The infamous Black Basta ransomware group is focusing on organizations all over the world. The gang was beforehand recognized for first bombarding its victims with spam emails. The hackers then pretended to be IT assist to realize entry to techniques. This technique has now apparently been additional developed.
Safety researchers at ReliaQuest just lately found that Black Basta is now utilizing Microsoft Groups chat messages to interact potential victims in conversations. On this technique, too, the attackers disguise themselves as assist desk staff. In keeping with the analysis report, contact is usually made by way of invites to MS Groups group chats.
Within the chats, the criminals then trick customers into clicking on QR codes that result in a fraudulent web site. The fraudulent websites are tailor-made to the goal group and may typically solely be distinguished from real firm websites by rigorously checking the subdomain.
