One of the nastiest ransomware groups around may have a whole new way of doing things

CISA updates advisory on BianLian, originally published in May 2024
Agency claims the group is moving away from deploying the encryptor
Instead, BianLian exfiltrates sensitive data and threatens to release it

The infamous BianLian ransomware group has stopped deploying an encryptor on victim devices, and now focuses exclusively on data exfiltration, an updated security advisory from the US Cybersecurity and Infrastructure Security Agency (CISA), and partner agencies has warned.

CISA, alongside the FBI and Australian Cyber Security Centre, first published an in-depth report on BianLian in May 2024 as part of its #StopRansomware effort, detailing the group’s techniques, tactics, and procedures, but this has now been updated with new information, including the changes to the group’s modus operandi.

As it turns out, BianLian no longer encrypts the information on the endpoints of its victims. Rather, it just steals the data, and then demands payment in exchange for not leaking it to the public.

BianLian following the trends

This is a change that the cybersecurity community has been warning about for quite some time now, and BianLian is hardly the only group that is no longer deploying the encryptor.

As it turns out, developing, maintaining, and deploying the encryption software is too tedious, too cumbersome, and too expensive. In terms of money extortion, simple data exfiltration yields the same results, anc crooks are taking notice.

The agencies also say BianLian is a Russian actor, based in the country, and with Russian affiliates. If the name threw you off, and made you think the group is likely Chinese (or elsewhere in the far East, for that) – that is intentional.

“The reporting agencies are aware of multiple ransomware groups, like BianLian, that seek to misattribute location and nationality by choosing foreign-language names, almost certainly to complicate attribution efforts,” the report claims.

In the past, the group was observed targeting organizations in the US critical infrastructure sector, and private enterprises in Australia.

https://cdn.mos.cms.futurecdn.net/mX3W9KraGSUsScvjwiRudM-1200-80.jpg

Source link

How to watch Ireland vs Fiji live stream for FREE online

I’m a small business expert with 10 years of experience – here are my recommended Black Friday buys

The criminally underappreciated Dell G15 is my favorite Black Friday deal right now with a 20% discount at Amazon taking it under $1000

UK, US, EU Authorities Gather in San Francisco to Discuss AI Safety

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

People are driving through flames to escape this California wildfire

New ‘Westworld’ trailer introduces us to another dystopian tech company

What’s the point of ‘Charlie’s Angels’ without Sam Rockwell dancing?

These striking photos capture the future of human flight

‘Heathers’ is still the best dark comedy about high school hell

Trump vs. Harris: How the election will affect EV adoption

Lumwana’s Super Pit Expansion Officially Launched By Investing.com

How Biden could use a 1947 law to suspend the dockworkers’ strike

Why your Roth IRA conversions could have ‘unintended’ tax consequences

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays

One of the nastiest ransomware groups around may have a whole new way of doing things

How to watch Ireland vs Fiji live stream for FREE online

I’m a small business expert with 10 years of experience – here are my recommended Black Friday buys

The criminally underappreciated Dell G15 is my favorite Black Friday deal right now with a 20% discount at Amazon taking it under $1000

UK, US, EU Authorities Gather in San Francisco to Discuss AI Safety

Leave a reply Cancel reply