BianLian attacks Earlens Corporation

The Earlens Corporation, a US based medical equipment manufacturer, has reportedly been hit with a ransomware attack. The BianLian ransomware group has claimed responsibility for the attack, allegedly stealing 1.8TB of company information, including: HR data, Financial data, Accounting data, Personal data, and Shareholder data.BianLian uploaded the Earlens Corporation to its dark web blog page on May 30, but the Earlens Corporation is yet to confirm the attack. Founded in 2005, Earlens designs and manufactures high-end hearing aids and employs around 200 people. Headquartered in Menlo Park, California, the organization has received significant press attention in recent years, with Forbes and the Time Magazine Top 100 Inventions featuring their flagship products. BianLian ransomware gang, which first appeared in June 2022, is a ransomware developer, deployer, and data extortion cybercriminal group. It primarily targets US critical infrastructure but has also attacked professional services, property development, and Australian critical infrastructure sectors. The ransomware group leverages Remote Desktop Protocol (RDP) credentials to gain access to victims’ systems, using open-source tools and command-line scripting for discovery and credential harvesting, and finally exfiltrating victim data via File Transfer Protocol (FTP), Rclone, or Mega. BianLian then hold organizations to ransom, threating to release the stolen data if the victim fails to pay up.