Russian ransomware group LockBit has taken responsibility for a cyberattack on Granules India, a major Indian pharmaceutical company, and has published portions of the allegedly stolen data. The dark web leak site operated by LockBit listed Granules India as one of its latest victims.

Although Granules India has not yet confirmed the ransomware attack, the company previously disclosed a cybersecurity incident to Indian stock exchanges in May. The affected IT assets were reported to have been isolated, and the company stated that it was investigating the matter and taking appropriate containment and remediation actions. Granules India, founded in 1984 and based in Hyderabad, is one of India’s largest pharmaceutical manufacturers and produces common off-patent drugs.

LockBit has gained notoriety as one of the most deployed ransomware variants worldwide. A joint advisory by the US Cybersecurity and Infrastructure Security Agency (CISA) and its international counterparts identified LockBit as the top ransomware variant in 2022 and 2023.

The group has targeted numerous prominent tech companies and organizations, including Accenture, Foxconn, Advanced, Royal Mail, the California finance department, the Los Angeles housing authority, and Ion Group. According to the joint advisory, LockBit has extorted around $91 million in ransoms through approximately 1,700 attacks on US victims since 2020.

The cyberattack on Granules India highlights the ongoing threat posed by ransomware groups and the need for robust cybersecurity measures in the pharmaceutical industry. As investigations into the incident continue, it is crucial for organizations to enhance their cybersecurity protocols to protect sensitive data and prevent such attacks from disrupting critical operations.

Russian ransomware group LockBit has taken responsibility for a cyberattack on Granules India, a major Indian pharmaceutical company, and has published portions of the allegedly stolen data. The dark web leak site operated by LockBit listed Granules India as one of its latest victims.

Although Granules India has not yet confirmed the ransomware attack, the company previously disclosed a cybersecurity incident to Indian stock exchanges in May. The affected IT assets were reported to have been isolated, and the company stated that it was investigating the matter and taking appropriate containment and remediation actions. Granules India, founded in 1984 and based in Hyderabad, is one of India’s largest pharmaceutical manufacturers and produces common off-patent drugs.

LockBit has gained notoriety as one of the most deployed ransomware variants worldwide. A joint advisory by the US Cybersecurity and Infrastructure Security Agency (CISA) and its international counterparts identified LockBit as the top ransomware variant in 2022 and 2023.

The group has targeted numerous prominent tech companies and organizations, including Accenture, Foxconn, Advanced, Royal Mail, the California finance department, the Los Angeles housing authority, and Ion Group. According to the joint advisory, LockBit has extorted around $91 million in ransoms through approximately 1,700 attacks on US victims since 2020.

The cyberattack on Granules India highlights the ongoing threat posed by ransomware groups and the need for robust cybersecurity measures in the pharmaceutical industry. As investigations into the incident continue, it is crucial for organizations to enhance their cybersecurity protocols to protect sensitive data and prevent such attacks from disrupting critical operations.