Ransomware criminals are now sending their demands...by snail mail?

News
By
published

Spam has gone full circle

Image of laptop infected with malware
(Image credit: © Unsplash / Michael Geiger)
  • A company's executives received an extortion letter in the mail
  • It claims to have come from ransomware operators BianLian
  • The senders warned about stealing the company's sensitive files

The security world appears to have come full circle, as spam mail has once again gotten physical with scammers sending their victims snail mail.

Cybersecurity outlet GuidePoint recently came across a couple of these letters sent to members of the target organization’s executive team.

The letters are not your typical extinct spam, either - but claim to have been sent by the BianLian ransomware group.

There is no ransomware

“I regret to inform you that we have gained access to [REDACTED] systems and over the past several weeks have exported thousands of data files, including customer order and contact information, employee information with IDs, SSNs, payroll reports, and other sensitive HR documents, company financial documents, legal documents, investor and shareholder information, invoices, and tax documents,” the letter reads.

“Your network is insecure and we were able to gain access and intercept your network traffic, leverage your personal email address, passwords, online accounts and other information to social engineer our way into [REDACTED] systems via your home network with the help of another employee.”

The researchers said that the attacks are as fake as the letters. There is no evidence of any compromise whatsoever, and the letter’s contents bear no resemblance to the BianLian ransomware operation. Even the wording of the message is inconsistent with ransom notes BianLian was seen sending in the past, they said.

In any case, the scammers were demanding $250,000 to $350,000, to be paid in Bitcoin, within ten days. The letter also included a QR code leading to the Bitcoin address, but it’s freshly generated so it’s impossible to determine if it really belongs to BianLian or not.

The return address for the letters is in Boston, USA, and according to The Register, points to a real address for an office building.

Via The Register

You might also like

Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Read more
Shutterstock.com / kanlaya wanon
Microsoft Teams abused in Russian email bombing ransomware campaign
A group of 7 hackers, 6 slightly blurred in the background and one in the foreground, all wearing black with hoods pulled up over their heads. You cannot see their faces. The hacker in the foreground sits with an open laptop in front of them. The background, behind the hackers, is a Chinese flag
China government-linked hackers caught running a seriously dangerous ransomware scam
Ransomware
Lee Enterprises blames cyberattack for encrypting critical systems as US newspaper outages drag on
Shopping scams
New wave of sextortion scams uses personal details and images to intimidate targets while bypassing traditional security measures
Ransomware
Healthcare firms targeted by all-new ransomware strain
Ransomware
Top ransomware gang's internal chat logs leaked online
Latest in Security
Red padlock open on electric circuits network dark red background
AI-powered cyber threats are becoming the biggest worry for businesses everywhere
Woman using iMessage on iPhone
Apple to take legal action against British Government over backdoor request
Red padlock open on electric circuits network dark red background
Aviaton firms hit by devious new polyglot malware
A laptop with a red screen with a white skull on it with the message: "RANSOMWARE. All your files are encrypted."
Major ransomware attack sees Tata Technologies hit - 1.4TB dataset with over 730,000 files allegedly stolen
Image of laptop infected with malware
Ransomware criminals are now sending their demands...by snail mail?
Security
Broadcom releases fixes for multiple VMware security flaws
Latest in News
An Nvidia GeForce RTX 5070
Nvidia confirms that an RTX 5070 Founders Edition is coming... just not on launch day
Microsoft UK CEO Darren Hardman AI Tour London 2025
Microsoft - UK can help drive the global AI future, but only with the proper buy-in
Asus Prime OC RTX 5070 graphics card with three fans, shown at an angle
Asus reveals Nvidia RTX 5070 launch pricing, and while one model is at MSRP – thankfully – the others make me want to give up my search for a next-gen GPU
OpenAI CEO Sam Altman attends the artificial intelligence Revolution Forum. New York, US - 13 Jan 2023
Sam Altman tweets delay to ChatGPT-4.5 launch while also proposing a shocking new payment structure
Red padlock open on electric circuits network dark red background
AI-powered cyber threats are becoming the biggest worry for businesses everywhere
Philips Hue lights being dimmed
Got Philips Hue lights? A free app update delivers these 3 improvements
More about security
Red padlock open on electric circuits network dark red background

AI-powered cyber threats are becoming the biggest worry for businesses everywhere
Red padlock open on electric circuits network dark red background

Aviaton firms hit by devious new polyglot malware
Red padlock open on electric circuits network dark red background

AI-powered cyber threats are becoming the biggest worry for businesses everywhere
See more latest