Black Basta, one of the most prolific ransomware-as-a-service operators, is trying out a combination of email DDoS and vishing to get employees to download remote access tools. Black Basta TTPs and newest initial access attempts According to a cybersecurity advisory published on Friday by CISA, the FBI, the Department of Health and Human Services (HHS), and the Multi-State Information Sharing and Analysis Center (MS-ISAC), Black Basta used/uses: Qakbot, spearphishing, exploits vulnerabilities and valid credentials for … More
The post Black Basta target orgs with new social engineering campaign appeared first on Help Net Security.