Details of some major events emerge much later, CencoraWhat is happening will go down in history. The report published by Bloomberg with information from sources familiar with the subject and Zach’s research are interesting. The pharmaceutical giant, which is 11th on the Fortune 500 list, also has many large subsidiaries. So Bitcoin $60,073 ransom What are the details regarding payment?
Record Bitcoin Ransom
In March, the company paid in 3 installments and the ransom demand was initially $150 million. It was revealed that data was compromised in the attack that was noticed in February. In its three-month report in July, Cencora had shown it as an expense in the cybersecurity item today. The attacking team Dark Angels and their $150 million demand received a payment of $75 million.
Chainalysis and Zscaler announced that attackers received a huge payout from on-chain activity. The $75 million that went down in history ransom payment That’s on top of the $40 million payment made by CNA Financial in 2021, putting Cencora at the top of the list for the largest cyber ransom payment of all time.
Such large payments are not uncommon, but they do happen, said Charles Carmakal, chief technology officer of Mandiant Consulting, a cybersecurity unit that helps Google clients deal with cyber incidents.
It was reported to the institutions that the attackers accessed personal data of the customers in February, including their names, addresses, dates of birth, diagnoses, prescriptions, and medications. According to Chainalysis data, the amount of ransom payments is increasing year by year. Last year, payments that were around $200,000 reached $1.5 million in June. It is also reported that the total ransom payments made in 2023 are around $1 billion, and more payments are already being made this year.
What about the stolen data? Even though Cencora pays, the attackers are not obligated to destroy copies of this data. It’s like sending money to someone who scammed you or stole something from you to return your belongings/money.
Ransom Payment Addresses
ZachXBT krypton crime detective and after the report disclosed the addresses belonging to the attackers. Details such as the payment being made in 3 installments in March made it easier for him to identify the addresses belonging to the attackers. And he wrote the following;
“A large publicly traded company like Cencora has the potential to sell Dark Angels ransomware I think it’s bad that he didn’t share the BTC transactions for the $75 million payment he made to the group, so I’ll just post it for them.
296.5 BTC – March 7, 2024 at 10:04 UTC
e3e203db2752edeb5bb716a77ed30f977bee70b06cefecd69d1c38921ad5d1b2
408 BTC – March 8, 2024 at 7:45 UTC
db4a0742aa2fe67c20f02642bb776fb4140cf32beca43b7552435f5eddb58d92
387 BTC – March 8, 2024 at 9:39 UTC
bf408baa4d6598a42a6852012fe412514ff7bb70ca8a94deb9865c9b46f19ddf
“Furthermore, all three addresses were funded from the same source, and the funds flowed to addresses with high illicit fund exposure.”
Disclaimer: The information contained in this article does not contain investment advice. Investors should be aware that cryptocurrencies carry high volatility and therefore risk, and should carry out their transactions in line with their own research.
