In a growing trend, pharmaceutical company ExecuPharm became the victim of a ransomware attack on March 13, 2020, by the CLOP ransomware group, which exfiltrated its data and then posted it on the Internet. Apparently, ExecuPharm didn’t pay the ransom, and then paid the price anyway by having its data compromised and posted by the ransomware group.

ExecuPharm reported to the Vermont Attorney General that the ransomware attack compromised Social Security numbers, financial information, drivers’ license information, passport information and other sensitive data.

It is being reported that the information CLOP posted on the Internet included emails, financial and accounting records and database back-ups. There is presently no known decryption tool for the CLOP ransomware.