Physical Address
304 North Cardinal St.
Dorchester Center, MA 02124
The alleged conversation logs, allegedly belonging to the Black Basta Ransomware Group, exposing the main members of the Russian coordinated gang, leaked online.
Chatlogs included in more than 200,000 messages on September 18, 2023, September 28, 2024, a leak-threatening intelligence company was shared with Prodaft. The cyber-security company will receive the victims of some members to the “internal conflict” within the framework of the Black Basta group after the failed to provide victims with functional encryption.
The telegram was a member of the leaking, black basting bunch using the “commissioning” nickname.
Black Basta is a Russian-speaking ransomware gang that coordinates the US government Hundreds of attacks on critical infrastructure and global enterprisesWhose open-known victims include US Health Organization Update, UK Utility company southern juiceand English External Exterior Giant Capita. Leaked chat logs give an unprecedented appearance inside the Ransomware gang, including previously not reported targets.
According to To an article in the x’s xLeaving the hackers targeted by Russian local banks, “he crossed the line”.
“So we are dedicated to open the truth and examine the next steps of the Black Basta.”
Target victims, exploitation and a teenage hacker
TechCrunch, the main members of the ransomware gang, received a copy of the conversation records from Prodaft.
These members include “YY” (the main manager of the Black Basta); “Lapa” (one of the main leaders of the Black Basta); “Cortes” (a hacker) The hkbot is associated with botnet) ;; and “Trump” (“AA” and “GG” are known as).
Hacker is believed to be a nickname used by Oleg Nefedovaka, “Trump”, researchers describe as “the main boss of the group” as. Researchers block Nefedovaka to the Nefunct Conti Ransomware group, closed immediately after internal conversation records Following the gang, which announces Russia’s support for the full-scale occupation of Ukraine in 2022.
Leaked Black Basta chat logs too To quote a member When he said they were 17 years old, TechCrunch was seen.
There are 380 unique links in a data broker who collects and sells and sells and sells companies and employees who are used to investigate companies and employees who are used to investigate and employees, which are used to explore the targeted companies. Links also provide a little information to the number of organizations targeted by the gang over the 12-month period.
Chat records also detect unparalleled concepts to the group’s operations. Messages Black Basta’s victims include information about the details of the exploits used by some exploits, ransom requirements, ransom requirements and ransom-related organizations used by the cyber.
We also found the conversation records of hackers who discussed a TechCrunch article on the ongoing hkbot activities. Despite the FBI Takedown operation before, the infamous botnet aims to beat offline.
Techcrunch also found conversation records called several unknown target organizations. This includes Failed US Giant FiskerOpen now Healthtech provider CERNER CORP; And the travel company in the UK hotelplan. It is not yet known where companies are violated and none of the companies responded to the inquiries of TechCrunch.
Chat records appear to show the efforts of the gang To exploit security errors on enterprise network devicesIt works as a digital goalkeeper, like routers and firewalls sitting on the perimeter of a company’s network.
The hackers boasted the ability to use vulnerabilities in Citrix remote access products to move to at least two companies. The network spoke about the use of both the sensitivity in Ivani, Palo Alto networks and Fortinet program to implement Cyberattacks.
The conversation between the members of the Black Basta also shows that some groups are concerned about the investigation of the Russian authorities in response to geopolitical pressure. Although Russia has long been a safe shelter for ransomware gangs, the Black Basta was worried about the actions of the US government.
Messages sent after the violation of the group’s Ascension systems, warned that FBI and CISA “100% indebted” and “taking a strong position on the black basta” can lead to the agency.
Black Basta’s dark web leakage site used to pay victims by gang was offline as soon as the publication was published.
