Threat Actor: 8Base Ransomware Group | 8Base Ransomware Group
Victim: Port of Rijeka | Port of Rijeka
Price: Ransom demand not disclosed
Exfiltrated Data Type: Sensitive data including contracts and accounting information
Key Points :
- The 8Base ransomware group claimed responsibility for the cyber attack on Croatia’s Port of Rijeka.
- Stolen data includes invoice receipts, accounting documents, personal data, certificates, and employment contracts.
- The ransom deadline is set for December 10, 2024.
- Despite the breach, the CEO of the Port stated that operations were not impacted and the organization will not pay the ransom.
- The Port of Rijeka is Croatia’s largest dry cargo concessionaire, providing various maritime and economic services.
The 8Base ransomware group attacked Croatia’s Port of Rijeka, stealing sensitive data, including contracts and accounting info.
A cyber attack hit the Port of Rijeka in Croatia, the 8Base ransomware group claimed responsibility for the security breach.
The Port of Rijeka (Luka Rijeka d.d.), Croatia’s largest dry cargo concessionaire, provides maritime traffic services, port operations, and cargo storage. It also offers various economic services, including equipment maintenance, building upkeep, load securing, and quality control.
The ransomware gang claims to have stolen sensitive data including accounting info and contracts.
Cyberattack Alert
Croatia – Port of Rijeka
8Base ransomware group claims to have breached Port of Rijeka.
Allegedly, invoice receipts, accounting documents, personal data, certificates, employment contracts, a huge amount of confidential information, confidentiality… pic.twitter.com/Tad7LeOcsk
— HackManac (@H4ckManac) December 6, 2024
According to the announcement published by the group on its Tor leak site, stolen data includes:
- Invoice
- Receipts
- Accounting documents
- Personal data
- Certificates
- Employment contracts
- A huge amount of confidential information
- Confidentiality agreements
- Personal files
- Other
The ransom deadline is December 10, 2024.
The CEO of the Croatian Port, Duško Grabovac, told local media outlet Novi list that despite threats actors stole some data, the incident had no impact on the operations at the post. Grabovac pointed out that his organization will not pay the ransom requested by the ransomware gang.
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, ransomware)