Tag: black basta
4 attack reports | 0 vulnerabilities
Attack reports
Black Basta Ransomware: What You Need to Know
Black Basta is a ransomware-as-a-service group that emerged in April 2022, known for double extortion tactics. They target organizations globally, particularly in North America, Europe, and Australia, affecting over 500 entities across various industries. Initial access is gained through phishing, …
Downloadable IOCs 82
DNS Early Detection - Breaking the Black Basta Ransomware Kill Chain
This intelligence analysis examines the Black Basta ransomware campaign, which has significantly impacted businesses and critical infrastructure across North America, Europe, and Australia. The report highlights Infoblox's ability to identify and block over 78% of the malicious domains associated w…
Downloadable IOCs 1
Ransomware Attackers May Have Used Privilege Escalation Vulnerability as Zero-day
Recent analysis by a cybersecurity firm suggests that a ransomware group might have exploited a Windows privilege escalation vulnerability, CVE-2024-26169, before it was patched. The vulnerability, which was addressed in March 2024, could allow attackers to elevate their privileges. Evidence from a…
Downloadable IOCs 5
Threat actors misusing Quick Assist in social engineering attacks leading to ransomware
The report describes a recent campaign by the threat actor Storm-1811, a financially motivated cybercriminal group known for deploying Black Basta ransomware. The campaign begins with social engineering tactics like voice phishing (vishing) and email bombing to trick users into granting remote acce…
Downloadable IOCs 12
Black Basta Ransomware: What You Need to Know
Black Basta is a ransomware-as-a-service group that emerged in April 2022, known for double extortion tactics. They target organizations globally, particularly in North America, Europe, and Australia, affecting over 500 entities across various industries. Initial access is gained through phishing, …
Downloadable IOCs 82
DNS Early Detection - Breaking the Black Basta Ransomware Kill Chain
This intelligence analysis examines the Black Basta ransomware campaign, which has significantly impacted businesses and critical infrastructure across North America, Europe, and Australia. The report highlights Infoblox's ability to identify and block over 78% of the malicious domains associated w…
Downloadable IOCs 1
Ransomware Attackers May Have Used Privilege Escalation Vulnerability as Zero-day
Recent analysis by a cybersecurity firm suggests that a ransomware group might have exploited a Windows privilege escalation vulnerability, CVE-2024-26169, before it was patched. The vulnerability, which was addressed in March 2024, could allow attackers to elevate their privileges. Evidence from a…
Downloadable IOCs 5
Threat actors misusing Quick Assist in social engineering attacks leading to ransomware
The report describes a recent campaign by the threat actor Storm-1811, a financially motivated cybercriminal group known for deploying Black Basta ransomware. The campaign begins with social engineering tactics like voice phishing (vishing) and email bombing to trick users into granting remote acce…
Downloadable IOCs 12
Black Basta Ransomware: What You Need to Know
Black Basta is a ransomware-as-a-service group that emerged in April 2022, known for double extortion tactics. They target organizations globally, particularly in North America, Europe, and Australia, affecting over 500 entities across various industries. Initial access is gained through phishing, …
Downloadable IOCs 82
DNS Early Detection - Breaking the Black Basta Ransomware Kill Chain
This intelligence analysis examines the Black Basta ransomware campaign, which has significantly impacted businesses and critical infrastructure across North America, Europe, and Australia. The report highlights Infoblox's ability to identify and block over 78% of the malicious domains associated w…
Downloadable IOCs 1
Ransomware Attackers May Have Used Privilege Escalation Vulnerability as Zero-day
Recent analysis by a cybersecurity firm suggests that a ransomware group might have exploited a Windows privilege escalation vulnerability, CVE-2024-26169, before it was patched. The vulnerability, which was addressed in March 2024, could allow attackers to elevate their privileges. Evidence from a…
Downloadable IOCs 5
Threat actors misusing Quick Assist in social engineering attacks leading to ransomware
The report describes a recent campaign by the threat actor Storm-1811, a financially motivated cybercriminal group known for deploying Black Basta ransomware. The campaign begins with social engineering tactics like voice phishing (vishing) and email bombing to trick users into granting remote acce…
Downloadable IOCs 12
Black Basta Ransomware: What You Need to Know
Black Basta is a ransomware-as-a-service group that emerged in April 2022, known for double extortion tactics. They target organizations globally, particularly in North America, Europe, and Australia, affecting over 500 entities across various industries. Initial access is gained through phishing, …
Downloadable IOCs 82
DNS Early Detection - Breaking the Black Basta Ransomware Kill Chain
This intelligence analysis examines the Black Basta ransomware campaign, which has significantly impacted businesses and critical infrastructure across North America, Europe, and Australia. The report highlights Infoblox's ability to identify and block over 78% of the malicious domains associated w…
Downloadable IOCs 1
Ransomware Attackers May Have Used Privilege Escalation Vulnerability as Zero-day
Recent analysis by a cybersecurity firm suggests that a ransomware group might have exploited a Windows privilege escalation vulnerability, CVE-2024-26169, before it was patched. The vulnerability, which was addressed in March 2024, could allow attackers to elevate their privileges. Evidence from a…
Downloadable IOCs 5
Threat actors misusing Quick Assist in social engineering attacks leading to ransomware
The report describes a recent campaign by the threat actor Storm-1811, a financially motivated cybercriminal group known for deploying Black Basta ransomware. The campaign begins with social engineering tactics like voice phishing (vishing) and email bombing to trick users into granting remote acce…
Downloadable IOCs 12