Supernus Pharmaceuticals, a biopharmaceutical business, reported last week that it had been the victim of a ransomware strike that resulted in a considerable amount of data being exfiltrated from its network. According to the Rockville, Maryland-based corporation, the ransomware gang acquired data on select computers, deployed software to limit access to files, and then threatened to disclose the exfiltrated files.
Despite this, Supernus Pharmaceuticals claims that the event had no substantial impact on its company because its operations were not severely impacted. The Company has no intention to pay any ransom money to any criminal ransomware organization at this time. Supernus Pharmaceuticals also says it was able to retrieve the affected files and that it has taken actions to strengthen the security of its network and files. However, the company believes that the criminals would most likely try to profit from the information gathered illegally.
The Hive ransomware gang claimed credit for the assault, alleging that it broke into Supernus Pharmaceuticals’ network on November 14 and exfiltrated 1,268,906 files totaling 1.5 TB of data. On its Tor network’s leaks website, the hacker gang said that the stolen data would be made public shortly, pointing out that the corporation failed to notify the event in its most recent 8-K Form filed with the Securities and Exchange Commission (SEC).
Supernus Pharmaceuticals, on the other hand, filed another 8-K Form with the SEC on Friday, this time expressly mentioning the ransomware attack. Despite Supernus Pharmaceuticals’ declaration that it has no plans to pay a ransom, the Hive ransomware operators say they have been talking with the firm since the attack.