LevelBlue SpiderLabs has taken an in-depth look at the unprecedented February 2025 leak of chat logs that exposed the internal operations of Black Basta, a prolific ransomware group.
The leaked contents, which spell out in detail how the group thinks and operates reveals discussions on tactics, the effectiveness of various attack tools, and debates on the ethical and legal implications of targeting Ascension Health.
This report offers insights on Black Basta's internal workflows, decision-making processes, and team dynamics, offering an unfiltered perspective on how one of the most active ransomware groups has operated behind the scenes since 2022.
