Security Market Segment LS
Thursday, 16 July 2020 09:17

Cyber crims use Windows Nefilim ransomware to hit Indian firm Indoco

By
Cyber crims use Windows Nefilim ransomware to hit Indian firm Indoco Courtesy Indoco

Cyber criminals appear to have hit the website of Indian pharmaceutical product manufacturer Indoco Remedies using the Windows Nefilim ransomware, and have released preliminary details about the raid.

Describing the post (screenshot below) put up this morning as a teaser for the leak on Indoco, the gang said the company was mainly involved in the manufacture and marketing of formulations and active pharmaceutical ingredients.

On its website, Indoco describes itself as a "fully integrated, research-oriented pharma company engaged in the manufacturing and marketing of formulations (Finished Dosage Forms) and active pharmaceutical ingredients (APIs)".

"We have seven decades of presence in the Indian Pharma market and a strong foothold in the international market across 55 countries. Indoco, a US$145 million company, employs about 6000 personnel, including over 300 skilled scientists," it adds. Indoco has a a state-of-the-art R&D centre at Rabale in Navi Mumbai and a clinical research organisation in Hyderabad.

The company has business in India and abroad. It offers products for various therapeutic categories, such as stomatologicals, respiratory, anti-infectives, gastrointestinal, pain/analgesics, gynaecological, vitamins/minerals/nutrients, ophthal/otologicals and dermatology.

indoco ransomware

Screenshot of the Nefilim announcement. Supplied

Its domestic marketing divisions include INDOCO, SPADE, Warren NxGen, Warren Ace, Spera, Indoco Focus, Indoco CND, Warren Excel, Warren Vision, Eterna, Institution and Indoco IMPULSE. The company’s products include Sensodent-K, Homide, Carmicide, Renolen, Rexidin M, Febrex Plus, Zincoren, Otorex, Cloben G, Methycal, Tuspel, Scabex, Hemsyl, Karvol Plus, Durashape, Lignox, Sensoform Toothpaste, Kidodent Toothpaste, Rosuchek D, Otichek and Irimist.

The Nefilim ransomware was in the news when a gang used it to attack Australian logistics and transport provider Toll Holdings in May.

The same ransomware was used to attack appliance maker Fisher & Paykel last month.

Nefilim, is one of the growing number of ransomware packages that encrypts data on-site while PowwerShell scripts are used to exfiltrate victims' files. This, in effect, means that any victim is hit by both a data breach and also loses access to his/her files.

iTWire has contacted Indoco for comment.


Subscribe to Newsletter here

NEW OFFER - ITWIRE LAUNCHES PROMOTIONAL NEWS & CONTENT

Recently iTWire remodelled and relaunched how we approach "Sponsored Content" and this is now referred to as "Promotional News and Content”.

This repositioning of our promotional stories has come about due to customer focus groups and their feedback from PR firms, bloggers and advertising firms.

Your Promotional story will be prominently displayed on the Home Page.

We will also provide you with a second post that will be displayed on every page on the right hand side for at least 6 weeks and also it will appear for 4 weeks in the newsletter every day that goes to 75,000 readers twice daily.

POST YOUR NEWS ON ITWIRE NOW!

PROMOTE YOUR WEBINAR ON ITWIRE

It's all about Webinars.

These days our customers Advertising & Marketing campaigns are mainly focussed on Webinars.

If you wish to promote a Webinar we recommend at least a 2 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://www.itwire.com/itwire-update.html and Promotional News & Editorial.

For covid-19 assistance we have extended terms, a Webinar Business Booster Pack and other supportive programs.

We look forward to discussing your campaign goals with you. Please click the button below.

MORE INFO HERE!

BACK TO HOME PAGE
Sam Varghese

website statistics

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.

BACK TO HOME PAGE

ZOOM WEBINARS & ONLINE EVENTS

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Interviews

Guest Research & Case Studies

Channel News

Comments