In the ongoing story of the Sun Pharma cyber attack, the alleged hacker group has started leaking stolen data from the company.
According to the latest reports, the ALPHV ransomware group claimed the attack and has begun leaking the company’s internal data, alleged to be around 17 terabytes.
The Cyber Express team has contacted the company for the current status of the Sun Pharma cyber attack story. We are awaiting an official response from the company.
However, earlier last month, the company had acknowledged the Sun Pharma cyber attack and, in response to a TCE query, had stated that it was swiftly implementing the necessary actions to curb and address the consequences of the IT security breach.
According to the company’s stock exchange disclosure, the Sun Pharma cyber attack resulted in a large amount of data being stolen by the threat actor.
The data consisted of highly sensitive information about customers, vendors, and complete records of over 1,500 employees based in the United States.
“The Company would incur expenses concerning the incident and the remediation. The company is currently unable to determine other potential adverse impacts of the incident, including but not limited to additional information security incidents, increased costs to maintain insurance coverage, the diversion of management and employee time, or the possibility of litigation”, reads the stock exchange disclosure dated March 26, 2023.
The Sun Pharma cyber attack turmoil
The Sun Pharma cyber attack has many layers.
As the ALPHV ransomware group describes — Sun Pharma attempted to downplay the severity of the cyber attack, portraying it as a minor incident to the media. Furthermore, the hacker group accused the company’s IT department of setting up honeypots to trap them within the network.
To address and minimize the consequences of the data breach, Sun Pharma is employing the expertise of global cybersecurity professionals and implementing enhanced security measures.
The company is fully aware that a ransomware group has claimed responsibility for the breach, and it has provided some insights into the nature of the data compromised:
“At present, the company believes that the incident has resulted in a breach of certain file systems and the theft of specific company and personal data,” read an official statement sent by Sun Pharma to The Cyber Express in response to Sun Pharma cyber attack.
“As part of our containment efforts, we have proactively isolated our network and initiated the recovery process,” the statement further said.
Sun Pharma cyber attack: Company reports drop in revenue
As a direct result of these measures, Sun Pharma’s business operations have been significantly impacted, and a revenue reduction is anticipated across certain business segments.
The incident will also incur expenses related to the incident response and remediation efforts, as per the reports.
It is important to note that the full extent of the incident’s adverse effects is not yet determined.
Sun Pharma cannot ascertain potential consequences such as additional information security incidents, increased costs for maintaining insurance coverage, diversion of management and employee resources, or even the possibility of litigation.
The company is actively restoring normalcy to its operations while reinforcing its cybersecurity defenses to prevent future incidents.