BlackLock im Visier: Leak-Schwachstelle offenbart Interna der Ransomware-Gruppe
#DarkCommerce #ITSicherheit #BlackLock #Cybercrime #LeakSeite #LFISchwachstelle #Ransomware #Resecurity https://sc.tarnkappe.info/e06d78

Hackers got hacked.

#BlackLock, a top ransomware gang in 2025, just got owned—by threat hunters who found a fatal flaw in their infrastructure.

exposing...
Real IPs behind their hidden servers
Command history showing OPSEC fails
Credentials, configs, and MEGA storage accounts used for exfil

Turns out, #DragonForce—another ransomware crew—also hacked BlackLock’s site last week, leaking internal chats and configs.

https://thehackernews.com/2025/03/blacklock-ransomware-exposed-after.html

Ah, it seems that #Resecurity wished #BlackLock aka #ElDorado a belated Merry Xmas and season's greetings by intruding into their infrastructure.

It's an interesting read.

https://www.resecurity.com/blog/article/blacklock-ransomware-a-late-holiday-gift-with-intrusion-into-the-threat-actors-infrastructure

#BlackLock #Ransomware Targeted by Cybersecurity Firm
https://securityaffairs.com/175877/cyber-crime/blacklock-ransomware-targeted-by-cybersecurity-firm.html
#securityaffairs #hacking #malware

ReliaQuest Inside the World’s Fastest Rising Ransomware Operator - BlackLock https://www.reliaquest.com/blog/threat-spotlight-inside-the-worlds-fastest-rising-ransomware-operator-blacklock/

Somewhat of a deep dive into a relatively new RaaS (BlackLock), a very active group both on RAMP and with adding new victims to their leaksite. Employing significant amount of techniques to prevent analysis (also on their leaksite(!).