INNO-SOFT Info Systems Pte Ltd: Dealing with the Aftermath of a Cyberattack

Incident Date:

April 8, 2024

World map

Overview

Title

INNO-SOFT Info Systems Pte Ltd: Dealing with the Aftermath of a Cyberattack

Victim

INNO-SOFT Info Systems Pte Ltd

Attacker

8base

Location

Singapore, Singapore

, Singapore

First Reported

April 8, 2024

Ransomware Attack on INNO-SOFT Info Systems Pte Ltd

Victim Profile

INNO-SOFT Info Systems Pte Ltd is a company based in Singapore that specializes in helping companies set up effective systems and procedures to support their operations. The company is managed by qualified accountants and experienced Information Technology (IT) professionals, with a primary focus on assisting customers in maximizing their productivity and profitability through the effective use of IT.

Industry Standing

INNO-SOFT Info Systems Pte Ltd operates in the Business Services sector and stands out in the industry for its expertise in setting up efficient systems and procedures to support business operations. The company's combination of qualified accountants and IT professionals sets them apart in helping customers achieve maximum productivity and profitability through IT solutions.

Attack details

A cyberattack by 8Base, classified as cybercrime, targeted the company's website using ransomware. The attack resulted in the compromise of various sensitive data types, including invoices. The ransom deadline was set for April 12, 2024.

Vulnerabilities

INNO-SOFT Info Systems Pte Ltd was targeted by the 8Base ransomware group, known for its aggressive tactics and double-extortion strategy. The group targets small and medium-sized businesses across various sectors, including business services, finance, manufacturing, and information technology. 8Base uses customized ransomware strains, such as Phobos with a ".8base" extension, and spreads through phishing emails, exploit kits, and drive-by downloads. The double-extortion tactic, where the group encrypts files and threatens to release stolen data if the ransom is not paid, adds pressure on victims to comply.

Sources:

INNO-SOFT Info Systems Pte Ltd

VMware - 8Base Ransomware

SocRadar - Dark Web Profile: 8Base Ransomware

U.S. Department of Health & Human Services - 8Base Ransomware Analyst Note

CyberInt - All About That 8Base Ransomware Group

Proven Data - 8Base Ransomware

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.