Today, CISA, the Federal Bureau of Investigation (FBI), and the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) released updates to #StopRansomware: BianLian Ransomware Group on observed tactics, techniques, and procedures (TTPs) and indicators of compromise attributed to data extortion group, BianLian.
The advisory, originally published May 2023, has been updated with additional TTPs obtained through FBI and ASD’s ACSC investigations and industry threat intelligence as of June 2024.
BianLian is likely based in Russia, with Russia-based affiliates, and has affected organizations in multiple U.S. critical infrastructure sectors since June 2022. They have also targeted Australian critical infrastructure sectors, professional services, and property development.
CISA and partners encourage infrastructure organizations and small- to medium-sized organizations implement mitigations in this advisory to reduce the likelihood and impact of BianLian and other ransomware incidents. These mitigations align with the Cross-Sector Cybersecurity Performance Goals developed by CISA and the National Institute of Standards and Technology.
This advisory is part of CISA’s ongoing #StopRansomware effort.
Today, CISA released Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a U.S.…
CISA released seven Industrial Control Systems (ICS) advisories on November 21, 2024. These advisories provide…
CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of…
Today, the Cybersecurity and Infrastructure Security Agency (CISA) and the U.S. Department of Agriculture (USDA)…
CISA released one Industrial Control Systems (ICS) advisory on November 19, 2024. These advisories provide…
CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of…
This website uses cookies.