FBI warns about the new extortion scam aimed at confidential data
Ransomware is a great threat to all industries. In recent years, computer pirates have increasingly addressed companies with ransomware, blocking their data unless a rescue is paid. In some cases, they also threaten to filter the stolen data online if the company refuses to meet, as seen in Unitedhealth Breach, where, according to reports, computer pirates demanded $ 22 million.
However, ransomware attacks are not limited to companies.
According to the latest FBI warning, they also attack employees, particularly corporate executives.
The agency warns that cybercriminals are sending extortion letters, threatening to release the confidential information of the victims unless a rescue is paid.
Stay protected and informed! Get security alerts and expert technology advice: register at the ‘The Cyberguy Report’ of Kurt now
Hacker at work (Kurt “Cyberguy” Knutsson)
What you need to know
He FBI is warning Companies, particularly those in the health sector, on a scam that involves physical rescue letters sent through the United States postal service. These letters, which falsely claim to be from the Ransomware group, Bianlian, require Bitcoin payments ranging from $ 150,000 to $ 500,000 in exchange for not filtering allegedly stolen data.
Marked with “Time Sensitive Read immediately”, the letters claim that the attackers obtained access through social engineering and exfiltrated confidential files. However, evidence is not provided, and investigations have not found signs of real ransomware intrusions in affected organizations. The letters seem to be planted, with only minor variations, and include a QR code linked to a bitcoin wallet. Some also have a compromised password, which probably makes the threat look more credible.
What is artificial intelligence (AI)?
Sent from Boston with US flag stamps, these letters differ significantly in the tone and writing of known Bianlian communications. The authorities believe that this is a scam -based scam designed to deceive organizations to pay a rescue for a violation that never happened.
Man moving on his cell phone (Kurt “Cyberguy” Knutsson)
Data elimination does what VPNs don’t do it: here it is why it is likely to need both
The health industry needs to work in cybersecurity
Ransomware is reaching medical care Hardly than ever. Now it is the third most directed industry after finance and manufacturing, with attacks that increase more than 32% from 2023 to 2024. These attacks not only put the data at risk. They also interrupt hospitals, decrease care and create chaos for doctors and patients.
He Ascension Cyberattack In May 2024 it is a clear example. Computer pirates blocked the medical staff of critical systems, close the telephone lines and blocked tools necessary for tests, procedures and medications. At first, the violation was reported with an estimated 500 people affected, but in December, that number had increased to almost 5.6 million.
Unitedhealth Change Medical Care Unit experienced a massive data violation In February 2024, that further highlighted the vulnerability of the sector. Initially he informed having affected around 100 million people, the number later grew to 190 million, which makes it the greatest violation of medical data in the history of the United States.
This violation affected almost half of the country’s population. United United attributed the attack on Alphv/Blackcat, a Russian -speaking ransomware group that was then attributed to the responsibility of the attack before being dismantled by the police.
Get the News business on the fly by clicking here
Woman who uses multiple devices (Kurt “Cyberguy” Knutsson)
Huge violation of medical care data exposes more than 1 million confidential information
7 ways to avoid ransomware attacks (and false ransomware scams)
1. Install strong antivirus software and regularly update the software: The first line of defense against ransomware is to ensure that its systems are equipped with the latest security tools. Keep all software and devices up to date to avoid vulnerabilities that hackers can exploit. Install firewalls, Strong antivirus software and intruder detection systems to block malicious activities before they can cause damage. Regularly patch operating systems and applications to stay ahead of cybercriminals. The best way to safeguard the malicious links that install malware, which potentially access their private information, is to have strong antivirus software installed on all its devices. This protection can also alert it to the PHISHING Electronic Correos and Ransomware scams, maintaining their personal information and their safe digital assets. Obtain my elections for the best 2025 antivirus protection winners for your Windows, Mac, Android and iOS devices.
2. Implement safe password policies and use a password administrator: Make sure all passwords are unique, at least 15 long characters and include a combination of letters, numbers and symbols in lowercase and lowercase. In addition, consider using a password administrator to generate and store complex passwords safely. This reduces the risk of reuse of password and weak passwords, which are common entry points for ransomware attacks. Get more details about me The best password administrators reviewed by experts of 2025 here.
3. Educate and train employees on cybersecurity awareness: Many ransomware attacks begin with electronic phishing or social engineering tactics. As seen in the scam aimed at executives, attackers often use tactics based on fear to manipulate victims to act quickly. Train their employees, particularly high -level executives, to recognize suspicious emails, fraudulent requests and phishing attempts.
4. Backup data and maintain a safe recovery plan: Data backups are critical protection against ransomware. Make a regular backup of critical data to ensure out -of -line locations that ransomware cannot access. Trying your recovery plans frequently ensures that if an attack occurs, you can quickly recover with a minimum impact on operations. In addition, consider using a cloud service with encryption to ensure that even if an attack occurs, the backup is still safe.
5. Use the authentication of two factors (2FA): Two factors authentication It is an essential security measure that adds an additional layer of protection to confidential systems and data. With 2FA, even if the attackers manage to obtain login credentials, they will not be able to access critical systems without the second authentication factor, be it a code sent to a biometric telephone or verification.
6. Verify threats before taking measures: If you receive a rescue demand (digital or physical), investigate your legitimacy. Scams often lack data violation tests or network commitment. Consult cybersecurity experts or the application of the law before responding.
7. Suspicious activity report: Notify the application of the law or organizations such as the FBI Internet Crimes Complaints Center if it finds scams or ransomware threats. Reports help authorities track and mitigate these activities.
The FBI warns about a new scam of ‘dangerous’ smishing that goes to his phone
Kurt key takeway
Medical care is seriously delayed when it comes to cybersecurity. It is crazy that many health institutions do not have a CISO or a dedicated security team. On the other hand, the IT department, which is not always trained in cybersecurity, is stuck trying to handle everything. With as many confidential data at risk, it is shocking that so many medical care organizations still treat cybersecurity as a late occurrence.
Cyber attacks will only get worse, less than the industry increases its game, it is only a matter of time before more hospitals, clinics and health systems are hit. It is time to take security seriously.
Click here to get the News application
Do you think these companies are doing enough to protect your data, and the Government is doing enough to catch cyber attacks? Get us knowing in Cyberguy.com/contact.
To obtain more technological tips and safety alerts, subscribe to my free Cyberguy Report newsletter when you head Cyberguy.com/newsletter.
Ask Kurt or tell us what stories you would like us to cover.
Follow Kurt in his social channels:
- YouTube
Answers to the most informed Cyberguys questions:
- What is the best way to protect your MAC devices, Windows, iPhone and Android to be pirate?
- What is the best way to stay private, safe and anonymous while navigating the web?
- How can I get rid of robocalls with data elimination applications and services?
- How do I eliminate my private internet data?
New Kurt:
- Try the new Cyberguy games (crosswords, words searches, trivia and more!)
- Cyberguy exclusive coupons and offers
Copyright 2025 Cyberguy.com. All rights reserved.
Kurt “Cyberguy” Knutsson is a award -winning technological journalist who has a deep love for technology, equipment and devices that improve life with their contributions for News & News Business Startzing Mornings in “News & Friends”. Do you have a technological question? Get the free Kurt’s free newsletter, share your voice, an idea of the story or comment on Cyberguy.com.