- A company’s managers received an extortion letter in the mail
- It claims to have come from ransomware -Operators Bianlian
- Senders warned to steal the company’s sensitive files
The security world seems to have come in full circle as spam email has again become physically with scammers sending their victim Snail mail.
Cybersecurity Outlet GuidePoint recently encountered a few of these letters sent to members of the Target Organization’s Executive Team.
The letters are also not your typical extinct spam – but claim to have been sent by the Bianlian Ransomware group.
There is no ransomware
“I’m sorry to inform you that we’ve been able to access [REDACTED] Systems and over the past several weeks have exported thousands of data files, including customer orders and contact information, employee information with IDs, SSNs, payroll reports and other sensitive HR documents, the company’s financial documents, legal documents, investor and shareholder information, invoices and tax documents.
“Your network is uncertain and we were able to access and intercept your network traffic, utilize your personal E -mail address, passwords, online accounts and other information to social engineering our way in [REDACTED] Systems via your home network using another employee. “
The researchers said the attacks are as false as the letters. There is no evidence of any compromise at all and the contents of the letter no one similar to Bianlian Ransomware operation. Even the wording of the message is incompatible with Ransom Notes Bianlian was seen sending in the past, they said.
In any case, the scammers required $ 250,000 to $ 350,000 to be paid in Bitcoin within ten days. The letter also contained a QR code that led to the Bitcoin address, but it is freshly generated, so it is impossible to determine whether it really belongs to Bianlian or not.
The return address of letters is in Boston, USA, and according to Registeredpointing to a real address for an office building.
Via Registered
