Inside BRUTED: Black Basta (RaaS) Members Used Automated Brute Forcing Framework to Target Edge Network Devices

EclecticIQ analyzed leaked Black Basta internal chats and recovered the BRUTED PHP-based brute-forcing framework used since 2023 to mass-scan and credential-stuff VPNs, firewalls, and RDWeb endpoints; the report details targeted products and vulnerabilities, infrastructure IPs and domains, operational tactics (proxy rotation, C2 reporting, distributed execution), victimology, and mitigations.