- The managers of a company received a letter of extortion by post
- He claims to have come from bianlian ransomware operators
- Shipwasters have warned of stealing sensitive corporate files
The world of security seems to have completed the loop, because the mail of spam has again become physical with crooks sending their victims of mail snail.
Cybersecurity Outlet GuidePoint recently met some of these letters sent to the members of the management team of the target organization.
The letters are not your typical extinguished spam either – but claim to have been sent by the Ransomware Bianlian group.
There is no ransomware
“I regret informing you that we have accessed [REDACTED] Systems and in recent weeks have exported thousands of data files, including customer order and contact details, employees information with IDS, SSNS, Payroll reports and other sensitive HR documents, company financial documents, legal documents, investors and shareholders, invoices and tax documents, “said the letter.
“Your network is not safe and we were able to access and intercept your network traffic, take advantage of your personal email address, your passwords, online accounts and other information to the social engineer our path [REDACTED] Systems via your home network using another employee. »»
The researchers said that attacks are as false as letters. There is no evidence of compromise, and the content of the letter is not like the bianlian ransomware operation. Even the wording of the message is incompatible with Ransom Notes that Bianlian has been seen send in the past, they said.
In any case, the crooks required $ 250,000 to $ 350,000, to be paid in Bitcoin, within ten days. The letter also included a QR code leading to Bitcoin address, but it is freshly generated, so it is impossible to determine whether it is really up to Bianlian or not.
The return address for letters is in Boston, the United States, and according to The registerIndicates a real address for an office building.
Via The register
