Akshaya Asokan reports:
A newly identified financially motivated hacking group is deploying Basta ransomware as part of an ongoing extortion campaign that began early this year.
Google Mandiant, which uncovered the campaign, tracks the group as UNC4393.
Since Basta is not publically marketed and is available on invitation-only basis, Mandiant researchers believe UNC4393 is likely the “primary user of Basta ransomware.”
“The hundreds of Basta ransomware victims claimed on the data leak sites appear credible due to UNC4393’s rapid operational tempo,” Mandiant said, adding that the median time the group takes to ransom a victim is approximately 42 hours.
Read more at DataBreachToday.