Black Basta Ransomware Hackers Infiltrates Networks via Qakbot to Deploy Brute Ratel C4
17-Oct-22
The threat actors responsible for the Black Basta ransomware family have been seen exploiting the Qakbot malware to introduce the Brute Ratel C4 framework as a second-stage payload in recent attacks.
According to cybersecurity company Trend Micro’s technical research published last week, the development marks the first time the emerging adversary simulation software has been distributed via a Qakbot infestation. The attack required Cobalt Strike to travel laterally and was carried out using a phishing email with a weaponized link leading to a ZIP archive. Read More…
