Security News > 2020 > April > Hackers Leak Biopharmaceutical Firm’s Data Stolen in Ransomware Attack
The Clop ransomware group attacked biopharmaceutical company ExecuPharm and reportedly leaked some of the company's compromised data on underground forums.
According to a recent data breach notice, various ExecuPharm servers were hit in a ransomware attack on March 13, which compromised "Select corporate and personnel information." The attack was initiated through phishing emails that were sent to ExecuPharm employees.
This tactic, called "Double extortion," occurs when ransomware groups threaten to leak compromised data or use it in future spam attacks, if ransom demands aren't met.
"Unfortunately for ExecuPharm, the attackers have started releasing personal data on employees which includes some very sensitive data that could be used to steal identities or cause financial fraud," Joseph Carson, chief security scientist and Advisory CISO at Thycotic, told Threatpost.
In a more recent double extortion attack, the DoppelPaymer ransomware operators claimed to have hit a Los Angeles county with a ransomware attack - and were leaking the city's data online, according to a recent report.
News URL
https://threatpost.com/hackers-leak-biopharmaceutical-firms-data-stolen-in-ransomware-attack/155237/
Related news
- Underground ransomware claims attack on Casio, leaks stolen data (source)
- North Korean govt hackers linked to Play ransomware attack (source)
- JPCERT shares Windows Event Log tips to detect ransomware attacks (source)
- Ransomware attack forces UMC Health System to divert some patients (source)
- North Korean Hackers Using New VeilShell Backdoor in Stealthy Cyber Attacks (source)
- Microsoft and DOJ disrupt Russian FSB hackers' attack infrastructure (source)
- Casio confirms customer data stolen in a ransomware attack (source)
- Schools bombarded by nation-state attacks, ransomware gangs, and everyone in between (source)
- BianLian ransomware claims attack on Boston Children's Health Physicians (source)
- Microsoft: Ransomware Attacks Growing More Dangerous, Complex (source)