Stone Future Inc. Hit by 8Base Ransomware Exposing SME Risks
Incident Date:
October 9, 2024
Overview
Title
Stone Future Inc. Hit by 8Base Ransomware Exposing SME Risks
Victim
Stone Future inc
Attacker
8base
Location
First Reported
October 9, 2024
Ransomware Attack on Stone Future Inc. by 8Base Group
Stone Future Inc., a prominent player in the monument industry, has recently fallen victim to a ransomware attack orchestrated by the notorious 8Base group. This incident highlights the vulnerabilities faced by small to medium-sized enterprises in the manufacturing sector, particularly those with significant international operations.
About Stone Future Inc.
Established in 1999 and headquartered in Elberton, Georgia, Stone Future Inc. specializes in the design and manufacturing of granite monuments and memorial products. As a subsidiary of Xiamen Wanli Stone, the largest stone monument supplier in China, the company benefits from a well-established supply chain, leveraging high-quality materials sourced internationally. Despite its small size, with an employee count ranging from 2 to 10, Stone Future Inc. has carved a niche in the monument industry by emphasizing craftsmanship and customer satisfaction. Their annual revenue is estimated at $5.1 million, reflecting their stable position within this specialized market.
Details of the Attack
The ransomware attack, claimed by the 8Base group, compromised a wide array of sensitive information, including invoices, receipts, accounting documents, personal data, and confidential agreements. The breach was made public on September 23rd, as part of a broader campaign targeting 13 companies across various industries and countries. Although the ransom deadline passed on September 30th, the data has not been released, raising questions about the status of negotiations or potential strategic withholding by the attackers.
Profile of the 8Base Ransomware Group
The 8Base ransomware group has been active since April 2022, evolving into a sophisticated double-extortion operation. They employ AES-256 encryption and typically gain entry through phishing emails or compromised credentials sold on the Dark Web. The group is known for its aggressive tactics, targeting small to medium-sized businesses across sectors such as finance, healthcare, manufacturing, and IT. Their operations have a significant concentration in the United States, with a notable presence in Brazil and Europe.
Potential Vulnerabilities
Stone Future Inc.'s vulnerabilities may stem from its small size and limited resources dedicated to cybersecurity. The company's extensive international operations and reliance on digital systems for managing supply chains and customer data could have made it an attractive target for the 8Base group. The attack underscores the importance of effective cybersecurity measures, especially for businesses with significant international dealings.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.