Former Black Basta Members Use Microsoft Teams and Python Scripts in 2025 Attacks

June 22, 2025

Former members tied to the Black Basta ransomware operation have been observed sticking to their tried-and-tested approach of email bombing and Microsoft Teams phishing to establish persistent access to target networks.
“Recently, attackers have introduced Python script execution alongside these techniques, using cURL requests to fetch and deploy malicious payloads,” ReliaQuest said in a report

Source: Read More

Previous ArticleConnectWise to Rotate ScreenConnect Code Signing Certificates Due to Security Risks

Next Article Exploring Lakebase: Databricks’ Next-Gen AI-Native OLTP Database

Highlights

CVE-2025-46326 – Snowflake-Connector-Net TOCTOU Race Condition Vulnerability

April 29, 2025

CVE ID : CVE-2025-46326

Published : April 28, 2025, 11:15 p.m. | 3 hours, 50 minutes ago

Description : snowflake-connector-net is the Snowflake Connector for .NET. Versions starting from 2.1.2 to before 4.4.1, are vulnerable to a Time-of-Check to Time-of-Use (TOCTOU) race condition. When using the Easy Logging feature on Linux and macOS, the Connector reads logging configuration from a user-provided file. On Linux and macOS, the Connector verifies that the configuration file can be written to only by its owner. That check was vulnerable to a TOCTOU race condition and failed to verify that the file owner matches the user running the Connector. This could allow a local attacker with write access to the configuration file or the directory containing it to overwrite the configuration and gain control over logging level and output location. This issue has been patched in version 4.4.1.

Severity: 3.3 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Error’d: You Talkin’ to Me?

The Psychology Of Trust In AI: A Guide To Measuring And Designing For User Confidence

This week in AI updates: OpenAI Codex updates, Claude integration in Xcode 26, and more (September 19, 2025)

Report: The major factors driving employee disengagement in 2025

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Development Release: Zorin OS 18 Beta

Distribution Release: IPFire 2.29 Core 197

@ts-ignore is almost always the worst option

@ts-ignore is almost always the worst option

MutativeJS v1.3.0 is out with massive performance gains

Student Performance Prediction System using Python Machine Learning (ML)

DistroWatch Weekly, Issue 1140

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Hyprland Made Easy: Preconfigured Beautiful Distros

Former Black Basta Members Use Microsoft Teams and Python Scripts in 2025 Attacks

@ts-ignore is almost always the worst option

MutativeJS v1.3.0 is out with massive performance gains

Elden Ring Nightreign classes: All 8 Nightfarer characters in FromSoftware’s co-op spinoff explained

CVE-2025-4219 – WordPress DPEPress Stored Cross-Site Scripting

Split Fiction is on sale during Amazon Prime Day — this is your last chance to save on one of the “best co-op games of the last several years”

Happy 20th birthday MDN!

CVE-2025-46326 – Snowflake-Connector-Net TOCTOU Race Condition Vulnerability

Syntax-Highlight – Custom Element For Syntax Highlighting Content

CVE-2025-46337: Critical SQL Injection Vulnerability in ADOdb PHP Library

Mitsubishi Electric AC Systems Vulnerability Allows Remote Control Without User Interaction

Former Black Basta Members Use Microsoft Teams and Python Scripts in 2025 Attacks

Related Posts