"Newly Discovered Black Basta Ransomware Could be Associated With Conti Gang"
At least a dozen firms have been targeted by a new ransomware operation called Black Basta, which is suspected to be linked to the Conti gang. The threat actors behind Black Basta attempt to take large amounts of data from infected systems to further pressure victims into paying the demanded ransom. A technical investigation of Black Basta ransomware conducted by the cybersecurity firm Minerva reveals that it requires administrator credentials to operate. According to researchers, the malware maintains endurance on infected systems by manipulating the Windows Fax service. The Black Basta organization's website revealed the names of firms it has hit that refused to pay, including the American Dental Association and the German wind turbine manufacturer Deutsche Windtechnik. MalwareHunterTeam researchers say the Black Basta ransomware gang must be related to Conti based on observed similarities between their leak sites, payment sites, and how their support workers speak and behave. This article continues to discuss recent findings surrounding the Black Basta ransomware operation, its suspected link to the infamous Conti gang, and the surge in Conti ransomware activity in past weeks.
CyberIntelMag reports "Newly Discovered Black Basta Ransomware Could be Associated With Conti Gang"