Black Basta Steals Vast Amounts of Data from US Companies

By Bogdan Pătru . 26 June 2024

Tech Writer

Fact-Checked this

Black Basta hackers have announced two other victims today. According to the original post, the hackers have managed to steal 600 GB of data from one victim and 2.5 TB of data from the other. No other details regarding the ransom or the negotiations have been posted.

The victims are Key Benefit Administrators, who lost 2.5 TB of confidential data, and Scrubs & Beyond, who lost 600 GB
Some of the stolen data includes HR and employee files, along with departmental information, according to the hackers’ post
Black Basta has operated as a RaaS (ransomware-as-a-service) since 2022, and it’s currently one of the most active actors in the ransomware sphere
Black Basta relies on targeted attacks, unlike typical spray-and-pray techniques used by many other ransomware actors

None of the victims have commented on the recent attacks, as is typically the case. Experiencing a ransomware breach and losing a lot of confidential data doesn’t look good for the company’s cybersecurity reputation. It can also lead to legal issues.

The company is responsible for any data leak that occurs in its systems. Which, in other terms, means it’s also legally liable for any issues that may arise as a result. This is especially concerning when the leaked data includes information about employees and clients.

X showing the BlackBasta ransomware attack on the US companies — https://x.com/FalconFeedsio/status/1805517592989515956

The Black Basta hackers didn’t provide any information regarding the value of the ransom or the terms of negotiations. As is usually the case, these pieces of information are most likely transmitted to the victim directly.

The aftermath of a ransomware breach is always detrimental to the victim in one form or another. Part of that relates to the actual financial losses related to the ransom itself. But that’s not all.

What to Expect After Being Targeted by a Ransomware Attack

Ransomware attacks are particularly devastating because most of them rely on the double-extortion method. The hackers will encrypt the victim’s systems and steal valuable data to use as leverage during negotiations. Black Basta operates similarly.

The hackers will leave behind a ransom note containing details on how the victim can contact them. The ransom is typically paid in cryptocoins in the attackers’ crypto-wallet.

But the downfalls of a ransomware attack aren’t limited to the system encryption and the direct financial losses. Other issues will arise from it. One of them includes the fact that your data has been leaked, which means it has been compromised forever.

Even if you do pay for the hackers to delete it, you have no guarantees that they will. Or that they don’t share it with other cybercriminal organizations first. Which tends to happen more often than not.

Then there’s the problem that we’ve already mentioned: the legal aspect of it. Losing sensitive data linked to your employees or clients is bound to attract legal liability. This is one of the reasons why some ransomware victims refuse to report the data breach.

The conclusion is simple: invest in strong cybersecurity and leave nothing to chance.

Our Mission

We believe security online security matters and its our mission to make it a safer place.

Author, Creative Writer, and Tech-Geek Bogdan has followed his passion for the digital world ever since he got his hands on his first PC. After years of accumulating knowledge and experience, the good Samaritan in him whispered to him one day about the virtue of sharing that knowledge with those who needed it. It was in 2014 when that idea would grow into a life-defining passion. One that keeps driving him to this day.

Cookie	Duration	Description
CookieLawInfoConsent	1 year	CookieYes sets this cookie to record the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie.
viewed_cookie_policy	1 year	The GDPR Cookie Consent plugin sets the cookie to store whether or not the user has consented to use cookies. It does not store any personal data.
wpEmojiSettingsSupports	session	WordPress sets this cookie when a user interacts with emojis on a WordPress site. It helps determine if the user's browser can display emojis properly.

Cookie	Duration	Description
_ga	1 year 1 month 4 days	Google Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognise unique visitors.
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.
_gat_UA-*	1 minute	Google Analytics sets this cookie for user behaviour tracking.
_gid	1 day	Google Analytics sets this cookie to store information on how visitors use a website while also creating an analytics report of the website's performance. Some of the collected data includes the number of visitors, their source, and the pages they visit anonymously.
_omappvp	1 year 1 month 4 days	The _omappvp cookie is set to distinguish new and returning users and is used in conjunction with _omappvs cookie.
_omappvs	20 minutes	The _omappvs cookie, used in conjunction with the _omappvp cookies, is used to determine if the visitor has visited the website before, or if it is a new visitor.

Black Basta Steals Vast Amounts of Data from US Companies

What to Expect After Being Targeted by a Ransomware Attack

Our Mission

Bogdan Pătru

Leave a Comment Cancel