Ransomware victim disclosure
← All victimsService public de Wallonie
Claimed by 8Base · listed 2 years ago
Status timeline
- ListedMay 13, 2024
- Data leakeddate unknown
At a glance
- Group
- 8Base
- Status
- Data leaked
- Country
- Belgium
- Sector
- Government
- Listed on leak site
- May 13, 2024
About the victim
AI dossier — public-source company profileThe Service public de Wallonie (SPW) is the regional civil service administration of Wallonia, Belgium. It provides cross-cutting competencies including communications, European structural fund coordination, financial audit, human resources, IT, legal services, and real estate management across the Walloon regional government.
- Industry
- Government Administration
Attack summary
Severity: high — Confirmed breach of a regional government administration with exfiltration and publication of data. Government entities handle sensitive citizen and administrative data, and operational disruption to public services constitutes significant harm.8Base claims to have breached the SPW. The leak post does not specify the attack method (encryption vs. exfiltration) or details of data compromised, only confirming that data has been published.
Data the group says was taken
AI dossier — extracted from the leak post- Government administrative records
- Personnel and HR data
- Financial records
- Legal documents
- IT infrastructure information
What the group claims
The Walloon Civil Service (SPW) is the administration of Wallonia. It consists of the General Secretariat, the SPW Support Service and the SPW digital service, which have cross-cutting competencies: internal and external communications, coordination of European structural funds, financial and operational audit, office, geomatics, personnel management, recruitment, training, human resource management, legal issues, information technology, informatics, management real estate and real estate.https://www.wallonie.be/fr
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

