• Skip to main content
  • Skip to header right navigation
  • Skip to site footer
Restore Privacy

Restore Privacy

Resources to stay safe and secure online

  • News
  • Tools
    • Secure Browser
    • VPN
    • Ad Blocker
    • Secure Email
    • Private Search Engine
    • Data Removal
      • Incogni Review
    • Password Manager
    • Secure Messaging App
    • Tor
    • Identity Theft Protection
    • Unblock Websites
    • Privacy Tools
  • Email
    • Secure Email
    • ProtonMail Review
    • Tutanota Review
    • Mailfence Review
    • Mailbox.org Review
    • Hushmail Review
    • Posteo Review
    • Fastmail Review
    • Runbox Review
    • CTemplar Review
    • Temporary Disposable Email
    • Encrypted Email
    • Alternatives to Gmail
  • VPN
    • What is VPN
    • VPN Reviews
      • NordVPN Review
      • Surfshark VPN Review
      • VyprVPN Review
      • Perfect Privacy Review
      • ExpressVPN Review
      • CyberGhost Review
      • AVG VPN Review
      • IPVanish Review
      • Hotspot Shield VPN Review
      • ProtonVPN Review
      • Atlas VPN Review
      • Private Internet Access Review
      • Avast VPN Review
      • TorGuard Review
      • PrivadoVPN Review
    • VPN Comparison
      • NordVPN vs ExpressVPN
      • NordVPN vs PIA
      • IPVanish vs ExpressVPN
      • CyberGhost vs NordVPN
      • Surfshark vs NordVPN
      • IPVanish vs NordVPN
      • ExpressVPN vs PIA
      • VyprVPN vs NordVPN
      • CyberGhost vs ExpressVPN
      • NordVPN vs HideMyAss
      • ExpressVPN vs ProtonVPN
      • Atlas VPN vs NordVPN
      • ExpressVPN vs Surfshark
      • NordVPN vs Proton VPN
      • Surfshark vs CyberGhost
      • Surfshark vs IPVanish
    • Best VPNs
      • Best VPN for Torrenting
      • Best VPN for Netflix
      • Best Free VPN
      • VPN for Firestick TV
      • Best VPN for Android
      • Best VPN for Gaming
      • Best VPN for PC
      • Best VPN for Disney Plus
      • Best VPN for Hulu
      • Best VPN for Mac
      • Best VPN for Streaming
      • Best VPN for Windows
      • Best VPN for iPhone
    • VPN Coupons
      • ExpressVPN Coupon
      • NordVPN Coupon
      • Cyber Monday VPN Deals
      • NordVPN Cyber Monday
      • Surfshark VPN Cyber Monday
      • ExpressVPN Cyber Monday
    • VPN Guides
      • Free Trial VPN
      • Cheap VPNs
      • Static IP VPN
      • VPN Ad Blocking
      • No Logs VPN
      • Best VPN Chrome
      • Best VPN Reddit
      • Split Tunneling VPN
      • VPN for Binance
      • WireGuard VPN
      • VPN for Amazon Prime
      • VPN for Linux
      • VPN for iPad
      • VPN for Firefox
      • VPN for BBC iPlayer
    • By Country
      • Best VPN Canada
      • Best VPN USA
      • Best VPN UK
      • Best VPN Australia
      • VPN for Russia
    • VPN Router
  • Password
    • Best Password Managers
    • Comparisons
      • NordPass vs 1Password
      • 1Password vs LastPass
      • NordPass vs LastPass
      • RoboForm vs NordPass
      • 1Password vs Bitwarden
      • Dashlane vs NordPass
      • 1Password vs Dashlane
      • NordPass vs Bitwarden
    • KeePass Review
    • NordPass Review
    • 1Password Review
    • Dashlane Review
    • RoboForm Review
    • LastPass Review
    • Bitwarden Review
    • Strong Password
  • Storage
    • Best Cloud Storage
    • pCloud Review
    • Nextcloud Review
    • IDrive Review
    • SpiderOak Review
    • Sync.com Review
    • MEGA Cloud Review
    • NordLocker Review
    • Tresorit Review
    • Google Drive Alternatives
  • Messenger
    • Secure Messaging Apps
    • Signal Review
    • Telegram Review
    • Wire Review
    • Threema Review
    • Session Review
  • Info
    • Mission
    • Press
    • Contact
  • News
  • Tools
    • Secure Browser
    • VPN
    • Ad Blocker
    • Secure Email
    • Private Search Engine
    • Data Removal
      • Incogni Review
    • Password Manager
    • Secure Messaging App
    • Tor
    • Identity Theft Protection
    • Unblock Websites
    • Privacy Tools
  • Email
    • Secure Email
    • ProtonMail Review
    • Tutanota Review
    • Mailfence Review
    • Mailbox.org Review
    • Hushmail Review
    • Posteo Review
    • Fastmail Review
    • Runbox Review
    • CTemplar Review
    • Temporary Disposable Email
    • Encrypted Email
    • Alternatives to Gmail
  • VPN
    • What is VPN
    • VPN Reviews
      • NordVPN Review
      • Surfshark VPN Review
      • VyprVPN Review
      • Perfect Privacy Review
      • ExpressVPN Review
      • CyberGhost Review
      • AVG VPN Review
      • IPVanish Review
      • Hotspot Shield VPN Review
      • ProtonVPN Review
      • Atlas VPN Review
      • Private Internet Access Review
      • Avast VPN Review
      • TorGuard Review
      • PrivadoVPN Review
    • VPN Comparison
      • NordVPN vs ExpressVPN
      • NordVPN vs PIA
      • IPVanish vs ExpressVPN
      • CyberGhost vs NordVPN
      • Surfshark vs NordVPN
      • IPVanish vs NordVPN
      • ExpressVPN vs PIA
      • VyprVPN vs NordVPN
      • CyberGhost vs ExpressVPN
      • NordVPN vs HideMyAss
      • ExpressVPN vs ProtonVPN
      • Atlas VPN vs NordVPN
      • ExpressVPN vs Surfshark
      • NordVPN vs Proton VPN
      • Surfshark vs CyberGhost
      • Surfshark vs IPVanish
    • Best VPNs
      • Best VPN for Torrenting
      • Best VPN for Netflix
      • Best Free VPN
      • VPN for Firestick TV
      • Best VPN for Android
      • Best VPN for Gaming
      • Best VPN for PC
      • Best VPN for Disney Plus
      • Best VPN for Hulu
      • Best VPN for Mac
      • Best VPN for Streaming
      • Best VPN for Windows
      • Best VPN for iPhone
    • VPN Coupons
      • ExpressVPN Coupon
      • NordVPN Coupon
      • Cyber Monday VPN Deals
      • NordVPN Cyber Monday
      • Surfshark VPN Cyber Monday
      • ExpressVPN Cyber Monday
    • VPN Guides
      • Free Trial VPN
      • Cheap VPNs
      • Static IP VPN
      • VPN Ad Blocking
      • No Logs VPN
      • Best VPN Chrome
      • Best VPN Reddit
      • Split Tunneling VPN
      • VPN for Binance
      • WireGuard VPN
      • VPN for Amazon Prime
      • VPN for Linux
      • VPN for iPad
      • VPN for Firefox
      • VPN for BBC iPlayer
    • By Country
      • Best VPN Canada
      • Best VPN USA
      • Best VPN UK
      • Best VPN Australia
      • VPN for Russia
    • VPN Router
  • Password
    • Best Password Managers
    • Comparisons
      • NordPass vs 1Password
      • 1Password vs LastPass
      • NordPass vs LastPass
      • RoboForm vs NordPass
      • 1Password vs Bitwarden
      • Dashlane vs NordPass
      • 1Password vs Dashlane
      • NordPass vs Bitwarden
    • KeePass Review
    • NordPass Review
    • 1Password Review
    • Dashlane Review
    • RoboForm Review
    • LastPass Review
    • Bitwarden Review
    • Strong Password
  • Storage
    • Best Cloud Storage
    • pCloud Review
    • Nextcloud Review
    • IDrive Review
    • SpiderOak Review
    • Sync.com Review
    • MEGA Cloud Review
    • NordLocker Review
    • Tresorit Review
    • Google Drive Alternatives
  • Messenger
    • Secure Messaging Apps
    • Signal Review
    • Telegram Review
    • Wire Review
    • Threema Review
    • Session Review
  • Info
    • Mission
    • Press
    • Contact

RansomHouse Cyber Gang Claims Ipca Laboratories as Latest Victim

September 9, 2022 By Sven Taylor — 5 Comments
IPCA Laboratories data breach

RansomHouse, a cyber extortion gang that gained international notoriety in June with the breach of AMD, has now announced another well-known victim with Ipca Laboratories. RestorePrivacy received advanced notice of this security breach as well as additional information from RansomHouse for this report.

RansomHouse, an emerging cyber extortion gang, is now claiming to have breached Ipca Laboratories, the Indian multinational pharmaceutical company based in Mumbai.

RansomHouse published Ipca as the latest victim on the group’s darknet site, as we verified earlier today.

RansomHouse told RestorePrivacy that it breached Ipca Laboratories on September 3rd, 2022. The group claims to have exfiltrated .5 Tb of data from Ipca.

Below is the current post on RansomHouse’s darknet site announcing the breach.

Ipca Labs hacked
RansomHouse website announcing Ipca Laboratories data breach.
Source: RestorePrivacy.com

At the time this article went live, RansomHouse has not provided any additional details on how the data breach took place. A few months earlier, with the AMD breach, RansomHouse explained that access was gained through weak employee passwords. It’s not clear if that was also the case with Ipca.

Analysis and verification of the data sample

RestorePrivacy analyzed the data sample provided by RansomHouse on September 9, 2022.

It includes screenshots of internal company files, as well as an employee spreadsheet. In total, there are currently 13 screenshots that show files allegedly exfiltrated by RansomHouse in the attack on Ipca. Below is one of the screenshots.

Ipca Labs data breach hack
Data sample provided by RansomHouse.
Source: RestorePrivacy.com

RansomHouse has also written a note to Ipca on its darknet site that reads as follows:

Dear Ipca Laboratories Management, We are sure that you are not interested in your confidential or research data to be leaked or sold to a third party.

– RansomHouse darknet site

About RansomHouse

RansomHouse can best be described as a cyber extortion group that first emerged in December 2021 with a website on the darknet. The group has gained global attention with large victims, such as Shoprite Holdings and AMD earlier this year.

Since its inception in December 2021, RansomHouse has announced a total of 10 victims on the group’s homepage:

  • Saskatchewan Liquor and Gaming Autority (December 2021)
  • Jefferson Credit Union (December 2021)
  • Dellner Couplers AB (April 2022)
  • AHS Aviation Handling Services GmbH (April 2022)
  • Shoprite Holdings LTD (June 2022)
  • Advanced Micro Devices, Inc (AMD) (January 2022)
  • Summit Care (June 2022)
  • Fairfax – Crum & Foster (March 2022)
  • 8 Municipal Districts in Italy (July 2022)
  • Ipca Laboratories (September 2022)

Will Ipca Labs’ data be leaked or sold?

It’s difficult to say exactly how this situation will play out.

RansomHouse, as the name implies, is surely demanding a ransom from the victim for the deletion of all data and keys to decrypt any files that were locked in the attack on September 3rd.

Should the negotiations fail, we can expect that RansomHouse will either sell the data to a third party or leak it on the group’s darknet site.

With Shoprite and AMD, two other high-profile victims of RansomHouse, the data was sold to third parties after negotiations with the victim failed, according to RansomHouse.

Ipca Laboratories contacted for comment

After analyzing the data sample earlier today, we have reached out to Ipca Laboratories in Mumbai for comment.

At the time this article went live, we have not heard back. We will update the article with any statements and new developments we receive.

About Sven Taylor

Sven Taylor is the lead editor and founder of Restore Privacy, a digital privacy advocacy group. With a passion for digital privacy and accessible information, he created RestorePrivacy to provide you with honest, useful, and up-to-date information about online privacy, security, and related topics.

Reader Interactions

Comments

  1. BoBeX

    September 27, 2022

    Hi RP,

    You may have heard of the Optus data breach in Australia.
    Tough it is a big avent here it doesn’t appear to have even noticed much around the world.

    Australian cybersecurity researchers seem to be saying that there has not been enough technical information released to give views or draw conclusions.

    Most statling is reports that the claimant hacker has revers3d their position of first requesting US$ 1 million and now suggesting an apology and promising to delete all data.
    This is unusual and surprising.

    The below link is from a credible news agency.
    What would you make of this?
    https://www.abc.net.au/news/2022-09-27/online-account-claims-to-have-released-optus-customer-data/101476232

    Regards,

    BoBeX

    Reply
    • Sven Taylor

      September 27, 2022

      Hi BoBeX,
      I’ve been following this and the reports are correct. Here is an archived version of the original post with the latest change about the data not being for sale:
      https://web.archive.org/web/20220927065136/https://breached.to/Thread-Optus-Data-will-not-be-sold-or-leaked

      Reply
      • BoBeX

        September 27, 2022

        Thanks for the info.
        The event is being taken very seriously here, the upper number on potential affected persons would be one third of of our population. So it has attracted national attention.
        Potentially the breached company may have to pay for replacement identity documents.
        It now appears Medicare documents may have been included in the breach.
        Our government cyber organisations have partner with the FBI for the investigation

        Reply
  2. Duckley

    September 20, 2022

    https://vpnpro.com/blog/hidden-vpn-owners-unveiled-97-vpns-23-companies/

    Reply
  3. Canada Refugee

    September 9, 2022

    If I was Ransom House, and I wanted maximum attention and exposure, I would not wait until later Friday afternoon to announce this. I’d drop the info on a Tuesday morning, New York time. 🙂

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Sidebar

Digital Privacy Essentials:
Secure Browsers
Private Search Engines
Secure Email
Best Password Managers
Secure Messaging Services
Best Ad Blockers
Best VPN Services
Secure Cloud Storage

Privacy & Security Guides:
Privacy Tools
Alternatives to Google Products
Firefox Privacy Modifications
Five Eyes, 9 Eyes, 14 Eyes Spying
Browser Fingerprinting
Is Tor Safe?
Alternatives to Gmail
VPN vs Tor
Alternatives to WhatsApp
Is Your Antivirus Spying on You?
Controlling Communication Channels is Crucial for Privacy
Anonymity Networks: VPNs, Tor, and I2P
How to Really Be Anonymous Online
Private and Anonymous Payments

Secure Email Reviews:
ProtonMail Review
Tutanota Review
Mailfence Review
Mailbox.org Review
Hushmail Review
Posteo Review
Fastmail Review
Runbox Review
CTemplar Review
Temporary Email Services
Encrypted Email

Password Manager Reviews:
Bitwarden Review
LastPass Review
KeePass Review
NordPass Review
Dashlane Review
1Password Review
Best Password Managers

Secure Messaging App Reviews:
Wire Review
Signal Review
Threema Review
Telegram Review
Session Review
Wickr Review

Secure Cloud Storage Reviews
Tresorit Review
MEGA Cloud Review
Sync.com Review
Nextcloud Review
IDrive Review
pCloud Review
SpiderOak Review
NordLocker Review

How To Guides
How to Encrypt Files on Windows
How to Encrypt Email
How to Configure Windows 10 for Privacy
How to use Two-Factor Authentication (2FA)
How to Secure Your Android Device for Privacy
How to Secure Your Home Network
How to Protect Yourself Against Identity Theft
How to Unblock Websites
How to Fix WebRTC Leaks
How to Test Your VPN
How to Hide Your IP Address
How to Create Strong Passwords
How to Really Be Anonymous Online

About RestorePrivacy

Contact

Restore Privacy Checklist

  1. Secure browser: Modified Firefox or Brave
  2. VPN: NordVPN (68% Off Coupon) or Surfshark
  3. Ad blocker: uBlock Origin or AdGuard
  4. Secure email: Mailfence or Tutanota
  5. Secure Messenger: Signal or Threema
  6. Private search engine: MetaGer or Brave
  7. Password manager: NordPass or Bitwarden

About

Restore Privacy is a digital privacy advocacy group committed to helping people stay safe and secure online. You can support this project through donations, purchasing items through our links (we may earn a commission at no extra cost to you), and sharing this information with others. See our mission here.

We’re available for Press and media inquiries here.

Restore Privacy is also on Twitter

COPYRIGHT © 2023 RESTORE PRIVACY, LLC · PRIVACY POLICY · TERMS OF USE · CONTACT · SITEMAP