The infamous Black Basta ransomware group is focusing on organizations all over the world. The gang was beforehand identified for first bombarding its victims with spam emails. The hackers then pretended to be IT help to achieve entry to techniques. This methodology has now apparently been additional developed.
Safety researchers at ReliaQuest lately found that Black Basta is now utilizing Microsoft Groups chat messages to have interaction potential victims in conversations. On this methodology, too, the attackers disguise themselves as assist desk staff. In accordance with the analysis report, contact is usually made through invites to MS Groups group chats.
Within the chats, the criminals then trick customers into clicking on QR codes that result in a fraudulent web site. The fraudulent websites are tailor-made to the goal group and might usually solely be distinguished from real firm websites by fastidiously checking the subdomain.
