Ransomware Attack on Atlantic States Marine Fisheries Commission: Targeted by 8Base Group

Incident Date:

April 15, 2024

World map

Overview

Title

Ransomware Attack on Atlantic States Marine Fisheries Commission: Targeted by 8Base Group

Victim

ASMFC: Atlantic States Marine Fisheries Commission

Attacker

8base

Location

Arlington, USA

Virginia, USA

First Reported

April 15, 2024

Ransomware Attack on Atlantic States Marine Fisheries Commission by 8Base Group

Overview of the Attack

The Atlantic States Marine Fisheries Commission (ASMFC), a prominent interstate compact organization, was recently targeted in a ransomware attack by the cybercriminal group known as 8Base. The attack involved the encryption of sensitive data and threats of public disclosure unless a ransom was paid.

About ASMFC

The ASMFC, established in 1942, plays a critical role in the conservation and management of nearshore migratory fishery resources along the Atlantic coast. It includes representatives from 15 Atlantic coast states and focuses on coordinated activities in areas such as interstate fisheries management, fisheries science, habitat conservation, and law enforcement. The commission employs between 51-200 individuals and reported modest revenue figures, which underscores its operational scale and the potential impact of the ransomware attack.

Why ASMFC Was Targeted

The choice of ASMFC as a target by 8Base could be attributed to several factors. Firstly, the nature of the organization's data, which includes extensive documentation on fishery management and personal data related to its operations, presents a valuable target for cybercriminals looking to leverage stolen data. Secondly, as a government-affiliated entity, ASMFC may be perceived as having valuable state-backed data, increasing its attractiveness as a target. Lastly, the potential vulnerabilities in their cybersecurity measures, typical of many public sector agencies with limited budgets for IT security, may have made ASMFC an easier target for the attackers.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.