In this episode of The Cyber Resilience Brief, we expose the tactics of one of today’s most agile and financially motivated threat groups: BianLian. Originally known for double extortion ransomware, BianLian rapidly pivoted to pure data theft and extortion—making them harder to stop and faster to profit.

SafeBreach offensive security engineer Adrian Culley joins host Tova Dvorin to unpack:

• How BianLian evolved from ransomware to exfiltration-based extortion.

• The TTPs behind their attacks, from compromised RDP credentials to stealthy “living off the land” techniques.

• Why traditional defenses struggle to keep pace with their adaptive methods.

• How organizations can counter them with Breach and Attack Simulation (BAS), Adversarial Exposure Validation (AEV), and Continuous Automated Red Teaming (CART) to test resilience across the full attack chain.

If you want to understand how adversaries like BianLian stay ahead—and how you can flip the advantage back to defenders—this episode is for you.

💡 Special Note: In honor of Cybersecurity Awareness Month, we’re releasing two episodes each week throughout October 2025—so be sure to subscribe and catch them all!