Following last year’s takedown of the Qakbot botnet, the Black Basta ransomware group has switched to relying on new custom tools and initial access techniques as part of a shift in strategy, as part of this year’s efforts to reduce the threat.
In response to the escalating threat from ransomware gangs, the Black Basta group has demonstrated a great deal of resilience and an ability to adapt due to the addition of new custom tools and tactics that have been developed to conceal their presence.
With a total of over 500 victims compromised, the group’s evolution illustrates the resilience of cyber criminals who have had to change tactics based on law enforcement and other disruptions due to the group’s evolution, experts say. Although cybercriminals have faced numerous disruptions due to law enforcement, they continue to flourish in their cybercriminal operations. Black Basta has been known to attack several companies around the world and has been known to do so from as early as the second week of April 2022.
Currently, there is not much other information available about the new ransomware gang, since they have not yet advertised themselves to the hacking community or recruited affiliates through hacking forums.
It seems, however, that by how they can rapidly accumulate new victims and how their negotiations have been conducted, they are not necessarily a new operation. They are likely to be rebranding an old top-tier ransomware gang that brought along their affili
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
This article has been indexed from CySecurity News – Latest Information Security and Hacking Incidents
Read the original article: