US firms claimed to be attacked by BianLian ransomware gang

June 27, 2024

Today’s columnist, Eric Woodruff of Semperis, explains how common privileged access mistakes can lead to ransomware incidents. (Adobe Stock)

U.S.-based nonprofit organization Better Business Bureau and skin care provider U.S. Dermatology Partners were admitted to be compromised by the BianLian ransomware operation, The Cyber Express reports.

BianLian alleged exfiltrating 1.2 TB of data from BBB's systems, including accounting, financial, and budget information, as well as operational and business files, contract data and non-disclosure agreements, chief financial officer computer files, and email and PST archives, while exposing sensitive details from the nonprofit's executives. On the other hand, U.S. Dermatology Partners had 300 GB of data claimed to be exfiltrated by the ransomware gang. Included in the compromised data were personal information, financial details, accounting data, budget information, employee profiles, contracts, and NDAs, said BianLian. Neither BBB nor U.S. Dermatology Partners have confirmed or denied BianLian's claims. Such a development comes after BianLian, which has shifted to exfiltration-based extortion last year, claimed attacks against KC Pharmaceuticals, North Star Accounting, Martinaire Aviation, MOOver, and Northeast Spine and Sports Medicine.

An In-Depth Guide to Ransomware

Get essential knowledge and practical strategies to protect your organization from ransomware attacks.

Learn More

SC Staff

Ransomware

Ransomware attacks primarily caused by poor cyber hygiene

SC StaffNovember 21, 2024

Aside from primarily leveraging basic usernames for their accounts, organizations impacted by ransomware intrusions from July to September — including those in the government and healthcare industries — also mostly failed to implement multi-factor authentication that could have deterred brute-force attacks.

Ransomware

Phobos ransomware operation uncovered by indictment against suspected admin

SC StaffNovember 21, 2024

Included in the Phobos-hit organizations that paid a ransom were a California public school system, a North Carolina children's hospital, a Maryland-based accounting and consulting service provider, and health organizations in Pennsylvania and Maryland, revealed an unsealed indictment against suspected Phobos administrator Evgenii Ptitsyn.

Law and Justice concept. Mallet of the judge, books, scales of justice. Gray stone background, reflections on the floor, place for typography. Courtroom theme.

Ransomware

US charges suspected Scattered Spider hackers, disrupts PopeyeTools

SC StaffNovember 21, 2024

Alleged Scattered Spider hackers Ahmed Hossam Eldin Elbadawy, Noah Michael Urban, Evans Onyeaka Osiebo, Joel Martin Evans, and Tyler Robert Buchanan have been indicted for their involvement in a prolonged cryptocurrency theft operation that involved SMS phishing, corporate system compromise, and further phishing intrusions.

Related Events

Related Terms

Attack Vector

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

US firms claimed to be attacked by BianLian ransomware gang

An In-Depth Guide to Ransomware

Related

Ransomware attacks primarily caused by poor cyber hygiene

Phobos ransomware operation uncovered by indictment against suspected admin

US charges suspected Scattered Spider hackers, disrupts PopeyeTools

Related Events

Preventing Ransomware: Key Trends and Guidance for the Second Half of 2024 and Early 2025

Ransomware attack lessons, from MOVEit and Doubledrive to MGM/Caesars

Cyber Resilience in the Ransomware and Wiper Era New Strategies for CISOs to Protect

Get daily email updates