BlackBasta attacks Tag Aviation
Date:
June 10, 2023
Overview
Title
BlackBasta attacks Tag Aviation
Victim
Tag Aviation
Attacker
BlackBasta
Location
Size of Attack
Unknown/TBD
First Reported
June 10, 2023
Last Updated
October 31, 2022
The BlackBasta ransomware gang has attacked TAG Aviation. TAG Aviation is a leading global provider of private aviation services with a rich history dating back to its establishment in 1966. Renowned for its expertise in business aviation, TAG Aviation offers a comprehensive range of services catering to the needs of private jet owners and charter clients alike. One of TAG Aviation's core offerings is aircraft management, wherein the company takes on the responsibility of overseeing aircraft operations, maintenance, crew management, and financial administration on behalf of private jet owners. Additionally, TAG Aviation provides private jet charter services, providing clients with access to a diverse fleet of aircraft for personalized travel experiences. From light to large-cabin jets, they offer flexibility and convenience to suit varying travel requirements. TAG Aviation operates Fixed Base Operations (FBOs) at multiple airports worldwide, offering premium services to private jet customers, including passenger lounges, concierge assistance, and ground handling support. TAG Aviation is still trying to determine exactly what data was compromised. Someone (possibly BlackBasta) is selling 1.5TB of corporate emails and over 5TB of personal data stolen on the Unsafe leak dark web marketplace. This includes info about all clients (passports, photos, payment data and history, DOB, phone, email, where and with whom they fly), HR info (employers, salary, contracts, benefits, insurance, passports, and more), and other corporate data. It is unclear what UnSafe is demanding as ransom.
This attack's description was not found, while we work on the detailed account of this attack we invite you to browse through other recent Rasomware Attacks in the table below.
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.