Suspects Linked to Black Basta Ransomware Group Raided in Ukraine
Oleg Evgenievich Nefedov, allegedly one of the founders of Black Basta, was also placed on Europol’s and Interpol’s Most Wanted lists
Black Basta is a ransomware operation; coverage examines reported incidents, technical analysis, disruption, and defensive guidance for organizations.
Search across headline titles and summaries.
Background for this topic.
Black Basta is a ransomware operation that encrypts victims’ data and threatens to publish stolen information to pressure payment. The group is known for combining data encryption with data theft, increasing the impact on targeted organizations. Their attacks often involve exploiting vulnerabilities or compromised remote access to deploy ransomware payloads designed to evade detection and maximize disruption.
Security teams should focus on controlling remote access with multi-factor authentication, applying timely patches to known vulnerabilities, and segmenting networks to limit ransomware spread. Monitoring for indicators of compromise related to Black Basta’s tactics, such as unusual file encryption activity or data exfiltration, can help detect and contain incidents early. Understanding this dual-threat approach is critical for prioritizing defenses and response efforts against this ransomware family.
Weekly headline count for the current query.
Oleg Evgenievich Nefedov, allegedly one of the founders of Black Basta, was also placed on Europol’s and Interpol’s Most Wanted lists
Affiliates of prolific Black Basta ransomware group have breached over 500 global organizations
The data from ReliaQuest also suggests LockBit faced a significant setback due to law enforcement action
Southern Water confirmed a data breach had occurred after the Black Basta ransomware group purportedly published personal information held by the firm
Researchers at SRLabs have revealed a new suite of decryption tools for Black Basta ransomware
Researchers identify scores of cryptocurrency payments
The elusive ransomware group, Royal, might be collaborating with Hive and Black Basta
The unauthorized third party stole employee and business customers' data
The variant is “wormable” and can infect USB devices to hide itself from the Windows OS
Threat actors obtained admin access in two hours and then deployed ransomware in under 12 hours
Between February and July, 81 victim organizations were listed on the groups' data leak sites
The hacker behind a tool used by Black Basta had access to the source code used by FIN7