Indiabulls Reportedly Breached by CLOP Ransomware, Given 24-Hour Deadline to Respond

A letter, a voucher, and four spreadsheets related to Indiabulls have been allegedly shared by the CLOP Ransomware operators.

Indiabulls Reportedly Breached by CLOP Ransomware, Given 24-Hour Deadline to Respond

Photo Credit: BleepingComputer/ Clop data leak site

Indiabulls has presence in real estate, pharmaceuticals, construction, and more

  • Indiabulls has been reportedly hacked by CLOP Ransomware
  • CLOP Ransomware operators have given 24 hours to respond
  • Internal Indiabulls files have been leaked with more leaks threatened

Indiabulls, a diversified financial services group with more than Rs. 28,580 crore (as on March 31, 2019) in net worth, has been reportedly breached by CLOP Ransomware operators. These operators, as per the report, claim to have stolen data that includes four spreadsheets related to the Indiabulls Pharmaceuticals and Indiabulls Housing Finance Limited subsidiaries, among other files. Till now, CLOP Ransomware operators have uploaded six screenshots of stolen files and asked Indiabulls to contact them in 24 hours.

According to a report by Bleeping Computer, the cyberattack on Indiabulls has come from CLOP Ransomware operators that steal unencrypted files and post some of them on their leaks website, demanding a ransom to stop them from posting all the stolen files. The report states that the group posted six screenshots of stolen files including a letter, a voucher, and four spreadsheets that are said to be related to Indiabulls Pharmaceuticals and Indiabulls Housing Finance Limited subsidiaries.

As of now, it is unclear how the CLOP Ransomware operators were able to access the data, what all data has been leaked, or how much ransom has been demanded. The report states that Indiabulls has an exposed Citrix Netscaler ADC VPN gateway that is vulnerable to CVE-2019-19781 vulnerability. This vulnerability, if exploited, can allow an attacker to perform arbitrary code execution remotely for unauthenticated access, as per the information on Citrix support page.

Additionally, according to a report by threat intel firm Bad Packets, over 25,000 Citrix (Netscaler) endpoints were found to be vulnerable to CVE-2019-19781 back in January.

In March, US pharmaceutical company ExecuPharm was also reportedly attacked by CLOP Ransomware operators. They had stolen 163GB of unencrypted files, all of which has been leaked on their data leak website.

Gadgets 360 has reached out to Indiabulls for comment and will update the space as and when we get a response.


Is Mi Notebook 14 series the best affordable laptop range for India? We discussed this on Orbital, our weekly technology podcast, which you can subscribe to via Apple Podcasts or RSS, download the episode, or just hit the play button below.



For the latest tech news and reviews, follow Gadgets 360 on Twitter, Facebook, and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel.

The Witcher Season 2 to Resume Production in August, Netflix Says
Apple Brings New Translate App That Supports 11 Languages, Works Offline
Share on Facebook Tweet Snapchat Share Reddit Comment




© Copyright Red Pixels Ventures Limited 2021. All rights reserved.
Listen to the latest songs, only on