• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

Cencora Pays Record Bitcoin Ransom

user avatar

by Giorgi Kostiuk

2 years ago

  1. How Did the Attack Unfold?
  2. Who Are the Dark Angels?
  3. Consequences for Cencora


    4. Pharmaceutical giant Cencora faced a significant cybersecurity breach and record-breaking Bitcoin ransom payment. The incident came to light through Bloomberg reports and cybersecurity experts' insights. These events underscore the growing threat posed by ransomware attacks.

    How Did the Attack Unfold?

    The attack occurred in February, when hackers accessed sensitive information, including clients' personal and medical data. In March, Cencora paid $75 million in three separate transactions to the Dark Angels group. This payment set a new record, surpassing the previous high of $40 million paid by CNA Financial in 2021. The transaction was confirmed by Chainalysis, emphasizing the increasing frequency and cost of such ransom demands.

    Who Are the Dark Angels?

    The Dark Angels are known for high-stakes cyber extortions. Their operations involve demanding large sums of cryptocurrency, relying on the anonymity digital transactions offer. According to Charles Carmakal, CTO of Mandiant Consulting, while large payments like these are rare, they occur without public acknowledgment, suggesting more undisclosed incidents.

    — $75 million paid in Bitcoin, a record-breaking ransom. — Attackers accessed personal and medical data in February. — Cencora’s payment exceeded CNA Financial’s $40 million in 2021. — Average ransom payments have increased to $1.5 million by June. — Total ransom payments in 2023 have reached $1 billion.

    Consequences for Cencora

    Renowned crypto crime investigator ZachXBT identified the Bitcoin addresses used in the transactions, which were spread across three installments in March. This disclosure shed light on the attackers’ operational methods and highlighted gaps in public transparency regarding such incidents. The funds were traced to addresses associated with illegal activities, raising concerns over the use of cryptocurrencies to facilitate cybercrime.

    Cencora’s experience reflects the increasing sophistication of cybercriminals and the growing challenges faced by major corporations. Transparency and enhanced cybersecurity measures are critical to safeguarding sensitive data and preventing future breaches.

    The Cencora incident underscores the growing threat of cybercrime and the need for increased cybersecurity measures to protect sensitive information.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

Ripple Secures Preliminary CASP License Approval in Luxembourg

chest

Ripple has secured preliminary approval for a CASP license from Luxembourg's CSSF, marking a significant step in its operations.

user avatarNguyen Van Long

Ripple and SBI Holdings Launch RLUSD Stablecoin in Japan

chest

Ripple has partnered with SBI VC Trade to launch the RLUSD stablecoin in Japan after receiving approval from the Japan Financial Services Agency.

user avatarJesper Sørensen

OpenAI's GPT56 Model Naming Causes Confusion in Crypto Markets

chest

OpenAI's recent announcement of naming its GPT56 model capability tiers as Sol, Terra, and Luna has led to significant discussions within the crypto community.

user avatarSatoshi Nakamura

Crypto Market Seeks Direction Amid X Money Launch

chest

The launch of X Money arrives at a crucial moment for the crypto market, where assets are striving for a clearer direction.

user avatarRajesh Kumar

Current Report Utilizes Data from Coinglass

chest

The current report utilizes data sourced from Coinglass, ensuring that the information presented is accurate and relevant.

user avatarLucas Weissmann

Security Alert: MEV Bot JaredfromSubwayeth Exploited

chest

A security alert has been issued regarding the MEV bot known as JaredfromSubwayeth, which was exploited on June 26, 2026, raising concerns about the security of MEV bots in the blockchain environment.

user avatarFilippo Romano

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.