Taiyo Kogyo Co., Ltd. Hit by 8Base Ransomware Attack, Sensitive Data Exposed

Incident Date: Jun 21, 2024

Attack Overview

VICTIM

Taiyo Kogyo Co., Ltd.

INDUSTRY

Manufacturing

LOCATION

Japan

ATTACKER

8base

FIRST REPORTED

June 21, 2024

Request Removal

Ransomware Attack on Taiyo Kogyo Co., Ltd. by 8Base Group

Company Profile: Taiyo Kogyo Co., Ltd.

Taiyo Kogyo Co., Ltd., a leader in the design and manufacture of membrane structures, has been a significant player in the construction and civil engineering sectors. Specializing in large-scale projects like the Tokyo Dome, the company utilizes advanced materials such as PTFE coated fiberglass and PVC coated polyester to create innovative and functional structures. Employing over 200 individuals, Taiyo Kogyo is noted for its commitment to quality and customer satisfaction, which has established its reputation in the Japanese steel industry.

Details of the Ransomware Attack

On June 21, 2024, Taiyo Kogyo fell victim to a ransomware attack orchestrated by the 8Base group. This breach resulted in the exposure of a vast array of sensitive data, including accounting documents, personal data, and employment contracts. The attack not only encrypted the company’s files but also involved the theft of data, with threats of public release if the ransom demands were not met, showcasing the double-extortion tactic employed by 8Base.

Profile of the 8Base Ransomware Group

The 8Base group, active since April 2022, has quickly gained notoriety for its aggressive ransomware campaigns targeting various sectors. Known for their use of the Phobos ransomware variant, 8Base has been involved in numerous attacks, often utilizing phishing emails, exploit kits, and drive-by downloads to breach their targets’ security measures. Their approach aims to leverage the stolen data to exert additional pressure on the victims to comply with their ransom demands.

Potential Vulnerabilities and Entry Points

The specific vulnerabilities that were exploited in the attack on Taiyo Kogyo are not detailed, but the methods employed by 8Base in the past suggest possible phishing or exploitation of software vulnerabilities. Given the company’s extensive digital footprint due to its significant online presence and the nature of its business involving large-scale data and project management, these factors might have made them an attractive target for the ransomware group.

Sources:

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.