blackbasta attacks Oralia jwellery

Incident Date:

April 26, 2022

World map



blackbasta attacks Oralia jwellery


Oralia jwellery




new delhi, India

delhi, India

First Reported

April 26, 2022

Oralia Jewelry Targeted by Blackbasta Ransomware Group

Overview of the Attack

Blackbasta, a ransomware group, has claimed responsibility for an attack on Oralia Jewelry, a retailer operating in India. The company's website offers a variety of accessories, including jewelry, and operates from Monday to Friday, from 12 PM to 6 PM.

Oralia Jewelry is a part of the retail sector, which has been a significant target for ransomware attacks in recent years. Despite the lack of detailed information about its size or unique features on its website, Oralia Jewelry is recognized for offering high-quality jewelry at affordable rates, fast shipping, and priority customer support.

The Vulnerability of Retailers to Ransomware Attacks

The attack on Oralia Jewelry underscores the vulnerability of retailers to ransomware attacks. Cybersecurity researchers have highlighted that websites requesting access to files can bypass antivirus software, facilitating ransomware attacks. In this instance, the attackers may have exploited vulnerabilities in Oralia Jewelry's website or network infrastructure to deploy the ransomware.

About Blackbasta Ransomware Group

Active since November 18, 2021, Blackbasta is known for its ransomware as a service (RaaS) operations. The group utilizes the Rust programming language, enabling execution across various operating systems, including Windows, Linux, and VMWare ESXi. Blackbasta's ransomware can encrypt files using the AES or ChaCha20 algorithms and is capable of deleting volume shadow copies, stopping processes and services, and halting virtual machines on ESXi servers.

Implications for Businesses

The attack on Oralia Jewelry serves as a critical reminder for businesses, particularly those in the retail sector, to prioritize cybersecurity measures. Protecting against ransomware attacks requires regular updates and patches, comprehensive employee training, and the deployment of robust antivirus software.


  • Oralia Accessories Ransomware can hide in the websites you upload files to - FIU News
  • Groups profiles - RansomLook

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.