BianLian Ransomware Group Targets American Computer Estimating Inc.

On December 16, American Computer Estimating Inc. (ACE), a key player in the insurance sector, became the latest victim of a ransomware attack by the notorious BianLian group. ACE, established in 1988, is renowned for its desk review and settlement services for auto and property claims. The company, based in West Chester, Pennsylvania, employs between 51 and 200 people and generates revenue between $10 million and $25 million annually. ACE's commitment to integrity and professionalism has made it a leader in the industry, focusing on fairness and accuracy in damage estimate audits.

Attack Overview

The BianLian ransomware group executed a sophisticated attack on ACE, compromising a wide range of sensitive data. The breach included financial records, human resources data, and confidential information related to vendors, partners, and clients. Additionally, the attack affected mailboxes and email correspondences, as well as critical databases. The incident has raised significant concerns within the insurance sector, given ACE's crucial role in subrogation audits and claims processing.

About the BianLian Ransomware Group

BianLian has emerged as a formidable threat in the cybercrime landscape since mid-2022. Known for targeting critical infrastructure in the United States and Australia, the group employs advanced tactics, including exfiltration-based extortion. Unlike traditional ransomware attacks, BianLian focuses on data theft and threatens to release sensitive information if ransom demands are not met. Their ability to adapt and exploit vulnerabilities makes them a significant threat to organizations handling sensitive data.

Sources

• Ransomware.live Post
• ACE Official Website
• CISA Cybersecurity Advisory
• Juniper Networks: BianLian Ransomware Group Analysis
• InfoSecurity Magazine: BianLian Ransomware Tactics