As per reports, Yellow Pages Group, the Canadian Directory Publisher, has been attacked by the Black Basta Ransomware Group.
The threat actor also took responsibility for the cyberattack on the Yellow Pages Group.
Black Basta was responsible for the cyberattack on the UK-based Professional Outsourcing Provider, Capita.
They were also responsible for Sobey’s Hack, a Canadian Food retail giant.
Yellow Pages collect large amounts of public data, including personal or private corporate data.
The threat actor has also posted sensitive files and information on their data leak website.
On Saturday, Dominic Alvieri, a threat intel analyst, posted on Twitter that the Black Basta ransomware group has leaked critical information about Yellow Pages.
Reports suggest that the data that has been posted may include,
- Tax documents
- Sales and Purchase agreements
- Accounts Receivable Spreadsheet (28/02/2023 Updated)
- Budget and debt forecast (December 2022)
- Passports and Driver’s licenses of people
- Date of birth
Franco Sciannamblo, Yellow Pages’ Senior Vice President and Chief Financial Officer, said, “Yellow Pages was recently the victim of a cyber attack. As soon as we became aware of the attack, we immediately investigated this issue with the assistance of external cybersecurity experts to contain the incident and ensure that we had secured our systems.
We have been notifying impacted individuals and reporting to all appropriate privacy regulatory authorities regarding this incident. Substantially all of our services have now been restored.”
As per the data leaked on their website, the attack is estimated to have happened on or after the 15th of March, 2023.
Reports suggest that the Black Basta ransomware group is none other than the Conti ransomware group.
It seems like a rebrand of their group.
Building Your Malware Defense Strategy – Download Free E-Book