Cipla, an Indian pharmaceutical company, has reportedly been attacked by the Akira ransomware group. The hackers claim to have stolen 70GB of sensitive data. This breach has raised concerns about data security and patient privacy in the pharmaceutical industry.
The Akira ransomware group claims to have stolen various sensitive data from Cipla, including:
- Personal medical records with prescriptions
- Internal financial information
- Customer contacts (phone numbers and emails)
- Employee contact details
The group reported the attack on its dark web portal, claiming to have taken 70GB of data from Cipla.
The Akira ransomware group has been especially active lately. Last month, they leaked data from 35 organizations in one day, their largest dump so far. This massive leak was seen as a way to show off their growing operations after a period of inactivity.
Since emerging in Q1 2023, Akira has become one of the most widespread ransomware groups, impacting over 350 organizations.
The Akira group is known for using advanced tactics like ChaCha2008 encryption and distributing malware through methods such as infected email attachments and exploiting VPN vulnerabilities.
The Cipla breach follows Akira’s usual approach, where they use double extortion—encrypting files and exfiltrating data to pressure victims into paying ransoms. This method threatens both data loss and the public exposure of sensitive information.
Given Cipla’s global presence and importance in the pharmaceutical supply chain, it is a high-value target for cybercriminals. The exposure of personal medical and financial data could have significant consequences for the company, its employees, and customers.
Cipla has not confirmed the breach or commented on the claims. If true, it highlights the need for stronger cybersecurity in the healthcare and pharmaceutical sectors.
Experts recommend implementing robust ransomware prevention strategies, including regular audits, employee training, and advanced endpoint protection.
As ransomware attacks grow more sophisticated, proactive cybersecurity is crucial.
Follow Us on: Twitter, Instagram, Facebook to get the latest security news!
Leave A Comment