The Download
Creating a virtual factory of extortion, Black Basta ransomware gang and its affiliates have compromised over 500 organizations worldwide between April 2022 and May 2024, setting a blistering pace of compromising almost 20 organizations a week. Separate reporting on Black Basta showed ransomware payments from 90 organizations netting $100M up through Novemeber 2023 indicating a mean payment of greater than $1M per organization.
The joint report from the CISA and FBI specifically highlighted healthcare organizations being targeted by Black Basta and other ransomware gangs, coming on the heels of attacks against Ascension and Change healthcare systems. Similarly the Health-ISAC (Information Sharing and Analysis Center) issued a threat bulletin on Black Basta that It Is accelerating its attack against the healthcare sector.
What You Can Do
In case you took your eye off the ball, CISA and FBI is reminding us that ransomware-as-a-service is alive and well and taking hostages. It is no time to step off the gas pedal in securing your infrastructure. To protect yourself against these attacks, CISA recommends keeping your operating systems and applications patched against threats, implementing multi-factor authentication (MFA), and providing spearphish training for employees.
To Learn More: