BTC $65266.0064
ETH $3170.2759
BNB $579.9567
SOL $151.5810
stETH $3170.3792
XRP $0.5307
DOGE $0.1622
TON $6.2152
ADA $0.5047
AVAX $37.5087
wstETH $3690.1011
WBTC $65350.8728
DOT $7.1858
WETH $3168.2550
TRX $0.1112
BCH $512.3933
LINK $14.9136
MATIC $0.7262
ICP $15.2978
UNI $7.8248
LTC $85.1449
DAI $1.0008
RNDR $9.1190
CAKE $2.9399
IMX $2.1935
STX $2.8650
ETC $27.9082
FDUSD $0.9998
MNT $1.2003
NEAR $6.3271
FIL $6.6129
OKB $55.7832
HBAR $0.0909
TAO $475.1056
VET $0.0423
WIF $3.0785
ATOM $8.6865
MKR $3070.6157
KAS $0.1185
FET $2.4759
GRT $0.2860
INJ $29.1371
PEPE $0.0000
USDE $0.9998
XLM $0.1150
THETA $2.2569
XMR $121.6010
BTC $65266.0064
ETH $3170.2759
BNB $579.9567
SOL $151.5810
stETH $3170.3792
XRP $0.5307
DOGE $0.1622
TON $6.2152
ADA $0.5047
AVAX $37.5087
wstETH $3690.1011
WBTC $65350.8728
DOT $7.1858
WETH $3168.2550
TRX $0.1112
BCH $512.3933
LINK $14.9136
MATIC $0.7262
ICP $15.2978
UNI $7.8248
LTC $85.1449
DAI $1.0008
RNDR $9.1190
CAKE $2.9399
IMX $2.1935
STX $2.8650
ETC $27.9082
FDUSD $0.9998
MNT $1.2003
NEAR $6.3271
FIL $6.6129
OKB $55.7832
HBAR $0.0909
TAO $475.1056
VET $0.0423
WIF $3.0785
ATOM $8.6865
MKR $3070.6157
KAS $0.1185
FET $2.4759
GRT $0.2860
INJ $29.1371
PEPE $0.0000
USDE $0.9998
XLM $0.1150
THETA $2.2569
XMR $121.6010
  • Catalog
  • Blog
  • Tor Relay
  • Jabber
  • One-Time notes
  • Temp Email
  • What is TOR?
  • We are in tor
  • Researchers find links between Black Basta and FIN7 hackers


    Analysis of the instruments revealed the factions' cooperation and involvement in each other's campaigns.

    While analyzing Black Basta ransomware tools, security company SentinelOne identified a connection between Black Basta and the FIN7 group (also known as Carbanak). This shows that Black Basta and FIN7 have a special relationship, or one or more hackers are members of both groups.

    SentinelOne researchers also noted that Black Basta operators never hired affiliates or advertised their malware as a RaaS model on darknet forums.

    The Black Basta developers either cut affiliates off the chain and deployed the ransomware with their own custom toolset, or work with a small number of affiliates without having to sell their malware.

    Black Basta has been known to collaborate with QBot (Qakbot) malware, which allows hackers to bypass security systems, conduct network reconnaissance, and exploit the ZeroLogon and PrintNightmare vulnerabilities to elevate privileges.

    Black Basta also uses a dedicated EDR evasion tool that is exclusively used in Black Basta campaigns and comes with the BIRDDOG (also known as SocksBot) backdoor. It is noteworthy that the backdoor was previously used in several attacks by the FIN7 group.

    The FIN7 cybercriminal syndicate has been running companies on PoS systems since 2012, but over the past 2 years it has begun using BlackMatter (formerly Darkside) and BlackCat ransomware. In addition, FIN7 cybercriminals create front companies to hire pentesters to infiltrate networks and carry out ransomware attacks.

    Author DeepWeb
    Grouping LockBit 3.0 stole data from a large international company Thales
    2 dangerous new vulnerabilities in OpenSSL put more than 7,000 hosts at risk

    Comments 0

    Add comment