Ransomware Group: BLACKBASTA

VICTIM NAME: mcleanmortgage[.]com

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the BLACKBASTA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page related to McLean Mortgage Corporation, a financial services firm based in the United States, highlights a significant data breach discovered on November 28, 2024. The company, specializing in mortgage brokerage since its establishment in 2008, has been serving clients with various loan products. The data compromised in this incident is estimated to encompass approximately 1 terabyte, containing sensitive information such as financial data, payroll records, tax documents, human resources files, and personal documents of both clients and employees. The extent of the breach reflects the importance of cybersecurity measures within financial institutions, whose operations heavily rely on safeguarding client data.

The leak page indicates that the breach was associated with the ransomware group named Black Basta. Users are noted to have been affected, with 15 identified as potential victims. Additionally, download links to the leaked data have been made available on the site, suggesting a serious breach of confidentiality. The general content of the page includes a screenshot providing visual context regarding the nature of the leak. This situation reflects ongoing challenges faced by the financial industry in managing sensitive data securely, emphasizing the critical need for enhanced cybersecurity protocols to protect against such breaches.