Cyber Threat Report

Hackers Recruit IT Experts for Fake Company

A Russian-based group has masqueraded as a legitimate cyber security consultancy. The Baston Secure company website, logo displayed as BS, hosted and hired multiple jobs for cyber security specialists and offered what appeared to be legitimate cyber security services.

The suspected group, Fin7, has ties to the Colonial Pipeline Ransomware attack that shut down fuel transport on the East Coast earlier this year. The team is believed to have hacked hundreds of businesses and stolen more than a billion dollars worldwide.


The group built a website with stolen content compiled from other legitimate cyber security companies, hired technical staff including penetration testers, and supplied testing tools to their staff that once analyzed were found to be components of the post-exploitation toolkits that deploy ransomware.

At the time of writing this blog, both Safari and Chrome have blocked access to the Bastion Secure website.

Hire a virtual ciso for your business today

We are JANUS Associates. Founded in 1988, we are the longest operating security, privacy, and regulatory compliance consultancy in the nation. 

For the past 32+ years we have helped hundreds of government agencies, commercial entities, educational institutions, and not-for-profits protect their infrastructures, data, clients, and employees, and we have the references and testimonials to prove these claims. Our decade’s long experience has allowed us to achieve deep expertise in every sector and specialty that exists, including yours. We are friendly, nimble, and flexible, and we always focus on what's best for you.  

Contact Chris Kniffin, Corporate Director, to find out how a team of affordable professionals can help you secure your organization. Learn more about JANUS online through our Blogs, Threat Reports, and eBooks.


JANUS Associates is proud to be a champion for Cybersecurity Awareness Month. We provide information on how to be safer and more secure online. Do your part. #BeCyberSmart #CyberMonth