Ransomware Group: BLACKBASTA

VICTIM NAME: migonline[.]com

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the BLACKBASTA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page associated with Mortgage Investors Group (MIG), a significant entity in the financial services sector based in the US, surfaced on January 11, 2025. Established in 1989, MIG is known for offering a comprehensive range of home financing options designed to facilitate homeownership. Unfortunately, the company has become a target of a ransomware attack perpetrated by the group “blackbasta,” resulting in the exposure of a substantial trove of sensitive data, estimated at over 1.5 terabytes. The data encompasses numerous categories including financial records, contracts, and confidential client information.

The compromised data includes extensive details such as financial data related to accounting, various client documents, personal forms, and confidential information pertinent to employees and clients alike. This incident reflects a troubling trend within the financial industry, where sensitive user data is increasingly at risk due to cyber threats. The leaked data’s significance raises concerns about the potential misuse of this information. The leak page prominently showcases a screenshot of the exposed data, emphasizing the gravity of the situation. Moreover, the site indicates that at least one user may have been affected, highlighting the immediate need for vigilant cybersecurity measures in response to such breaches.