Scammers are targeting U.S. corporate executives with fraudulent ransom demands, falsely claiming to be from the BianLian ransomware group. Instead of digital threats, these fraudsters are sending physical letters through traditional mail, pressuring recipients into paying large sums of money to avoid a fabricated data breach.
The scam involves sending letters marked as “Time Sensitive Read Immediately” to executives, claiming that their company’s networks have been hacked and sensitive data stolen. The letters demand a ransom payment ranging from $250,000 to $500,000 in Bitcoin, with a QR code and wallet address included for payment. Victims are given just 10 days to comply.
However, the scammers fail to provide any actual evidence of a data breach. The letters use generic language and lack company-specific details, making it clear that these threats are fraudulent.
What Executives Should Do:
- Verify Before Taking Action – Consult your IT and security teams to confirm whether a breach has actually occurred.
- Do Not Pay the Ransom – Making a payment only encourages further scams and does not guarantee any resolution.
- Report the Incident – Notify law enforcement and relevant cybersecurity authorities.
- Strengthen Security Protocols – Stay proactive with system updates, employee security training, and regular cybersecurity audits.
This latest scam highlights how cybercriminals are adapting their tactics, leveraging well-known ransomware names to manipulate victims. Businesses should remain alert and follow proper security measures to avoid falling victim to such schemes.
