blackbasta attacks TMI

Incident Date:

July 6, 2022

World map

Overview

Title

blackbasta attacks TMI

Victim

TMI

Attacker

Blackbasta

Location

New Delhi, India

Delhi, India

First Reported

July 6, 2022

TMI Academy Targeted by Blackbasta Ransomware Group

TMI Academy, a premier educational institute in India, has been targeted by the ransomware group Blackbasta. The attack was announced on the group's dark web leak site, and the victim's website is http://www.tmiacademy.com/. TMI Academy operates in the Education sector and offers courses in Aviation, Travel, Tourism, Hospitality, Retail, Management, Vocational Training, Digital Marketing Training, and IATA Training Programs.

Company Profile

TMI Academy is an Authorised Learning Centre of IATA, UGC Recognised Indian University, and a Government Approved Vocational Training Provider. The institute's goal is to impart industry-relevant job-oriented training to its students, with researched course content, experienced faculty, and extensive training techniques.

Vulnerabilities

The specific vulnerabilities that led to TMI Academy being targeted by Blackbasta are not disclosed in the search results. However, ransomware attacks often exploit weak points in a system's security, such as outdated software, unpatched systems, or phishing emails.

Impact

Ransomware attacks can have severe consequences, including data loss, system downtime, and financial damage. In the case of TMI Academy, the attack could potentially disrupt their operations and impact their students' learning experience.

Response

Victims of ransomware attacks should report to federal law enforcement via IC3 or a Secret Service Field Office and can request technical assistance or provide information to help others by contacting CISA. It is also recommended to maintain offline, encrypted backups of data and regularly test backups, as well as to regularly patch and update software and operating systems.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.