https://www.intel471.com/resources/whitepapers/the-black-basta-blueprint
A deep-dive into the leaked internal chat logs for the Black Basta ransomware group and demonstrate how our expert analyses of the group’s malware tools and...
black bastablueprintintel
https://www.rapid7.com/blog/post/2024/05/10/ongoing-social-engineering-campaign-linked-to-black-basta-ransomware-operators/?utm_source=www.vulnu.com&utm_medium=referral&utm_campaign=vulnerable-u-064
Rapid7 has identified an ongoing social engineering campaign that has been targeting multiple managed detection and response (MDR) customers. Learn more!
social engineeringblack bastacampaignlinkedransomware
https://www.trellix.com/en-ca/blogs/research/analysis-of-black-basta-ransomware-chat-leaks/
Trellix obtained access to Black Basta's chat leaks at the end of February 2025 and immediately began analyzing the chat logs. Given that Black Basta is a...
black bastaanalysisransomwarechatleaks
https://www.lemagit.fr/actualites/366637455/Ransomware-le-leader-de-Black-Basta-Oleg-Nefedov-est-officiellement-recherche
Jan 16, 2026 - L’ancien leader du gang de rançongiciel Black Basta, aussi connu sous son pseudonyme « tramp », est désormais officiellement...
black bastaransomwareledenefedov
https://www.zscaler.com/blogs/security-research/back-black-basta
New BlackBasta ransomware code is likely designed to improve antivirus and EDR evasion
black bastabackzscaler
https://securityaffairs.com/163019/cyber-crime/black-basta-ransomware-500-organizations.html
Black Basta ransomware affiliates have breached over 500 organizations between April 2022 and May 2024, FBI and CISA reported.
black bastamayransomwareaffiliateshacked
https://www.bleepingcomputer.com/news/security/american-dental-association-hit-by-new-black-basta-ransomware/
The American Dental Association (ADA) was hit by a weekend cyberattack, causing them to shut down portions of their network while investigating the attack.
american dental associationnew blackhitbastaransomware
https://www.trendmicro.com/en_gb/research/22/f/black-basta-ransomware-operators-expand-their-attack-arsenal-wit.html
We look into a recent attack orchestrated by the Black Basta ransomware group that used the banking trojan QakBot as a means of entry and movement and took...
black bastaransomwareoperatorsexpandattack
https://thehackernews.com/2026/01/black-basta-ransomware-hacker-leader.html
Ukrainian and German police identify Black Basta suspects as alleged leader Oleg Nefedov is added to EU Most Wanted and INTERPOL Red Notice lists.
black bastaransomwareleaderaddedeu
https://www.epochtimes.sk/policia-zasiahla-proti-kyberpiratskej-skupine-black-basta-na-jej-ruskeho-lidra-vydali-zatykac_72685.html
Jan 15, 2026 - Polícia vykonala razie proti dvom členom ransomvérovej skupiny Black Basta na Ukrajine a vydala zatykač na jej ruského lídra. Vo štvrtok (15. 1.) to...
black bastaprotinajej
https://therecord.media/police-raid-homes-of-alleged-black-basta-hackers
Black Basta has been active since at least early 2022 and is believed to be responsible for extorting hundreds of companies, hospitals and public institutions...
police raidblack bastahomesallegedhackers
https://www.bleepingcomputer.com/news/security/black-basta-boss-makes-it-onto-interpols-red-notice-list/
The identity of the Black Basta ransomware gang leader has been confirmed by law enforcement in Ukraine and Germany, and the individual has been added to the...
black bastared noticebossmakesonto
https://hackread.com/black-basta-ransomware-windows-0-day-patch/
The Black Basta ransomware group is believed to have taken advantage of a zero-day exploit (CVE-2024-26169) before Microsoft released a fix.
black bastaransomwaresuspectedexploitingwindows
https://tarnkappe.info/artikel/cyberangriffe/black-basta-storm-1811-verankert-ransomware-via-quick-assist-294078.html
Storm-1811 missbraucht das Remote-Verbindungstool Quick Assist mittels Vishing-Angriffen zur Bereitstellung von Black Basta Ransomware.
black bastaquick assiststormransomwarevia
https://www.trendmicro.com/en_us/research/24/b/threat-actor-groups-including-black-basta-are-exploiting-recent-.html
This blog entry gives a detailed analysis of these recent ScreenConnect vulnerabilities. We also discuss our discovery of threat actor groups, including Black...
threat actorblack bastagroupsincludingexploiting
https://www.trendmicro.com/en_us/research/22/f/black-basta-ransomware-operators-expand-their-attack-arsenal-wit.html?utm_campaign=Threat%20Report%20Newsletter&utm_medium=email&_hsenc=p2ANqtz--cDRtinL6WMg6076yHWozENAvdMlQhilVFkDpJcjIojmqiui9A1xK7zI04nHMdrVBZI3lgNFluMDsytKoyEnzL3y--UQ&_hsmi=218644927&utm_content=218644926&utm_source=hs_email
We look into a recent attack orchestrated by the Black Basta ransomware group that used the banking trojan QakBot as a means of entry and movement and took...
black bastaransomwareoperatorsexpandattack
https://www.techtarget.com/searchsecurity/news/252527596/Cybereason-warns-of-fast-moving-Black-Basta-campaign
Cybereason detailed a new Black Basta ransomware-as-a-service campaign that is extremely fast, with a potential to be widespread.
black bastacybereasonwarnsfastmoving