Shockingly, individual losses were significant, with one victim losing $9 million and 17 others parting with over $1 million each. The group, suspected that they have links with the now-disbanded Conti Group, employs advanced double-extortion techniques in their cybercrimes.
A drop in attacks during the latter part of this year is credited to authorities dismantling the Qakbot malware’s botnet in August the tool frequently used by Black Basta. Investigation into Bitcoin blockchain connections indicates that 10% of the ransom funds were transferred to the Qakbot platform during its operation.
Using Elliptic Investigator, researchers exposed the gang’s money laundering activities lead to tracing millions of dollars to Garantex and a Russian cryptocurrency exchange that was also facing sanctions. Surprisingly, 35% of Black Basta’s victims opted to pay the ransom highlighting the unfortunate reality that many organizations succumb to the pressures of ransomware attacks.
Being Effective in managing IT security and staying informed about emerging threats while fostering collaboration between the public and private sectors are crucial in the ongoing fight against cybercrime.
Related Articles
Update and Upgrade: Make sure all your software is up-to-date
In an era where cyber threats are constantly evolving, safeguarding your digital presence demands a proactive approach by updating and upgrading of your software for stronger cybersecurity. This article sheds light on the critical importance of this practice in your...
Kickstart Your December with a Password Power-Up!
Start December with a Strong Password Reset! As the year comes to a close there is no better time to prioritize your online security and with cyber threats on the rise protecting yourself should be at the top of your to-do list. One of the simplest yet most effective...
Synology Issues Patch For Severe VPN Plus Server Vulnerability
A critical vulnerability in the VPN Plus Servers that may be used to remotely take control of systems has been patched by Synology. The vulnerability, which is now known as CVE-2022-43931, affects the remote desktop functionality of Synology VPN...