 |
Post ArgZ9UGQPlanWSf1gO by [email protected] |
 |
More posts by [email protected] |
|
Post #ArK0886fXRMudjb292 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Somebody has uploaded Black Basta ransomware group’s internal chat server log… |
|
|
|
Post #ArK1Ye7pDTAPQYLRs8 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog wait, matrix chat should be e2ee so how can there be such logs? |
|
|
|
Post #ArK2c82YY7Kj1v6ZKS by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog thanks - ok so just the messages one account can read, not everyth… |
|
|
|
Post #ArK4bTObrbggslEesC by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@ketumbra @GossiTheDog Matrix had some significant problems in the past. I woul… |
|
|
|
Post #ArK6nJ9ZyDryV0yZiC by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Kevin, did you download the logs? If so, would you mind if I shot … |
|
|
|
Post #ArKHChMY65rYMcmwGO by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog The MEGA site is down, but the Telegram channel where this is bein… |
|
|
|
Post #ArKRxy7QcCgxU4tWvg by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@saltmyhash @GossiTheDog would you be willing to DM me a link to the Telegram c… |
|
|
|
Post #ArL31BnrtDGr6B91P6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
AI trained on Black Basta ransomware group messages: https://chatgpt.com/g/g-6… |
|
|
|
Post #ArL3miB7L0KV7OgBeK by [email protected] |
|
0 likes, 0 repeats |
|
|
|
When you kill a ransomware groups access by talking about a problem publicly: |
|
|
|
Post #ArL6rotQ6HdrFmWrcO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
There’s tons you can extract from there about ops, but one example. There’s… |
|
|
|
Post #ArL74KWCLM9UoTdH9s by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Oh that's a sneaky option I hadn't thought of 🫤 |
|
|
|
Post #ArL9YdG1R6kzWkdwg4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Based on the Black Basta chats I would say absolutely do not pay them if you’… |
|
|
|
Post #ArLDg8h1MFnYrm6gXg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
☕️ |
|
|
|
Post #ArLFcKNs9GKTsMScIC by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog |
|
|
|
Post #ArLHs3CO0hXp7OiGcC by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog |
|
|
|
Post #ArLMYBCh2PwdvNCVSC by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Another one - Black Basta ransomware group compromising RDWeb (Remote Desktop W… |
|
|
|
Post #ArLOQQ2GD4sBW2kRH6 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog I am curious which iOS app is that, I assume it is one which inter… |
|
|
|
Post #ArLSbaQyHvxolht3aa by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Black Basta targeting corporate VPNs, lifting red team tools, using Brute Ratel… |
|
|
|
Post #ArLUSO0VK0BRWsFQYq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog This info is super interesting and also helpful, thank you:-) |
|
|
|
Post #ArLY5ajGFtxe8qZJjc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Black Basta on social engineering |
|
|
|
Post #ArLYZQBC2hwo6urETg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
manipulating staff |
|
|
|
Post #ArLZd4CJoRAd30gbI0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
There's some really good wins in there around how orgs and vendors disrupt … |
|
|
|
Post #ArLaKGx2GrlD3P8iuG by [email protected] |
|
0 likes, 0 repeats |
|
|
|
The script for AnyDesk remote access, you might want to warn staff about these … |
|
|
|
Post #ArLabXsSapTCTMEgy0 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Yeah, we detect any known remote desktop protocol and block it. Sa… |
|
|
|
Post #ArLcJmnwYUjlSpmavo by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Unfortunately, it will happen the same thing that happenned numero… |
|
|
|
Post #ArLiWIpJvH9JylmJto by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog They use the RDP protocol for money laundering? I'd like to k… |
|
|
|
Post #ArLnemrWdPdnDiftlg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
I think there's finally a good use case for generative AI - ransomware grou… |
|
|
|
Post #ArLngKf6SCkIKzbKjY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog smart use of and LLM btw 👍 |
|
|
|
Post #ArLoZAW7sDmknjYAmO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Have you crosschecked the AI answers for correctness? |
|
|
|
Post #ArLpB7q0HenTUlwlwO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Very little talk about video games by these guys, disappointing! |
|
|
|
Post #ArLtn8GLYHufdMeBou by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Haha someone already thought of that!https://www.hudsonrock.com/bl… |
|
|
|
Post #ArLuifaCLCF1TsMuUC by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog These are 100% awesome!! |
|
|
|
Post #ArLutui6RBi3aEQZ4i by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog @kidney what's roughly the percentage that are wrong? |
|
|
|
Post #ArMH70uyrnJRan6QrY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Those images desperately need #AltText. I can't make out a wor… |
|
|
|
Post #ArgVQPBQ9rjks58EIS by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Not sure if anybody else caught this - back in June 2024, Symantec Threat Intel… |
|
|
|
Post #ArgW2IIkC2KUX1ckKm by [email protected] |
|
0 likes, 0 repeats |
|
|
|
The chat around it is in the evening of November 2023 if anybody wants to pull … |
|
|
|
Post #ArgXvmoUYFkZ2oUx5k by [email protected] |
|
0 likes, 0 repeats |
|
|
|
More Black Basta having fun with zero days |
|
|
|
Post #ArgYFBG1tPz8MIcutU by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog This bot has been asked to generate an alt text for your image by … |
|
|
|
Post #ArgZ9UGQPlanWSf1gO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog The problem with dismantling the ransomware economy is that it act… |
|
|
|
Post #Argcj5Gp7KNuIHVqFs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog They kinda of already are. Making payments to ransomware gangs via… |
|
|
|
Post #Argnv8SMCEsT96r9vs by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Maybe we should dismantle the trade of zero days first. Good luck … |
|
|
|
Post #ArgqMwZu9XMQK4m5PU by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Meanwhile, I’m over here thinking I need to up my spelling and p… |
|
|
|
Post #ArgqmVwNoS7XEmTv04 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog I guess I’m just surprised it takes that much ‘punctuation’ … |
|
|
|
Post #As8qa6VSC1ZcaSECnY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Black Basta ransomware group is effectively dead, looks like. |
|
|
|
Post #AsFOr1y8sW3cpNeK7k by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Black Basta ransomware group is indeed dead, post hack and dump of their chats.… |
|
|
|
Post #AsFw6wXk7FdZ7XUqye by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog what marketing form have they engaged for their rebranding exercis… |
