by in
• Cybercrime group Blacktail has begun to target organizations around the globe through their latest ransomware campaign labeled Buhti.
• The group does not make their own malware but repurposes pre-existing strains such as LockBit 3.0 for Windows OS and Babuk for Linux OS.
• LockBit 3.0 has been linked to over 1400 attacks worldwide and has received over $75 million in payouts.
• Blacktail utilizes two different exploits, CVE-2023-27350 and CVE-2022-47986, to bypass authentication and perform remote code execution.
• To counter such threats, robust firewalls, regular software updates, employee training, and incident response plans are necessary.
Share Post:
