Security News > 2020 > April > Hackers Leak Biopharmaceutical Firm’s Data Stolen in Ransomware Attack
The Clop ransomware group attacked biopharmaceutical company ExecuPharm and reportedly leaked some of the company's compromised data on underground forums.
According to a recent data breach notice, various ExecuPharm servers were hit in a ransomware attack on March 13, which compromised "Select corporate and personnel information." The attack was initiated through phishing emails that were sent to ExecuPharm employees.
This tactic, called "Double extortion," occurs when ransomware groups threaten to leak compromised data or use it in future spam attacks, if ransom demands aren't met.
"Unfortunately for ExecuPharm, the attackers have started releasing personal data on employees which includes some very sensitive data that could be used to steal identities or cause financial fraud," Joseph Carson, chief security scientist and Advisory CISO at Thycotic, told Threatpost.
In a more recent double extortion attack, the DoppelPaymer ransomware operators claimed to have hit a Los Angeles county with a ransomware attack - and were leaking the city's data online, according to a recent report.
News URL
https://threatpost.com/hackers-leak-biopharmaceutical-firms-data-stolen-in-ransomware-attack/155237/
Related news
- Underground ransomware claims attack on Casio, leaks stolen data (source)
- North Korean govt hackers linked to Play ransomware attack (source)
- Microsoft: Vanilla Tempest hackers hit healthcare with INC ransomware (source)
- Dell investigates data breach claims after hacker leaks employee info (source)
- Hackers deploy AI-written malware in targeted attacks (source)
- AutoCanada says ransomware attack "may" impact employee data (source)
- N. Korean Hackers Deploy New KLogEXE and FPSpy Malware in Targeted Attacks (source)
- Microsoft Identifies Storm-0501 as Major Threat in Hybrid Cloud Ransomware Attacks (source)
- Embargo ransomware escalates attacks to cloud environments (source)
- Iranian hackers charged for ‘hack-and-leak’ plot to influence election (source)