8base ransomware site taken down in global police operation

News
By published

Four arrested after $16 million stolen worldwide

Ransomware
(Image credit: Getty Images)
  • 8base ransomware group site has been seized by law enforcement
  • Four have been arrested as part of the takedown
  • The US and Switzerland may push for extradition

A joint operation from law enforcement groups across the US, Europe, and Asia, has seized the infamous 8base ransomware group’s dark web leak site as part of a takedown operation which saw four suspects arrested.

The site has now been shuttered, and site visitors are met with a message notifying users that the ‘criminal content’ and the site have been ‘seized by the Bavarian State Criminal Police Office’.

The four European suspects were arrested in Phuket, Thailand, with the charges against them include conspiracy to commit wire fraud, and conspiracy to commit an offense against the United States. US and Swiss authorities have reportedly requested extradition of the suspects.

Operation Phobos Aetor

The arrests were part of ‘Operation Phobos Aetor’ - and the 8base have previously been observed using a ‘bespoke version of the Phobos ransomware’ in an attack in which United Nations data was ripped from IT systems.

Since the group's debut in early 2022, 8base has reportedly engaged with high-profile targets, such as the Nidec Corporation, which had over 50,000 files stolen, a ‘huge amount’ of them being confidential, in a cyberattack late in 2024.

“The PHOBOS and 8BASE ransomware strains had a significant impact on the UK, with law enforcement providing support to over 200 victims" Paul Foster, head of The UK's National Cyber Crime Unit told TechRadar Pro.

“As a result of intelligence obtained during the investigation, the NCA and our policing partners were able to prevent a number of businesses who were targeted by these ransomware strains from succumbing to encryption and becoming victims, therefore mitigating the devastating impact an attack would have had on their companies.”

Ransomware attacks have soared to new highs recently, and present a huge threat to businesses - costing organizations an average of over $45,000, but often reaching the millions for large firms.

This is despite research revealing that only around 30% of ransomware attacks actually result in payment - but even still a reported $813.55 million was paid by ransomware victims in 2024, down from $1.25 billion in 2023.

Like all types of cybercrime, the landscape is evolving fast, but so is law enforcement. Groups like Lockbit have suffered major disruptions in recent years and have struggled to bounce back, so the cat and mouse game between criminals and cybersecurity agencies continues.

You might also like

Ellen Jennings-Trace
Ellen Jennings-Trace
Staff Writer

Ellen has been writing for almost four years, with a focus on post-COVID policy whilst studying for BA Politics and International Relations at the University of Cardiff, followed by an MA in Political Communication. Before joining TechRadar Pro as a Junior Writer, she worked for Future Publishing’s MVC content team, working with merchants and retailers to upload content.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Read more
Cryptocurrencies
Ransomware’s favorite Russian crypto exchange seized by law enforcement
Cyber crime concept with man in handcuffs
Global police operation takes down major cybercrime and hacking forums
Representational image of a cybercriminal
US, UK crack down on Russian bulletproof hosting service ZServers for LockBit partnership
A laptop with a red screen with a white skull on it with the message: "RANSOMWARE. All your files are encrypted."
More reports claim 2024 was the worst year for ransomware attacks yet
Code Skull
Interpol operation arrests 300 suspects linked to African cybercrime rings
A laptop with a red screen with a white skull on it with the message: "RANSOMWARE. All your files are encrypted."
Less than half of ransomware incidents end in payment - but you should still be on your guard
Latest in Security
cybersecurity
Chinese government hackers allegedly spent years undetected in foreign phone networks
Data leak
A major Keenetic router data leak could put a million households at risk
Code Skull
Interpol operation arrests 300 suspects linked to African cybercrime rings
Insecure network with several red platforms connected through glowing data lines and a black hat hacker symbol
Multiple routers hit by new critical severity remote command injection vulnerability, with no fix in sight
Code Skull
This dangerous new ransomware is hitting Windows, ARM, ESXi systems
An abstract image of a lock against a digital background, denoting cybersecurity.
Critical security flaw in Next.js could spell big trouble for JavaScript users
Latest in News
Open AI
OpenAI live stream - could we see a major ChatGPT upgrade?
Apple WWDC 2025 announced
Apple just announced WWDC 2025 starts on June 9, and we'll all be watching the opening event
Hornet swings their weapon in mid air
Hollow Knight: Silksong gets new Steam metadata changes, convincing everyone and their mother that the game is finally releasing this year
OpenAI logo
OpenAI just launched a free ChatGPT bible that will help you master the AI chatbot and Sora
NetSuite EVP Evan Goldberg at SuiteConnect London 2025
"It's our job to deliver constant innovation” - NetSuite head on why it wants to be the operating system for your whole business
Monster Hunter Wilds
Monster Hunter Wilds Title Update 1 launches in early April, adding new monsters and some of the best-looking armor sets I need to add to my collection
More about security
cybersecurity

Chinese government hackers allegedly spent years undetected in foreign phone networks
Data leak

A major Keenetic router data leak could put a million households at risk
Open AI

OpenAI live stream - could we see a major ChatGPT upgrade?
See more latest
Most Popular
Open AI
OpenAI live stream - could we see a major ChatGPT upgrade?
NetSuite EVP Evan Goldberg at SuiteConnect London 2025
"It's our job to deliver constant innovation” - NetSuite head on why it wants to be the operating system for your whole business
Apple WWDC 2025 announced
Apple just announced WWDC 2025 starts on June 9, and we'll all be watching the opening event
Hornet swings their weapon in mid air
Hollow Knight: Silksong gets new Steam metadata changes, convincing everyone and their mother that the game is finally releasing this year
OpenAI logo
OpenAI just launched a free ChatGPT bible that will help you master the AI chatbot and Sora
Monster Hunter Wilds
Monster Hunter Wilds Title Update 1 launches in early April, adding new monsters and some of the best-looking armor sets I need to add to my collection
cybersecurity
Chinese government hackers allegedly spent years undetected in foreign phone networks
Sony WF-C710N in blue glass on beige background
Sony WF-C710 earbuds land, and I think they'll be the 2025 budget buds to beat
The RIG M2 Streamstar attached to a boom arm.
The RIG M2 Streamstar has the world's first Bluetooth audio gateway in a wired gaming microphone
Four operators survey Verdansk. One holds a sniper rifle, one binoculars, another holds is landing with their parachute, while the last wears a skull mask
New Call of Duty: Warzone trailer shows a beautiful rebuilt Verdansk, but some fans want more: 'it won't be the same unfortunately'