Ransomware Group: BLACKBASTA

VICTIM NAME: jonti-craft[.]com

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the BLACKBASTA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page associated with Jonti-Craft, a family-owned manufacturer of children’s furniture based in the US, indicates a significant data compromise. This incident, which was discovered and made public on November 19, 2024, involves the leakage of approximately 700GB of sensitive data. The compromised information encompasses various categories, including financial records, payroll details, personal data, human resources files, and engineering documents among others. This breach poses serious implications for the company and its clients, highlighting vulnerabilities within organizational data protection practices.

The breach is linked to the group identified as “Black Basta,” known for their malicious activities involving ransomware attacks. The leaked documents reportedly include information relating to home users and operational departments, emphasizing a potentially widespread impact. Additionally, Jonti-Craft’s operations, which cater to diverse settings such as classrooms and daycares, might suffer significant reputational damage as a result of this exposure. The page also features a screenshot that appears to display internal documents, underscoring the serious nature of the leak without providing specific details on the contents. This case serves as a critical reminder of the ongoing cybersecurity threats faced by companies in the manufacturing sector.