Ransomware Attack on Wild Apple Graphics by 8Base Group
Incident Date:
October 9, 2024
Overview
Title
Ransomware Attack on Wild Apple Graphics by 8Base Group
Victim
Wild Apple Graphics
Attacker
8base
Location
First Reported
October 9, 2024
Ransomware Attack on Wild Apple Graphics by 8Base Group
Wild Apple Graphics, a prominent art licensing agency based in Woodstock, Vermont, has become the latest victim of a ransomware attack by the notorious 8Base group. Known for its trend-forward designs and collaborations with over 80 artists, Wild Apple Graphics has carved a niche in the art world by making beautiful art accessible to a broad audience. The company operates as a full-service art licensing agency, handling everything from art direction to marketing, and employs approximately 25 people.
Attack Overview
The attack, which compromised sensitive information such as invoice receipts, accounting documents, and personal data, is part of a larger campaign by 8Base targeting 13 companies across various industries. Despite the ransom deadline passing on September 30th, the data has not been released, raising questions about ongoing negotiations or the group's intentions. This incident highlights the vulnerabilities faced by small to medium-sized businesses in the media and internet sector, which often lack the cybersecurity measures needed to fend off sophisticated ransomware attacks.
About the 8Base Ransomware Group
The 8Base ransomware group has gained notoriety for its aggressive tactics and evolution into a sophisticated double-extortion operation. Emerging in April 2022, the group employs AES-256 encryption and utilizes a variant of the Phobos ransomware. They typically gain access through phishing emails or by purchasing compromised credentials on the Dark Web. The group is known for its distinct communication style, mimicking legitimate penetration testing firms to pressure victims into paying ransoms.
Potential Vulnerabilities
Wild Apple Graphics' focus on creativity and collaboration, while a strength in the art world, may also present vulnerabilities. The company's comprehensive approach to art licensing, which involves handling various aspects of the art creation process, could expose multiple entry points for cyber attackers. Additionally, as a small business, Wild Apple may not have the extensive cybersecurity infrastructure that larger corporations possess, making it an attractive target for ransomware groups like 8Base.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.