Cencora Pays Record $75M Ransom in Major Cyberattack

As a seasoned analyst with over two decades of experience in cybersecurity and risk management, I find myself deeply concerned by the escalating trend of cyber extortion, particularly in critical sectors like healthcare. The $75 million ransom paid by Cencora Inc., previously known as AmerisourceBergen, is an alarming figure that underscores the growing sophistication and audacity of cybercriminals.


In a shocking turn of events, Cencora Inc., once recognized as AmerisourceBergen, found itself at the receiving end of a major cyberattack. This attack forced the company to make a record-breaking $75 million ransom payment, which is believed to be the highest ever known extortion payment in a cybercrime incident.

The payment, made in Bitcoin in three installments, was completed in March. Initially, the hackers demanded $150 million. The breach was discovered in February, with Cencora confirming the theft of sensitive data. However, the company has chosen not to comment further on the specifics of the attack beyond what was disclosed in regulatory filings.

In a summary of its Q3 report, Cencora revealed approximately $31.4 million in additional costs linked to various expenses over the nine months up until June 30, largely as a result of a cybersecurity incident. The expenditures likely encompass investigation and containment measures related to this event. Cencora has been notifying both individuals and authorities about the breach, which entailed stolen personal information. Although a considerable ransom was paid, there’s no guarantee that the stolen data won’t be disclosed further.

A $75 million ransom was paid after it became apparent that cybercriminals often focus on valuable sectors such as healthcare. This payment serves to highlight the growing financial risks associated with cyber blackmail, surpassing the previous record of a $40 million payment made by CNA Financial in 2021.

Experts in the industry suggest that these large payments might make the healthcare field even more enticing for potential future cyber-attacks.

In simpler terms, Cencora claims that this incident won’t significantly impact their financial status or daily activities. Yet, there’s debate about whether paying such a substantial ransom is wise because the hackers might still misuse the obtained data or make it public later on.

Security professionals caution that forking over ransom money might not completely eliminate the danger, as it’s similar to giving money to a thief in the hope of getting your stolen possessions back.

Read More

Sorry. No data so far.

2024-09-19 00:04