BlackBasta’s internal chats just got exposed, proving once again that cybercriminals are their own worst enemies.
Keep burning our intelligence sources, we don’t mind.
pic.twitter.com/6So7dl7xXn
Black Basta’s reputation as a formidable threat to global cybersecurity is well-established.
This event has heightened fears among members about potential exposure to law enforcement.
Leaked BlackBasta chat logs contain messages spanning from September 18, 2023, to September 28, 2024.
This trojan establishes a backdoor and deploys SystemBC to create an encrypted connection to a command and control server.
The group also uses legitimate remote access software to maintain persistence, while disabling antivirus and endpoint detection systems.
For data theft and exfiltration, they rely on tools like Mimikatz and Rclone.
Taking advantage of this treasure trove of information, security firm Hudson Rock fed the chat transcripts into ChatGPT.
The result isBlackBastaGPT, a new resource to assist researchers in analyzing Black Basta’s operations more effectively.
