KillSec Ransomware Strikes Farmacia Cofar in Chile

Incident Date: Jan 16, 2025

Attack Overview

VICTIM

Farmacia Cofar

INDUSTRY

Healthcare Services

LOCATION

Chile

ATTACKER

Killsec

FIRST REPORTED

January 16, 2025

Request Removal

Ransomware Attack on Farmacia Cofar by KillSec

Farmacia Cofar, a leading pharmacy chain in Chile, has allegedly been targeted by a ransomware attack orchestrated by the notorious KillSec group. The breach, discovered on January 15, 2025, has sparked significant concerns about the security of healthcare-related entities that depend heavily on digital platforms for their operations.

About Farmacia Cofar

Farmacia Cofar stands as a prominent online pharmacy in Chile, specializing in chronic and specialty treatments. The company is recognized for its dedication to accessibility and convenience, offering home delivery services across continental Chile. This service is particularly advantageous for patients with mobility issues or those who favor the ease of online shopping. Cofar's extensive product range includes prescription medications, over-the-counter drugs, health supplements, and personal care items. The pharmacy prioritizes expert guidance and customer service, ensuring that patients receive the necessary support for managing chronic conditions.

Attack Overview

The ransomware attack targeted Cofar's online platform, cofar.cl, which is vital for their operations. KillSec claims to have exfiltrated sensitive data, highlighting the vulnerabilities faced by healthcare entities in the digital age. The attack underscores the risks associated with the increasing reliance on online systems to manage sensitive patient and operational data. The breach has potentially compromised the personal and medical information of Cofar's customers, posing a significant threat to their privacy and security.

About KillSec

KillSec is a ransomware group that emerged in 2023 and has quickly become a significant player in the cybercrime landscape. The group employs double extortion tactics, stealing data before encryption and threatening to leak it. KillSec distinguishes itself by targeting various industries, with a notable focus on healthcare entities. The group operates under a ransomware-as-a-service model, expanding its reach and impact. KillSec's operations are characterized by their prohibition of attacks on Russian and Ukrainian targets, suggesting possible origins in these regions.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.