The Kelly Group Targeted by 8Base Ransomware Group

Company Profile

The Kelly Group is a construction company specializing in industrial and commercial construction projects. They offer services such as design-build, general contracting, construction management, and maintenance services. With experience in industries like manufacturing, power generation, and food processing, The Kelly Group is renowned for its commitment to safety, quality, and customer satisfaction. Operating in multiple locations, the company has a team of over 500 skilled employees.

Ransomware Attack Overview

The 8Base ransomware group targeted The Kelly Group, seizing control of critical data and threatening to leak it unless a ransom is paid. The compromised data includes sensitive business, financial, and personal information. Known for their aggressive tactics, 8Base employs a double-extortion method where they encrypt files and steal data to pressure victims into paying the ransom.

Ransomware Group Profile

Active since April 2022, the 8Base ransomware group targets small and medium-sized businesses across various sectors. They utilize ransomware strains like Phobos and are believed to spread through phishing emails, exploit kits, and drive-by downloads. Distinguished by their double-extortion tactics, 8Base has gained notoriety for their aggressive ransom demands.

Company Vulnerabilities

The Kelly Group, operating in the construction sector, may have been targeted by 8Base due to the valuable data they possess, including project plans, financial records, and client information. The company's multiple locations and large workforce could present challenges in securing all systems effectively, making them susceptible to cyber attacks.

Sources:

• The Kelly Group Website
• VMware Blog
• SocRadar
• HHS.gov
• ProvenData