The BianLian ransomware group has allegedly launched a series of cyberattacks against three prominent US companies, compromising substantial volumes of sensitive data. The victims of the BianLian ransomware attack—Island Transportation Corp., Legend Properties Inc., and Transit Mutual Insurance Corporation of Wisconsin—have had details about their breaches posted on a dark web forum by the ransomware group. This escalation highlights the growing threat posed by ransomware attacks to critical sectors across the United States

Alleged Victims of BianLian Ransomware Attack

The first victim listed by the BianLian ransomware group is Island Transportation Corp., one of the largest bulk carriers in the United States specializing in servicing the petroleum industry. Founded in 1952, Island Transportation Corp. has built a long-standing reputation for reliability and efficiency in transporting petroleum products across the country. The BianLian ransomware attack reportedly resulted in the unauthorized access of 300 GB of organizational data. The compromised data includes vital business information, accounting records, project files, data from network users' folders, file server data, and personal data. The full extent of the alleged ransomware attack is still unknown. Another significant target of the BianLian ransomware attack is Legend Properties Inc., a well-established full-service commercial real estate and brokerage firm. Founded in 1990, Legend Properties serves clients across eastern and central Pennsylvania, New Jersey, and Delaware. The BianLian ransomware attack on Legend Properties Inc. allegedly led to the unauthorized access of 400 GB of sensitive data. The stolen data encompasses critical business information, accounting data, project details, data from network users' folders, file server data, and personal information. Transit Mutual Insurance Corporation of Wisconsin, a key provider of insurance services, is the third victim identified by the BianLian ransomware group. The BianLian ransomware attack on the corporation has reportedly resulted in the unauthorized access of 400 GB of organizational data. The compromised data includes business information, accounting records, project files, data from network users' folders, file server data, and personal data. [caption id="attachment_80426" align="aligncenter" width="1024"] Source: X[/caption]

Verification and Company Responses

To verify the claims made by the BianLian ransomware group, The Cyber Express Team attempted to access the official websites of the targeted companies. While Island Transportation Corp.'s website was found to be fully functional, the websites of Legend Properties Inc. and Transit Mutual Insurance Corporation of Wisconsin were inaccessible, displaying a blocking message. [caption id="attachment_80429" align="aligncenter" width="1024"] Source: Screenshot of Official Website of Legend Properties Inc.[/caption] The Cyber Express Team has also reached out to the officials of the targeted companies for comments. However, no contact information was accessible at the time of writing. Efforts are ongoing to get in touch with the representatives of these companies, and any updates will be included in future reports. What if BianLian Ransomware Claim is Proven True? The BianLian ransomware attacks on these three companies have significant implications if the claims of unauthorized access and potential exposure of vast amounts of data are proven true. The breached data could be used for various malicious purposes, including identity theft, financial fraud, and further cyberattacks. Moreover, the public disclosure of such breaches can severely damage the reputation of the affected companies and erode trust among clients and partners. The BianLian ransomware group alleged attacks serve as a reminder of the persistent and evolving threat posed by cybercriminals. As businesses continue to rely on digital infrastructure, the need for comprehensive cybersecurity strategies has never been more critical. The Cyber Express Team will continue to monitor the situation and provide updates as more information becomes available. Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.