Lucene search
K

16 matches found

HackRead
HackRead
added 2026/03/27 3:43 p.m.6 views

BianLian Ransomware Spreads via Fake Invoice SVG Images in New Attacks

Researchers at WatchGuard have identified a new phishing campaign targeting companies in Venezuela. Using malicious SVG image files…...

5.9AI score
Exploits0
The Hacker News
The Hacker News
added 2025/05/14 5:50 p.m.36 views

BianLian and RansomExx Exploit SAP NetWeaver Flaw to Deploy PipeMagic Trojan

At least two different cybercrime groups BianLian and RansomExx are said to have exploited a recently disclosed security flaw in SAP NetWeaver tracked as CVE-2025-31324, indicating that multiple threat actors are taking advantage of the bug. Cybersecurity firm ReliaQuest, in a new update publishe...

10CVSS9.4AI score0.99359EPSS
Exploits23
Rapid7 Blog
Rapid7 Blog
added 2025/03/19 4:0 p.m.11 views

Fake BianLian Ransomware Letters in Circulation

At a glance: The FBI is warning of a mail-based fraud involving letters sent to businesses in the U.S. These letters resemble online ransomware notes demanding payment via Bitcoin. Rapid7 examined a mail-based ransom demand sent to a customer from a local postcode. There is no evidence that any o...

7AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2025/03/19 4:0 p.m.4 views

Fake BianLian Ransomware Letters in Circulation

At a glance: The FBI is warning of a mail-based fraud involving letters sent to businesses in the U.S. These letters resemble online ransomware notes demanding payment via Bitcoin. Rapid7 examined a mail-based ransom demand sent to a customer from a local postcode. There is no evidence that any o...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/03/06 4:6 p.m.8 views

Ransomware threat mailed in letters to business owners

Business owners and CEOs across the United States received customized ransomware threats this month from the most unusual of places—letters in the mail. The letters, which were first reported by multiple cybersecurity researchers, claim to come from a ransomware group called BianLian. But since...

6.8AI score
Exploits0
CISA
CISA
added 2025/03/06 12:0 p.m.4 views

FBI Warns of Data Extortion Scam Targeting Corporate Executives

The Federal Bureau of Investigation FBI Internet Crime Complaint Center IC3 has released an alert warning of a scam involving criminal actors masquerading as the “BianLian Group.” The cyber criminals target corporate executives by sending extortion letters threatening to release victims’ sensitiv...

6.9AI score
Exploits0References2
HackRead
HackRead
added 2025/03/04 7:39 p.m.6 views

Scammers Mailing Ransom Letters While Posing as BianLian Ransomware

Scammers are impersonating BianLian ransomware, and mailing fake ransom letters to businesses. Learn the red flags and how…...

7.3AI score
Exploits0
CISA
CISA
added 2024/11/20 12:0 p.m.5 views

CISA and Partners Release Update to BianLian Ransomware Cybersecurity Advisory

Today, CISA, the Federal Bureau of Investigation FBI, and the Australian Signals Directorate’s Australian Cyber Security Centre ASD’s ACSC released updates to StopRansomware: BianLian Ransomware Group on observed tactics, techniques, and procedures TTPs and indicators of compromise attributed to...

7.2AI score
Exploits0References3
The Hacker News
The Hacker News
added 2024/03/20 11:26 a.m.53 views

TeamCity Flaw Leads to Surge in Ransomware, Cryptomining, and RAT Attacks

Multiple threat actors are exploiting the recently disclosed security flaws in JetBrains TeamCity software to deploy ransomware, cryptocurrency miners, Cobalt Strike beacons, and a Golang-based remote access trojan called Spark RAT. The attacks entail the exploitation of CVE-2024-27198 CVSS score...

9.8CVSS7.9AI score0.99938EPSS
Exploits24
The Hacker News
The Hacker News
added 2024/03/11 9:53 a.m.71 views

BianLian Threat Actors Exploiting JetBrains TeamCity Flaws in Ransomware Attacks

The threat actors behind the BianLian ransomware have been observed exploiting security flaws in JetBrains TeamCity software to conduct their extortion-only attacks. According to a new report from GuidePoint Security, which responded to a recent intrusion, the incident "began with the exploitatio...

10CVSS10AI score0.99984EPSS
Exploits72
CISA
CISA
added 2023/05/16 12:0 p.m.3 views

CISA and Partners Release BianLian Ransomware Cybersecurity Advisory

CISA, the Federal Bureau of Investigation FBI, and the Australian Cyber Security Centre ACSC have released a joint Cybersecurity Advisory CSA with known BianLian ransomware and data extortion group technical details. Microsoft and Sophos contributed to the advisory. To reduce the likelihood and...

7.1AI score
Exploits0References4
The Hacker News
The Hacker News
added 2023/02/28 1:59 p.m.34 views

Bitdefender Releases Free Decryptor for MortalKombat Ransomware Strain

Romanian cybersecurity company Bitdefender has released a free decryptor for a new ransomware strain known as MortalKombat. MortalKombat is a new ransomware strain that emerged in January 2023. It's based on commodity ransomware dubbed Xorist and has been observed in attacks targeting entities in...

1.3AI score
Exploits0
HackRead
HackRead
added 2023/01/18 11:31 p.m.22 views

Avast Releases Free Decryptor for BianLian Ransomware

By Deeba Ahmed Using this decryptor, BianLian victims can retrieve their encrypted data for free and avoid paying the ransom to the attackers. This is a post from HackRead.com Read the original post: Avast Releases Free Decryptor for BianLian Ransomware...

4.5AI score
Exploits0
The Hacker News
The Hacker News
added 2022/09/01 12:55 p.m.27 views

Researchers Detail Emerging Cross-Platform BianLian Ransomware Attacks

.jpg The operators of the emerging cross-platform BianLian ransomware have increased their command-and-control C2 infrastructure this month, a development that alludes to an increase in the group's operational tempo. BianLian, written in the Go programming language, was first discovered in mid-Ju...

2.1AI score
Exploits0
hivepro
hivepro
added 2022/08/24 8:4 a.m.30 views

Multiple industries targeted by uptick of BianLian ransomware

Threat Level Attack Report For a detailed advisory, download the pdf file here Summary Attackers are gravitating to deliver BianLian, a new ransomware strain written in Go that was spotted mid-way through July 2022. Numerous well-known enterprises have been targeted, including those in...

3.1AI score
Exploits0
The Hacker News
The Hacker News
added 2022/06/06 2:34 p.m.31 views

10 Most Prolific Banking Trojans Targeting Hundreds of Financial Apps with Over a Billion Users

10 of the most prolific mobile banking trojans have set their eyes on 639 financial applications that are available on the Google Play Store and have been cumulatively downloaded over 1.01 billion times. Some of the most targeted apps include Walmart-backed PhonePe, Binance, Cash App, Garanti BBV...

0.6AI score
Exploits0
Rows per page
Query Builder