The 8BASE ransomware group not too long ago listed a certified Toyota forklift supplier on its listing of victims.
The hacker collective allegedly has information from the web site of ToyotaLift Northeast. The group publicly introduced the alleged failed negotiations and the deadline for the ransom fee.
The ToyotaLift Northeast cyber assault has not been confirmed by the corporate. Nonetheless, the hackers have claimed to have information from ToyotaLift Northeast.
ToyotaLift Northeast provides loading and unloading vehicles for carrying items or fork lifting. The corporate presents high quality new and used forklifts on the east coast. It’s primarily based in New York and caters to places together with Better Philadelphia, New Jersey, New York, Delaware, and Maryland.
Particulars concerning the claimed ToyotaLift Northeast cyber assault
8BASE wrote that that they had a protracted negotiation with the crew of ToyotaLift Northeast nevertheless, it didn’t prove as anticipated. The quantity of ransom demanded by the hackers was not acknowledged within the dark web put up.
The official web site of ToyotaLift Northeast displayed a message stating that they have been dealing with points as a result of a “web site replace”. Nonetheless, it’s unclear whether or not it was linked to the ToyotaLift Northeast cyber assault.
The message verified that the producer’s showroom pages have been experiencing issues as a result of an internet site replace. Nonetheless, the web site didn’t present an estimated timeframe for when the pages can be restored.
The Cyber Categorical has reached out to the corporate for feedback relating to the reported ToyotaLift Northeast cyber assault and related threats. This report will probably be up to date as soon as a response is obtained.
ToyotaLift Northeast cyber assault and failed negotiations
The ToyotaLift Northeast ransomware message by 8BASE claimed that after a protracted negotiation, the corporate determined to cease speaking with the group. 8BASE allegedly exfiltrated the knowledge of the corporate purchasers together with private correspondence.
They threatened to leak all the information from the ToyotaLift cyber assault which additionally included monetary statements and different paperwork with confidential info.
The date of releasing all of the exfiltrated information on the darkish internet from the ToyotaLift ransomware assault was August 23, 2023.
What we all know concerning the 8BASE ransomware group
Researchers suspect that 8BASE isn’t a brand new group and as a substitute is a part of a well-established group seeing the scale of cyber assaults by them.
Energetic since 2022, there was a surge in cyber attacks by 8BASE since Could 2023.
Seeing the similarities between 8BASE and the RansomHouse group, it’s doubtless that the group members are one and the identical or that they share sources for cyber assaults. The ransom observe pattern from each ransomware teams results in suspicion of them being related.
Researchers used a Pure Language Processing mannequin that in contrast the ransom notes used by 8BASE and Ransomhouse, and it was discovered that the notes have been 99% equivalent.
According to an Avertium report, RansomHouse was found in December 2021. Nonetheless, the group has not been discovered deploying ransomware or encrypting information. As an alternative, they ship ransom notes to extort cash for the information they’ve.
This results in speculations that they purchase information stolen by different teams or entry information launched by different hackers and earn a living out of it.
The whereabouts and the modus operandi of each cybercrime teams stay unclear with their motive being to earn a living from stolen information.
8BASE has targeted industries together with finance, enterprise providers, manufacturing, and healthcare utilizing vulnerabilities in software program.
The Phrases of Service web page by the hackers, declare to not exploit the identical vulnerability once more.
“Present vulnerabilities won’t ever be utilized by the crew for additional assaults. In case new vulnerabilities will probably be found, the corporate will probably be notified,” concluded the Phrases of Service web page by the 8BASE ransomware group.
Media Disclaimer: This report is predicated on inner and exterior analysis obtained by means of numerous means. The data supplied is for reference functions solely, and customers bear full duty for his or her reliance on it. The Cyber Categorical assumes no legal responsibility for the accuracy or penalties of utilizing this info.
Associated
