Bianlian has admitted to carrying out an attack on the Northern Minerals mining company, which resulted in a portion of the data being leaked on the darknet.
In a statement, the company stated that the data was stolen from its systems at the end of March 2024 and later released on the darknet. The leaked information includes corporate, operational, and financial data, as well as details about current and former employees and shareholders of the company.
Northern Minerals has informed Australian regulatory authorities about the incident, and individuals affected will be notified through personalized notifications. The company has clarified that the security breach has not impacted its mining or business operations.
Bianlian has now included Northern Minerals on her darknet website.
Cybercriminals, who have transitioned from encrypting files to exploiting data for extorting victims, have published the following information:
- Operating information
- Documentation on Australian and international projects
- Data related to scientific research and development
- Financial information
- Personal data of employees
- Information of shareholders and potential investors
- Email archives of the chairman, CEO, and CFO of Northern Minerals
The release of the stolen data in full implies that Northern Minerals has declined to pay a ransom.
In 2024, the Bianlian group continues to be an active player in ransomware attacks, targeting companies within the healthcare, human rights, and technology sectors.