The FBI warned that attackers are impersonating Health & Human Services and/or Amazon to mail BadUSB-poisoned USB devices to targets in transportation, insurance & defense. FIN7 aka Carbanak or Navigator Group, the infamous, financially motivated cybercrime gang behind the Carbank backdoor malware is the guilty party. The FBI said that over the past several months, FIN7 has mailed the malicious USB drives to U.S. companies, in hopes that somebody would plug in the drives, infect systems with malware and thus set them up for future ransomware attacks.”]
Source: https://threatpost.com/fin7-mailing-malicious-usb-sticks-ransomware/177541/