Sign Up
All SecurityCyber-crimePatchesResearchCSO
All Off-PremEdge + IoTChannelPaaS + IaaSSaaS
All On-PremSystemsStorageNetworksHPCPersonal TechCxOPublic Sector
All SoftwareAI + MLApplicationsDatabasesDevOpsOSesVirtualization
All OffbeatDebatesColumnistsScienceGeek's GuideBOFHLegalBootnotesSite NewsAbout Us

Security

Cyber-crime

Volkswagen monitoring data dump threat from 8Base ransomware crew

The German car giant appears to be unconcerned

Iain Thomson Wed 16 Oct 2024  //  21:30 UTC

The 8Base ransomware crew claims to have stolen a huge data dump of Volkswagen files and is threatening to publish them, but the German car giant appears to be unconcerned.

The extortionists, who first came to light in 2022, posted a warning on their dark web page claiming to have detailed files stolen from Volkswagen, amongst others. The group says it has stolen "a huge amount of confidential information," including:

The date for the data release was set for September 26 but so far no data has been made public. It may be that this is a false alarm.

"The incident is known. The IT infrastructure of the Volkswagen group is not affected. We continue to monitor the situation closely," a spokesperson told French news site LeMagIT, adding that the business "has been aware of this for some time. It is not something new or surprising."

It's not the first time Volkswagen has had data theft issues. In 2021, three million customers' account details got stolen in a heist carried out against a third-party supplier and reportedly was the victim of a years-long campaign by Chinese attackers trying to scoop corporate secrets.

8Base is a curious case in the ransomware scene. The group uses a branch of the notorious Phobos ransomware that made millions from a string of government and critical infrastructure companies. But it has been very quiet of late, suggesting its operators have been either avoiding the public eye or working on some other projects.

Volkswagen had no comment at the time of publication as to whether it has received a ransom demand or what kind of data has been taken. ®
Send us news
1 Comment

Ransomware's ripple effect felt across ERs as patient care suffers

389 US healthcare orgs infected this year alone

Would banning ransomware insurance stop the scourge?

White House official makes case for ending extortion reimbursements

Wanted. Top infosec pros willing to defend Britain on shabby salaries

GCHQ job ads seek top talent with bottom-end pay packets

Just how private is Apple's Private Cloud Compute? You can test it to find out

Also updates bug bounty program with $1M payout

Five Eyes nations tell tech startups to take infosec seriously. Again

Only took 'em a year to dish up some scary travel advice, and a Secure Innovation … Placemat?

Akira ransomware is encrypting victims again following pure extortion fling

Crooks revert to old ways for greater efficiency

Senator accuses sloppy domain registrars of aiding Russian disinfo campaigns

Also, Change Healthcare sets a record, cybercrime cop suspect indicted, a new Mallox decryptor, and more

Windows Themes zero-day bug exposes users to NTLM credential theft

Plus a free micropatch until Redmond fixes the flaw

Sophos to snatch Secureworks in $859M buyout: Why fight when you can just buy?

Private equity giant Thoma Bravo adds another trophy to its growing collection

The billionaire behind Trump's 'unhackable' phone is on a mission to fight Tesla's FSD

Dan O'Dowd tells El Reg about the OS secrets and ongoing clash with Musk

Millions of Android and iOS users at risk from hardcoded creds in popular apps

Azure Blob Storage, AWS, and Twilio keys all up for grabs

Beijing claims it's found 'underwater lighthouses' that its foes use for espionage

Release the Kraken!