infrastructure destruction squad
447 subscribers
377 photos
27 videos
2 files
33 links
infrastructure destruction squad
Download Telegram
infrastructure destruction squad
Video
Hello everyone BLACKNET-00 ransomware has been updated to an advanced and complete version where we have added a set of new features that make it the strongest and fastest on the market and now you can enjoy a professional experience like no other

A super-fast encryption system has been added that works on 16 simultaneous threads to encrypt files in seconds with an improved XOR algorithm that ensures ultra-fast speed compared to previous versions. An intelligent file theft system has also been added that scans all drives and main folders such as Desktop Documents Pictures Videos and Downloads and steals more than 50 types of files including images videos documents databases cryptocurrency wallets SSH and VPN files and password files and sends them to Telegram in a single compressed ZIP file

Automatic compression of all stolen files into a ZIP file and sending it to Telegram in one go has been added saving time and effort and ensuring all data arrives easily. An instant screenshot capture system for the desktop has also been added and sent to Telegram as proof of compromise along with changing the desktop wallpaper to a professional black background containing a complete and prominent ransom note with contact information victim ID and time deadline

The ransom window has been improved with a countdown timer that updates every second with a sound alarm system when the deadline approaches emitting a beep every two hours to remind the victim to pay A professional HTML ransom note has been added to the desktop containing all ways to contact us such as email Telegram encrypted session and Dark Web

The persistence system has been improved to include Registry registration startup folder and installing the program as a Windows service to ensure it runs automatically even after system reboot with a self-distribution system that copies the program to all connected USB drives and creates autorun.inf files for automatic execution and spreads across local networks and shared folders

The security disabling system has also been improved to include stopping Windows Defender Firewall Shadow Copies Task Manager Registry Tools and Update Services with killing additional security software processes such as Sophos Trend Micro Panda Avira ZoneAlarm and Webroot A comprehensive victim information collection system has been added including public IP address geographic location MAC address and list of installed software on the device

All previous issues have been fixed and performance has been greatly improved and now BLACKNET-00 is faster stronger, and more professional than ever before and is available to everyone at competitive prices with continuous technical support and regular updates


$300 Full source code + Resell Rights
Complete C++ source code
Modify and resell as you wish
1 month technical support

@blacknetransom
Haha, I stole flight documents and maintenance plans haha
🚨 OFFICIAL BREACH STATEMENT SriLankan Airlines 🚨

We the BLACKNET-00 cyber group officially claim full responsibility for the successful infiltration of the internal network of SriLankan Airlines the national carrier of Sri Lanka 🇱🇰
infrastructure destruction squad
Photo
🔴 Breach Announcement SriLankan Airlines 🔴

We, the BLACKNET-00 ransomware group, take full responsibility for successfully breaching the internal network of SriLankan Airlines, the national carrier of Sri Lanka. The operation was executed successfully, and highly sensitive data has been exfiltrated.

The stolen data includes login credentials for all internal systems such as FTP, PRTG, RDP, Intranet, OWA, and IMAP, along with SSL certificate files and internal software installation packages. We have also obtained the company's operational and training documents, the complete flight management system (ngcs-flights), the operations management system (ngcs-operations), and the airport and ground handling system (ngcs-ghoperations). Additionally, we have accessed the main corporate database (ngcs-masters), the internal rating system (ngcs-rating), system logs including Log4j files, and a wide range of internal emails.

Other compromised materials include the station and aircraft maintenance manual, the list of approved maintenance stations and agents, employee information and job numbers, supplier contracts and commercial agreements, flight schedules and operational data, server and device access permissions, and the complete internal network map. We have also obtained sensitive configuration files, full Remote Desktop Protocol (RDP) access, engine maintenance reports for Pratt & Whitney IAE V2500 engines, confidential technical documents for engine components, the Line Station Handling Manual, emergency and AOG spares procedures, and the list of certified maintenance agents.

Furthermore, we have acquired quality and safety audit records, full PRTG monitoring system data including login credentials and support tickets, contact details of system administrators such as ul_mitravindu@srilankan.com, technical reports on engine failures, photographic evidence of damaged engine parts, precise VSV clearance measurements, engine performance data sheets (N2, EPR), airworthiness certificates (FAA: Z3EY983Y), names of maintenance engineers including Mick Quirke, Chris Grosvenor, and Ian Carmichael as well as the company's internal information security policy documents
2
🔴 PRTG System Breach Update 🔴

We have successfully gained access to the PRTG system!

Our team has successfully breached the PRTG Network Monitor system used by SriLankan Airlines, which is responsible for monitoring all servers, devices, and the entire internal network.

The information exfiltrated from PRTG includes full system log entries dated June 27–29, 2026, along with comprehensive server health monitoring data and performance alerts. We have also obtained detailed CPU load information for all servers, internet connectivity monitoring data for HTTP connections including response times, and server status reports showing uptime, warnings, and performance percentages. Additionally, we have captured server failure data including 503 Service Unavailable errors, as well as information on registered users, specifically the PRTG System Administrator accounts.
🔴 PRTG System Monitoring Data – Live Access 🔴

We have successfully gained access to the System Health sensor data within the PRTG monitoring system, which now enables us to monitor the real-time performance and status of SriLankan Airlines' critical servers
🔥5
🔴FiveWest Platform Falls Victim to BLACKNET-00🔴

About the Platform:
FiveWest is a financial platform offering electronic payment services and money transfers dealing with companies and institutions across various sectors
🔴FiveWest Platform Falls Victim to BLACKNET-00🔴

About the Platform:
FiveWest is a financial platform offering electronic payment services and money transfers dealing with companies and institutions across various sectors
2