An “aggressive” Qakbot malware campaign that results in Black Basta ransomware infections on compromised networks has targeted U.S.-based businesses.
According to Cybereason researchers Joakim Kandefelt and Danielle Frankel, “in this most recent campaign, the Black Basta ransomware gang is using QakBot malware to create an initial point of entry and move laterally within an organization’s network.” Black Basta, which first appeared in April 2022, uses the time-tested strategy of double extortion to steal private information.
Also Read: Strengthening Enterprise Cybersecurity to Combat Rising Cyber Attacks
Black Basta is still very active and is targeting businesses. It then uses the stolen information as leverage to demand cryptocurrency payments under threat of disclosing the information.
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.