A Hacker Attacks a Pune Biopharma Company using Ransomware, Demanding a Ransom of ₹68 Lakhs
A Hacker Attacks a Pune Biopharma Company using Ransomware, Demanding a Ransom of ₹68 Lakhs
After a ransomware attack on a biopharmaceutical company in Hinjewadi, a cybercriminal demanded $80,000 (about ₹68 lakh) to unlock the company’s encrypted and stolen data. The issue is currently being looked into by the Pimpri Chinchwad police’s cyber division in accordance with certain provisions of the Information Technology Act and the Bharatiya Nyaya Sanhita (BNS).
A senior employee filed a complaint on Monday after the company received a threatening email on April 27. According to Police Sub-Inspector Sagar Poman, the attacker gained access to all 15 of the company’s servers by deceiving one employee into clicking on a malicious email attachment. The hacker subsequently downloaded critical files, encrypted them, and password-protected them, preventing the business from accessing its own systems.
The hacker warned that any attempt to decode the data on its own would result in its destruction within 24 hours, and he gave the corporation three days to pay the ransom. Additionally, if the payment was not received on time, the attacker threatened to sell the stolen data on the dark web.
For the past two days, the attack has totally stopped business operations. In order to pinpoint the precise location of the breach and determine the full scope of the impact, police have started an investigation and will shortly start interviewing some 300 workers.
Digital Task Force director Rohan Nyayadish verified the attack’s nature and classified it as a ransomware breach caused by out-of-date firewalls and cybersecurity flaws. He emphasized the value of routine security audits, particularly for businesses handling proprietary data or sensitive research.
According to Nyayadish, “Organizations must invest in cyber insurance and endpoint protection and adhere to cybersecurity standards issued by the Central Government.” He went on to say that hackers usually use cryptocurrency to demand ransom, and he advised businesses to report incidents to law police rather than make payments.
Nyayadish claims that a lot of thieves use phishing techniques and weak server setups to obtain first access. Once entered, they start software that encrypts or steals important information. He underlined that timely reporting and professional assistance can occasionally aid in data recovery without having to pay a ransom.
Ransomware is digital extortion, according to advocate and cybercrime expert Gaurav Jachak, who also emphasized the importance of early reporting and the preservation of digital evidence for prosecution and recovery. Crimes involving ransomware are punishable under both the IT Act and the BNS. Negotiating with attackers should be avoided by victims since it just gives criminal networks more confidence, he said.
In order to identify suspicious communications, Jachak advised businesses to implement mirror-image backups across several secure systems and train staff members in cybersecurity.
He emphasized the necessity of a more extensive public awareness campaign, particularly for medium-sized and small businesses that might not have specialized cybersecurity teams. “Adherence to CERT-In advisories, incident response readiness, and good digital hygiene can greatly lower the risk,” he continued.
In the meantime, Pimpri Chinchwad police’s cyber cell is still looking through server logs, email trails, and technical data in an effort to identify the attack’s source in collaboration with national cybercrime organizations. Since the biotech and pharmaceutical industries in India handle important intellectual property and international customer data, the case is being keenly monitored since it raises questions about their cyber readiness.
About The Author:
Yogesh Naager is a content marketer who specializes in the cybersecurity and B2B space. Besides writing for the News4Hackers blogs, he also writes for brands including Craw Security, Bytecode Security, and NASSCOM.
READ MORE HERE
Millions of Hacks Can’t Win One: India Thrashed Cyber Attacks After Pahalgam Attack
Plugin Attack: Cybercriminals Use a Phishing Security Tool to Take Over WordPress Websites
About Author
English