Ransomware Attack on Atlantic States Marine Fisheries Commission: Targeted by 8Base Group
Incident Date:
April 15, 2024
Overview
Title
Ransomware Attack on Atlantic States Marine Fisheries Commission: Targeted by 8Base Group
Victim
ASMFC: Atlantic States Marine Fisheries Commission
Attacker
8base
Location
First Reported
April 15, 2024
Ransomware Attack on Atlantic States Marine Fisheries Commission by 8Base Group
Overview of the Attack
The Atlantic States Marine Fisheries Commission (ASMFC), a prominent interstate compact organization, was recently targeted in a ransomware attack by the cybercriminal group known as 8Base. The attack involved the encryption of sensitive data and threats of public disclosure unless a ransom was paid.
About ASMFC
The ASMFC, established in 1942, plays a critical role in the conservation and management of nearshore migratory fishery resources along the Atlantic coast. It includes representatives from 15 Atlantic coast states and focuses on coordinated activities in areas such as interstate fisheries management, fisheries science, habitat conservation, and law enforcement. The commission employs between 51-200 individuals and reported modest revenue figures, which underscores its operational scale and the potential impact of the ransomware attack.
Why ASMFC Was Targeted
The choice of ASMFC as a target by 8Base could be attributed to several factors. Firstly, the nature of the organization's data, which includes extensive documentation on fishery management and personal data related to its operations, presents a valuable target for cybercriminals looking to leverage stolen data. Secondly, as a government-affiliated entity, ASMFC may be perceived as having valuable state-backed data, increasing its attractiveness as a target. Lastly, the potential vulnerabilities in their cybersecurity measures, typical of many public sector agencies with limited budgets for IT security, may have made ASMFC an easier target for the attackers.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.