Leaked messages expose trade secrets of prolific Black Basta ransomware group
a year ago
- #data-leak
- #ransomware
- #cybersecurity
- 190,000 chat messages from the Black Basta ransomware group were leaked, revealing a highly structured organization with specialized roles.
- The leak was first posted on MEGA, then Telegram, by an unknown persona named ExploitWhispers.
- Messages spanned from September 2023 to September 2024, with commentary provided by ExploitWhispers.
- The leak coincided with the unexplained outage of Black Basta's dark web site.
- Trustwave’s SpiderLabs analyzed the Russian-language messages, highlighting internal workflows and team dynamics.
- Black Basta's tactics included social engineering, such as posing as IT administrators to exploit employees.
- The leak offers cybersecurity professionals insights into ransomware operations, similar to the Conti leaks.