Monday, 09 November 2020 08:57

Indian COVID vaccine research firms hit by Windows ransomware Featured

0
Shares
By
Image by fernando zhiminaicela from Pixabay

Two companies involved in research connected with vaccines for the coronavirus and both based in India have been hit by ransomware.

The Hyderabad-based Biological E, which received a grant of US$4 million (A$5.49 million) from the Gates Foundation to develop a vaccine, was hit by Ragnar Locker, while Dr Reddy's Laboratories, which has its headquarters in Bangalore and is conducting clinical trials on the Russian-developer Sputnik V vaccine, was hit by the Egregor ransomware.

Both Ragnar Locker and Egregor run only on Microsoft's Windows operating system.

The attackers have released five files from Biological E containing data that was pilfered from the company during the incident, ranging in size from 9.84GB to 29.1GB.

They have also released a number of screenshots of the data that was stolen, including financial data.

bioe grant

A screenshot from the Gates Foundation website showing details of grant to Biological E.

The criminals said the attack took place on 28 October and that there had been visits to their website by Biological E a number of times, but no negotiations had been initiated.

In the case of the other attack, Reuters reported that the company said on 22 October that it isolated all data centre services as a preventive act.

It said an Indian TV channel, ET Now, had been the first to report the incident.

Dr Reddy's is the second biggest drugmaker in India by market value. It has plants in the US, UK, Brazil, Russia and India and all were affected by the ransomware attack.

Dr Reddy's is conducting the clinical trial along with the Russian Direct Investment Fund, Moscow's sovereign wealth fund.

The project began in September and, as part of the deal, RDIF will provide 100 million doses of the vaccine to Dr Reddy's once it has been approved for use in India.

iTWire has contacted both Biological E and Dr Reddy's for comment.

Asked for his take on the incidents, ransomware researcher Brett Callow, who works for the New Zealand-headquartered security firm Emsisoft, said: "Egregor's rate of 'customer acquisition' is quite unprecedented." He was referring to the number of new victims that the ransomware outfit has added to its site on the dark web in recent days.

Callow added: "It seems likely that Maze and/or their affiliates have switched to Egregor and are now encrypting previously compromised networks." The operators Maze, a prolific ransomware setup, announced earlier this month that it would be shutting down its operations.


Subscribe to ITWIRE UPDATE Newsletter here

Now’s the Time for 400G Migration

The optical fibre community is anxiously awaiting the benefits that 400G capacity per wavelength will bring to existing and future fibre optic networks.

Nearly every business wants to leverage the latest in digital offerings to remain competitive in their respective markets and to provide support for fast and ever-increasing demands for data capacity. 400G is the answer.

Initial challenges are associated with supporting such project and upgrades to fulfil the promise of higher-capacity transport.

The foundation of optical networking infrastructure includes coherent optical transceivers and digital signal processing (DSP), mux/demux, ROADM, and optical amplifiers, all of which must be able to support 400G capacity.

With today’s proprietary power-hungry and high cost transceivers and DSP, how is migration to 400G networks going to be a viable option?

PacketLight's next-generation standardised solutions may be the answer. Click below to read the full article.

CLICK HERE!

WEBINAR PROMOTION ON ITWIRE: It's all about webinars

These days our customers Advertising & Marketing campaigns are mainly focussed on webinars.

If you wish to promote a Webinar we recommend at least a 2 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://www.itwire.com/itwire-update.html and Promotional News & Editorial.

This coupled with the new capabilities 5G brings opens up huge opportunities for both network operators and enterprise organisations.

We have a Webinar Business Booster Pack and other supportive programs.

We look forward to discussing your campaign goals with you.

MORE INFO HERE!

BACK TO HOME PAGE
Published in Security
Tagged under
Sam Varghese

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.

Latest from Sam Varghese

Related items

More in this category: « Campari, Capcom hit by Windows Ragnar Locker ransomware
Share News tips for the iTWire Journalists? Your tip will be anonymous
back to top