FCEB Urged to Patch Vulnerable Systems to Prevent Black Basta Ransomware

15 Jun 2024

Federal Civilian Executive Branch Agencies (FCEB) are in a race against time to secure their vulnerable systems. Following a binding operational directive (BOD 22-01) issued in November 2021, these agencies have been mandated to address all vulnerabilities listed in CISA’s catalog of Known Exploited Vulnerabilities. On Thursday, CISA set a new deadline, giving FCEB agencies until July 4 to patch the CVE-2024-26169 security flaw and prevent potential ransomware attacks.

Although this directive specifically targets federal agencies, CISA has strongly recommended that all organizations prioritize fixing this flaw. The agency warned that “These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.”

Black Basta: A Rising Threat

Black Basta, a Ransomware-as-a-Service (RaaS) operation, has been a significant player in the cybercrime world since its emergence in April 2022. The group formed after the Conti cybercrime gang splintered into multiple factions following several high-profile data breaches. Since then, Black Basta has targeted numerous high-profile victims, including:

  • German defense contractor Rheinmetall
  • U.K. technology outsourcing company Capita
  • The Toronto Public Library
  • The American Dental Association
  • Government contractor ABB
  • Hyundai’s European division
  • Yellow Pages Canada
  • U.S. healthcare giant Ascension

According to CISA and the FBI, Black Basta ransomware affiliates have compromised over 500 organizations as of May 2024. These attacks have resulted in encrypted systems and stolen data from at least 12 U.S. critical infrastructure sectors.

Research from Corvus Insurance and cybersecurity firm Elliptic reveals that Black Basta has amassed at least $0 million in ransom payments from over 90 victims up until November 2023.

The urgency to secure vulnerable systems cannot be overstated. As ransomware attacks continue to evolve and become more sophisticated, organizations must remain vigilant and proactive in addressing vulnerabilities. The clock is ticking for FCEB agencies, but the broader message is clear: cybersecurity is a shared responsibility, and timely action is crucial to safeguarding critical infrastructure and sensitive data.

Update: 15 Jun 2024

Top charts for

uTorrent

uTorrent

Latest update uTorrent download for free for Windows PC or Android mobile

5
1032 reviews
7508589
downloads
Zona

Zona

Latest update Zona download for free for Windows PC or Android mobile

4
614 reviews
1735533
downloads
WinRAR

WinRAR

Streamline file management with fast compression, secure your documents, and save space.

5
735 reviews
746751
downloads
Minecraft

Minecraft

Shape environments, explore vast worlds, and survive against monsters with endless creativity.

5
750 reviews
496426
downloads

News and reviews for

Visio 2021 Professional Now $9.97 Until February 8

Visio 2021 Professional Now $9.97 Until February 8

Microsoft offers Visio 2021 Professional for $9.97, down from $249, with added templates, until February 8.

Read more
Code Vein Offers Stylish Combat, Discounted Editions

Code Vein Offers Stylish Combat, Discounted Editions

Code Vein captivates with anime-style combat and offers discounted editions. Fast-paced action meets fun builds in this cult classic.

Read more
Microsoft Phases Out RC4 in Kerberos for Windows Security

Microsoft Phases Out RC4 in Kerberos for Windows Security

Microsoft to eliminate RC4 in Kerberos by July 2026, enhancing Windows security.

Read more
Highguard Faces Criticism but Shows Potential for Growth

Highguard Faces Criticism but Shows Potential for Growth

Highguard, launched with controversy, holds potential despite poor reviews. Offering genre innovation, it aims to evolve against negative feedback.

Read more
PS2Recomp Boosts Native PS2 Games with Recompilation

PS2Recomp Boosts Native PS2 Games with Recompilation

PS2Recomp, a new tool, promises enhanced native PS2 game ports, sparking interest among developers for PC platforms.

Read more
NVIDIA Introduces RTX Remix Logic for Classic Game Mods

NVIDIA Introduces RTX Remix Logic for Classic Game Mods

NVIDIA's RTX Remix Logic, launched on 2026-01-27, enables dynamic modding of classic PC games with a no-code node-based interface.

Read more
Windows 11 Update KB5074109 Affects Legacy Modems

Windows 11 Update KB5074109 Affects Legacy Modems

The Windows 11 update KB5074109 disrupts modems by removing several legacy drivers, causing connectivity issues for select users.

Read more
Anytype Replaces Notion, Obsidian, and Todoist for Unified Workflow

Anytype Replaces Notion, Obsidian, and Todoist for Unified Workflow

Anytype consolidates Notion, Obsidian, and Todoist functions, reducing context-switching and improving workflow efficiency.

Read more
ReBlade: Cyberpunk Roguelike Announced by ChillyRoom

ReBlade: Cyberpunk Roguelike Announced by ChillyRoom

ReBlade from ChillyRoom and Spiral Up Games announced for PC: cyberpunk roguelike offers high-speed action in a dystopian setting.

Read more
Artorias Battles Elden Ring Bosses in New Video Showcase

Artorias Battles Elden Ring Bosses in New Video Showcase

Artorias from Dark Souls faces Elden Ring bosses, demonstrating impressive skills in Fights' YouTube video.

Read more
All article

Comments (0)

No comments yet. Be the first to comment!