BianLian Ransomware Group

Threat Actor

BianLian is a ransomware group that was first observed in 2022. According to a report from cybersecurity firm Redacted, the gang has evolved its tactics. The hackers now no longer aim to encrypt their victims' files. Instead, they threaten to publish the stolen data on the dark web if the ransom is not paid.

BianLian informs about stolen data on its blackmail site after just 48 hours. The victims then have around ten days to pay the ransom. According to the research report, as of March 13, 2023, the ransomware gang has listed a total of 118 victim organizations on its extortion portal, with the vast majority (71 percent) being US-based companies.

Malware Used by this Threat Actor

No malware identified for this threat actor.