We want to alert you to a new scam targeting business owners like you. Fraudsters are sending physical ransom letters in the mail, claiming to be from the ransomware group BianLian. These letters falsely state that your company’s data has been hacked and demand a Bitcoin ransom of $250,000 to $500,000, with a 10-day payment deadline.
Some letters even reference industry-specific data—such as patient information for healthcare organizations—to appear more convincing. The envelopes are marked “TIME SENSITIVE” and have a return address in Boston, MA.
Here’s what you need to know:
✅ The FBI has confirmed these threats are fake.
✅ There is no evidence of actual breaches linked to these letters.
✅ These are scare tactics designed to trick businesses into paying.
What to do if you receive one of these letters:
• Do not respond or attempt to contact the sender.
• Do not send any payments.
• Report it to the FBI’s Internet Crime Complaint Center (IC3.gov) and your local authorities.
•Notify us immediately so we can review your cybersecurity posture and provide guidance.
Scammers are always evolving their tactics, but we’re here to help you stay ahead of them. If you have any concerns or want to ensure your security measures are up to date, please reach out to us.