blackbasta attacks Yellow Pages Canada

Incident Date:

April 22, 2023

World map

Overview

Title

blackbasta attacks Yellow Pages Canada

Victim

Yellow Pages Canada

Attacker

Blackbasta

Location

Montreal, Canada

Quebec, Canada

First Reported

April 22, 2023

Yellow Pages Group Canada Hit by Ransomware Attack

Yellow Pages Group Canada, a directory publisher, has confirmed it has suffered a ransomware attack.

The infamous ransomware and extortion group Black Basta has claimed responsibility for the attack, posting sensitive documents and data on its site.

The Yellow Pages group was founded in 1908 and owns and operates the YP.ca and YellowPages.ca websites, as well as the Canada411 online service.

Leaked Sensitive Documents

Black Basta has leaked a sample of sensitive documents exposing personal information including:

  • ID documents (such as scans of passports and driver licenses) exposing people's date of birth and address
  • Tax documents—exposing Social Insurance Number (SIN)
  • Sales and purchase agreements
  • 'Accounts Receivable' spreadsheet dated February 28, 2023
  • Budget and debt forecast dated December 2022

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.