8base ransomware site taken down in global police operation

Ransomware
(Image credit: Getty Images)

  • 8base ransomware group site has been seized by law enforcement
  • Four have been arrested as part of the takedown
  • The US and Switzerland may push for extradition

A joint operation from law enforcement groups across the US, Europe, and Asia, has seized the infamous 8base ransomware group’s dark web leak site as part of a takedown operation which saw four suspects arrested.

The site has now been shuttered, and site visitors are met with a message notifying users that the ‘criminal content’ and the site have been ‘seized by the Bavarian State Criminal Police Office’.

The four European suspects were arrested in Phuket, Thailand, with the charges against them include conspiracy to commit wire fraud, and conspiracy to commit an offense against the United States. US and Swiss authorities have reportedly requested extradition of the suspects.

Operation Phobos Aetor

The arrests were part of ‘Operation Phobos Aetor’ - and the 8base have previously been observed using a ‘bespoke version of the Phobos ransomware’ in an attack in which United Nations data was ripped from IT systems.

Since the group's debut in early 2022, 8base has reportedly engaged with high-profile targets, such as the Nidec Corporation, which had over 50,000 files stolen, a ‘huge amount’ of them being confidential, in a cyberattack late in 2024.

“The PHOBOS and 8BASE ransomware strains had a significant impact on the UK, with law enforcement providing support to over 200 victims" Paul Foster, head of The UK's National Cyber Crime Unit told TechRadar Pro.

“As a result of intelligence obtained during the investigation, the NCA and our policing partners were able to prevent a number of businesses who were targeted by these ransomware strains from succumbing to encryption and becoming victims, therefore mitigating the devastating impact an attack would have had on their companies.”

Ransomware attacks have soared to new highs recently, and present a huge threat to businesses - costing organizations an average of over $45,000, but often reaching the millions for large firms.

This is despite research revealing that only around 30% of ransomware attacks actually result in payment - but even still a reported $813.55 million was paid by ransomware victims in 2024, down from $1.25 billion in 2023.

Like all types of cybercrime, the landscape is evolving fast, but so is law enforcement. Groups like Lockbit have suffered major disruptions in recent years and have struggled to bounce back, so the cat and mouse game between criminals and cybersecurity agencies continues.

You might also like

Ellen Jennings-Trace
Staff Writer

Ellen has been writing for almost four years, with a focus on post-COVID policy whilst studying for BA Politics and International Relations at the University of Cardiff, followed by an MA in Political Communication. Before joining TechRadar Pro as a Junior Writer, she worked for Future Publishing’s MVC content team, working with merchants and retailers to upload content.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Read more
Cryptocurrencies
Ransomware’s favorite Russian crypto exchange seized by law enforcement
Cyber crime concept with man in handcuffs
Global police operation takes down major cybercrime and hacking forums
Representational image of a cybercriminal
US, UK crack down on Russian bulletproof hosting service ZServers for LockBit partnership
A laptop with a red screen with a white skull on it with the message: "RANSOMWARE. All your files are encrypted."
More reports claim 2024 was the worst year for ransomware attacks yet
A laptop with a red screen with a white skull on it with the message: "RANSOMWARE. All your files are encrypted."
Less than half of ransomware incidents end in payment - but you should still be on your guard
Ransomware
Top ransomware gang's internal chat logs leaked online
Latest in Security
Avast cybersecurity
UK cybersecurity sector could be worth £13bn, research shows
An option to add Ambient Music buttons to the iOS 18.4 Control Center.
Apple fixes dangerous zero-day used in attacks against iPhones and iPads
An American flag flying outside the US Capitol building against a blue sky
Sean Plankey selected as CISA director by President Trump
Ai tech, businessman show virtual graphic Global Internet connect Chatgpt Chat with AI, Artificial Intelligence.
Nation-state threats are targeting UK AI research
Scam alert
Fake jobs and phone calls: How Americans lost $12.5 bn to fraud in 2024
Application Security Testing Concept with Digital Magnifying Glass Scanning Applications to Detect Vulnerabilities - AST - Process of Making Apps Resistant to Security Threats - 3D Illustration
Google bug bounty payments hit nearly $12 million in 2024
Latest in News
Elayne, Egwene, and Nynaeve dressed regally and on horseback in The Wheel of Time season 3
'There's a reason why we do it': The Wheel of Time showrunner responds to fans who are still upset over the Prime Video show's plot alterations
Google Pixel 9
Android 16 could bring an improved Samsung DeX-style desktop mode to more phones
An Nvidia GeForce RTX 4060 Ti
Nvidia could unleash RTX 5060 and 5060 Ti GPUs on PC gamers tomorrow, but there’s no sign of rumored RTX 5050 yet
AI writing
ChatGPT just wrote the most beautiful short story, and I wonder what I'm even doing here
Project Moohan prototype at Samsung Galaxy Unpacked, an XR goggles headset on display in a show area
Samsung's Android XR headset could avoid the Apple Vision Pro's biggest mistake, according to this leak
Avast cybersecurity
UK cybersecurity sector could be worth £13bn, research shows