Stormous attacks Loghman Pharmaceuticals
Date:
March 7, 2024
Overview
Title
Stormous attacks Loghman Pharmaceuticals
Victim
Loghman Pharmaceutical
Attacker
Stormous
Location
Size of Attack
Unknown/TBD
First Reported
March 7, 2024
Last Updated
October 31, 2022
Loghman Pharmaceuticals has reportedly been compromised by the Stormous ransomware group, although no further details have been disclosed. Loghman Pharmaceutical & Hygienic is a company that engages in the discovery, development, manufacture, and marketing of drugs in Iran. It manufactures broad-spectrum antibiotics, cephalosporins, penicillins, macrolides, beta-lactamase, and more. Stormous does not maintain a RaaS platform. Stormous emerged in mid-2021 or early 2022 and made headlines, claiming to have exfiltrated 200GB of data from victim Epic Games as well as the Ministry of Foreign Affairs of Ukraine. They also were purported to have offered Coca-Cola data for sale. Stormous is assessed to have targeted companies whose data was leaked by other threat actors, and some have asserted they are a scam operation. Stormous attack volume has been diminishing, and it is assessed that they may not be responsible for some of the attacks they claim. Stormous does not maintain a RaaS platform and focuses on straight data extortion. Stormous claims to target Western companies and espouses a lot of rhetoric about the Russian and Ukrainian conflict, but it is not clear if they are hacktivist-oriented or using this to sew confusion. It is still unclear exactly how Stormous operates. They claim politically motivated targeting may be more opportunistic or could be trying to make money from the threat actors' work by leveraging the chaos and confusion around the high volume of ransomware attacks today.
This attack's description was not found, while we work on the detailed account of this attack we invite you to browse through other recent Rasomware Attacks in the table below.
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.