Ransomware Hits Denim Giant Evlox by 8Base Group

Incident Date: Oct 09, 2024

Attack Overview

VICTIM

Evlox

INDUSTRY

Manufacturing

LOCATION

Spain

ATTACKER

8base

FIRST REPORTED

October 9, 2024

Request Removal

Ransomware Attack on Evlox: A Deep Dive into the 8Base Group's Tactics

Evlox, a leading name in the denim manufacturing industry, has recently fallen victim to a ransomware attack orchestrated by the notorious 8Base group. This incident underscores the persistent threat posed by ransomware to businesses worldwide, particularly those in the manufacturing sector.

About Evlox

Evlox, formerly known as Tavex Europa, is a prominent player in the denim manufacturing industry with a history dating back to 1846. The company is headquartered in Madrid, Spain, and employs over 500 individuals. It boasts an impressive production capacity of approximately 15 million meters of premium denim annually, with a commercial presence in around 50 countries. Evlox is renowned for its commitment to quality and sustainability, as evidenced by its innovative REICONICS collection, which emphasizes circularity and reduced water consumption.

Attack Overview

The 8Base ransomware group has claimed responsibility for the attack on Evlox, which compromised a wide array of sensitive information, including invoice receipts, accounting documents, personal data, and confidential agreements. The attack was part of a broader campaign targeting 13 companies across various industries and countries, with the breaches being uploaded to the group's data leak site on September 23rd. Despite the ransom deadline passing on September 30th, the data has not been released, raising questions about the status of negotiations or the group's intentions.

About the 8Base Ransomware Group

The 8Base ransomware group has gained notoriety for its aggressive tactics and sophisticated double-extortion operations. Emerging in April 2022, the group employs AES-256 encryption and utilizes a variant of the Phobos ransomware. They typically gain entry through phishing emails or by purchasing compromised credentials on the Dark Web. The group distinguishes itself by mimicking legitimate penetration testing firms in its communication style, branding itself as "simple pentesters" to exert pressure on victims.

Potential Vulnerabilities

Evlox's reliance on modern technologies such as JavaScript and PHP for its digital operations may have presented vulnerabilities that the 8Base group exploited. The company's extensive global operations and significant production capacity make it an attractive target for ransomware groups seeking to inflict financial and reputational damage. This attack highlights the need for effective cybersecurity measures to protect against such threats.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.