Leaked chat logs expose inner workings of secretive ransomware group
1 min read
Summary
Communications from members of the Black Basta ransomware group have been leaked, exposing its tactics, trade secrets and internal disputes.
The leak includes more than 200,000 messages, stretching back a year, between Black Basta members and was published as retaliation for the group’s targeting of Russian banks.
While it is unclear whether the leaker was an insider or an external party that gained access, a member of security firm Prodraft commented that cybercriminals often acted as their own worst enemies.
Black Basta has targeted critical infrastructure sectors in countries including the US, Chile and the UK, as well as major companies such as Hyundai Europe and utility company Southern Water.
This exposure of internal communications is likely to weaken the group’s capabilities and provide law enforcement with valuable intelligence.
