Ransomware Group: BABUK

VICTIM NAME: mtgazeta[.]uz

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the BABUK Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page details a compromise involving a political entity associated with Uzbekistan, specifically focusing on the Milliy Tiklanish Democratic Party. The page articulates a socio-political concept aimed at revitalizing cultural, spiritual, and national identity within the region. Factors emphasized include the importance of supporting the Uzbek language and culture, protecting cultural heritage, and ensuring social development aligned with national traditions. The document notes a significant compromise of their FTP server, stating that 200MB of source code and configuration files, including secret keys, will be leaked. Furthermore, it implies that a larger dataset, approximately 3GB in total, is available for sale, which suggests an extensive data breach.

The leak page also hints at various interactive elements, including a view counter indicating 933 views, potentially reflecting the interest level from the community regarding the leak. Additionally, contact details are provided, directing individuals to a Tox chat link, indicating an approach towards decentralized communication for inquiries or further engagement. A single image accompanies the leak, although details regarding its content are generalized. The overall message points towards a politically motivated breach aimed at exposing sensitive data related to the victim’s operations and ideologies, highlighting the vulnerabilities faced by organizations in protecting their data against cyber threats.