On April 17, 2020, US-based pharmaceutical firm ExecuPharm revealed a data breach incident. Compromised personal data includes Social Security numbers, driver licenses, national insurance numbers, national ID numbers, beneficiary information, bank account details, passport details, and credit card information.
The ransomware attack was detected on March 13. The attackers infiltrated the network via phishing emails and injected ransomware, which encrypted ExecuPharm and parent company's personnel files.
“ExecuPharm immediately launched an investigation, alerted federal and local law enforcement authorities, retained leading cybersecurity firms to investigate the nature and scope of the incident, and notified all potentially impacted parties,” said ExecuPharm operations chief David Granese. The company did not give in to the ransom demands. After the incident, the internal security team worked with a leading cybersecurity forensic firm to restore the services. To prevent future attacks, ExecuPharm upgraded its security measures by implementing multi-factor authentication (MFA) and endpoint protection tools.
Ransomware attacks can be costly. Invest in a tool like ManageEngine DataSecurity Plus to secure data and mitigate ransomware attacks. Download a free, 30-day trial of DataSecurity Plus today.
Investing in a ransomware detection tool helps you detect and respond to ransomware attacks in real time to minimize the impact on your organization. Here are some best practices DataSecurity Plus can help you implement to handle ransomware attacks.
Subscribe to our digest to get your weekly dose of cyber security updates straight to your inbox.
© 2019 Zoho Corporation Pvt. Ltd. All rights reserved.
You will receive weekly cybersecurity news soon!