of evidence, including cell phones, laptops and digital wallets. The suspects are charged with conspiracy to commit an offense against the United States and conspiracy to commit fraud.
According to The Register, the British National Crime Agency (NCA) "has played a supporting role in this case" and Europol plans to release further information today (Tuesday, February 11, 2025) at 2 p.m. CET. There is currently no information from the FBI or the Bavarian LKA etc. There is only this German text, which may have been leaked in advance.
Advertising
