Analysts tell the story of ransomware in numbers.
The Black Basta cybercrime group has received ransoms of at least $ 100 million from its victims since its launch in April 2022. This is evidenced by the results of a joint study of the insurance company Corvus and the analytical firm Elliptic.
Hackers conducted attacks on more than 330 companies around the world using a double extortion scheme. At first, malware developed by affiliated companies stole confidential data from compromised systems. The program then encrypted these systems, blocking access to them. The stolen information was used for blackmail and extortion.
The largest buyout was $ 9 million. At least 18 companies paid the bandits more than $ 1 million. The average size of the buyout is $ 1.2 million. The data shows that at least 35% of the known Black Basta-affected organizations decided to comply with the criminals ' conditions and paid the required amount.
There are suggestions that the group is an offshoot of the famous Conti gang, which broke up in June of the same year. This is indicated by the high level of qualification of malware operators and the unwillingness to recruit new participants.
"The group's massive attacks on at least 20 victims in the first two weeks of its existence indicate that it already has extensive experience in using ransomware and has stable access to the infrastructure of the attacked companies," the US Department of Health and Human Services said in a report published in March.
It is known that Black Basta operates on the ransomware-as-a-Service (RaaS) model, providing partners with its own tools and techniques.
Many major companies have been targeted by Black Basta, including the American Dental Association, Canadian retailer Sobeys, German construction company Knauf, Yellow Pages Phone Directory, the Toronto Public Library, and defense contractor Rheinmetall. Also on the list of victims are the British technology company Capitals, which implements billion-dollar government projects, and the industrial giant ABB with annual revenues of more than $ 29 billion.
The Black Basta cybercrime group has received ransoms of at least $ 100 million from its victims since its launch in April 2022. This is evidenced by the results of a joint study of the insurance company Corvus and the analytical firm Elliptic.
Hackers conducted attacks on more than 330 companies around the world using a double extortion scheme. At first, malware developed by affiliated companies stole confidential data from compromised systems. The program then encrypted these systems, blocking access to them. The stolen information was used for blackmail and extortion.
The largest buyout was $ 9 million. At least 18 companies paid the bandits more than $ 1 million. The average size of the buyout is $ 1.2 million. The data shows that at least 35% of the known Black Basta-affected organizations decided to comply with the criminals ' conditions and paid the required amount.
There are suggestions that the group is an offshoot of the famous Conti gang, which broke up in June of the same year. This is indicated by the high level of qualification of malware operators and the unwillingness to recruit new participants.
"The group's massive attacks on at least 20 victims in the first two weeks of its existence indicate that it already has extensive experience in using ransomware and has stable access to the infrastructure of the attacked companies," the US Department of Health and Human Services said in a report published in March.
It is known that Black Basta operates on the ransomware-as-a-Service (RaaS) model, providing partners with its own tools and techniques.
Many major companies have been targeted by Black Basta, including the American Dental Association, Canadian retailer Sobeys, German construction company Knauf, Yellow Pages Phone Directory, the Toronto Public Library, and defense contractor Rheinmetall. Also on the list of victims are the British technology company Capitals, which implements billion-dollar government projects, and the industrial giant ABB with annual revenues of more than $ 29 billion.
