Dark Web Profile: Bashe (APT73) - SOCRadar® Cyber Intelligence Inc.

Bashe, a ransomware group active since 2024, targets critical industries in developed nations using tactics similar to LockBit. Operating through a TOR-based data leak site, Bashe employs double extortion, combining data encryption with threats of public exposure to force compliance. Organizations must adopt comprehensive security measures, including threat intelligence, dark web monitoring, and vulnerability insights, to defend against Bashe and other ransomware threats.