Security News > 2024 > December > Black Basta Ransomware Evolves with Email Bombing, QR Codes, and Social Engineering
2024-12-09 17:44
The threat actors linked to the Black Basta ransomware have been observed switching up their social engineering tactics, distributing a different set of payloads such as Zbot and DarkGate since early October 2024. "Users within the target environment will be email bombed by the threat actor, which is often achieved by signing up the user's email to numerous mailing lists simultaneously," Rapid7
News URL
https://thehackernews.com/2024/12/black-basta-ransomware-evolves-with.html
Related news
- Hackers Exploit Signal's Linked Devices Feature to Hijack Accounts via Malicious QR Codes (source)
- Black Basta ransomware gang's internal chat logs leak online (source)
- Google binning SMS MFA at last and replacing it with QR codes (source)
- Leaked Black Basta Ransomware Chat Logs Reveal Inner Workings and Internal Conflicts (source)
- Southern Water says Black Basta ransomware attack cost £4.5M in expenses (source)
- How QR code attacks work and how to protect yourself (source)
- Researchers Link CACTUS Ransomware Tactics to Former Black Basta Affiliates (source)
- Microsoft Teams tactics, malware connect Black Basta, Cactus ransomware (source)
- Week in review: How QR code attacks work and how to protect yourself, 10 must-reads for CISOs (source)