Pune: Ransomware Attack Halts Operations at Biopharma Firm in Hinjawadi; Hacker Demands $80,000
Pimpri Chinchwad, 30th April 2025: A Hinjawadi-based biopharmaceutical company has become the target of a ransomware attack, with a cybercriminal demanding a ransom of $80,000 (approximately ₹68 lakh) to release encrypted company data. The Pimpri Chinchwad Police’s cybercrime cell is currently investigating the case.
According to officials, the incident came to light after a senior employee filed a complaint on Monday, following a threatening email received by the company on April 27. The message claimed that the attacker had gained access to the firm’s servers, encrypted sensitive data, and would only restore access upon payment.
Police have registered a case under Section 308 of the Bharatiya Nyaya Sanhita (BNS), which deals with extortion, and relevant sections of the Information Technology Act, including 43 (damage to computer systems), 66 (computer-related offences), and 72 (breach of confidentiality and privacy).
Sub-inspector Sagar Poman, who is part of the investigating team, confirmed that this was a case of ransomware. “Initial findings show that a malicious email was used to infiltrate the company’s systems. The hacker managed to breach all 15 servers,” he said. “By the time staff noticed suspicious activity, the entire data was copied, encrypted, and locked with a password.”
Poman added that the attacker sent follow-up emails demanding the payment within three days and warned against any attempts to decrypt the data independently. “He threatened that if the firm tried to break the encryption or failed to pay, the data would either be destroyed or sold on the dark web,” the officer stated.
The company’s operations have been brought to a standstill for the past two days as investigators work to assess the extent of the breach. Police are also preparing to record statements from nearly 300 employees.
Rohan Nyayadish, director of Digital Task Force, noted that ransomware attacks have surged due to weak digital security infrastructures. “Often, companies become easy targets because of outdated firewalls or lack of cybersecurity audits,” he said. “Businesses must implement security protocols as mandated by the Central Government from April 1 and consider cyber insurance for critical data and research assets.”
He also warned against paying the ransom. “Hackers typically demand cryptocurrency payments, making them hard to trace. Instead of giving in, companies should seek professional help and report such incidents immediately.”
Authorities have urged all organizations to strengthen their cybersecurity frameworks to prevent similar breaches.
