Aarti Drugs

Aarti Drugs is a pharmaceutical company headquartered in India. The company operates within the pharmaceutical sector, which is known for handling sensitive data including research information. In September 2022, Aarti Drugs was targeted by the BianLian ransomware group. This attack resulted in the theft of approximately 6 GB of data. The stolen data encompassed employee records, financial documents, tax filings, and research information. The attackers demanded a ransom of 20 Bitcoin, valued at roughly ₹15.8 lakh, for decryption keys. Negotiations between the company and the attackers failed. Consequently, partial data was publicly released on the dark web.

The BianLian ransomware employs the Go programming language for efficient payload deployment and evasion techniques. The group primarily exploits vulnerabilities in the Remote Desktop Protocol to gain access. This incident reflects broader cybersecurity challenges faced by the pharmaceutical industry. Critical vulnerabilities often remain unpatched despite existing security audits. The attack on Aarti Drugs underscores the sector's susceptibility to such threats. The leakage of sensitive research information poses significant risks. Financial and employee data exposure can lead to further complications. The event highlights the pervasive nature of ransomware threats. The specific long-term operational impact on Aarti Drugs is not detailed in available reports. The company's subsequent cybersecurity enhancements are also not specified.