In just a few months, Black Basta ransomware has grown into a significant new menace. As per the evidence, it was still under development in February 2022 and didn’t start operating until April 2022.
Since then, Black Basta Group has claimed responsibility for 36 countries, and the number is rising. Early in June, it was discovered that the new Black Basta group had joined forces with the QBot malware operation to propagate its ransomware, according to Cybereason researchers.
It is common for criminal organizations to work with QBots; examples include MegaCortex, ProLock, DoppelPaymer, Conti, and Egregor. “QBot has many built-in capabilities that are very useful for attackers,” say Cybereason researchers in a report.