The Bilstein Group has been added to the list of victims by the BianLian ransomware gang. On the dark web, 60GB of private firm information appeared.
The business declined to disclose any other details on the incident. It is unknown if a letter demanding a ransom was an extortion attempt.
The hackers are no longer trying to encrypt the files of their victims. Instead, if the ransom is not paid, they threaten to post the stolen data on the dark web.
The Bilstein Group's systems and IT professionals rapidly learned about this, thus the repercussions were minimal.
Source: https://www.csoonline.com/de/a/deutscher-autoersatzteilespezialist-bilstein-gehackt,3680894
TPRM report: https://scoringcyber.rankiteo.com/company/bilsteingroup
"id": "bil95629723",
"linkid": "bilsteingroup",
"type": "Ransomware",
"date": "04/2023",
"severity": "75",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'name': 'Bilstein Group', 'type': 'Business'}],
'data_breach': {'data_exfiltration': 'Yes',
'type_of_data_compromised': 'Private firm information'},
'description': 'The Bilstein Group has been added to the list of victims by '
'the BianLian ransomware gang. On the dark web, 60GB of '
'private firm information appeared.',
'impact': {'data_compromised': '60GB of private firm information',
'operational_impact': 'Minimal'},
'initial_access_broker': {'data_sold_on_dark_web': 'Yes'},
'motivation': 'Extortion',
'ransomware': {'data_encryption': 'No',
'data_exfiltration': 'Yes',
'ransom_demanded': 'Unknown',
'ransom_paid': 'Unknown',
'ransomware_strain': 'BianLian'},
'threat_actor': 'BianLian Ransomware Gang',
'title': 'Bilstein Group Data Breach by BianLian Ransomware',
'type': 'Data Breach, Ransomware'}