BleepingComputer has reported that Canadian pharmacy and retail chain London Drugs fell victim to a ransomware attack orchestrated by the LockBit group last month. The attack prompted the temporary closure of all London Drugs stores across Western Canada.
LockBit, a notorious ransomware group, remains active despite recent law enforcement actions, and it has threatened to expose data allegedly obtained from London Drugs’ servers following unsuccessful ransom negotiations. However, the group has not provided evidence of the stolen information.
Initially, London Drugs stated that no customer or employee data had been affected by the breach. However, the company later acknowledged that corporate head office files, potentially containing employee details, were compromised. Despite this, London Drugs has adamantly refused to meet LockBit’s $25 million ransom demand.
London Drugs issued a statement regarding the breach, stating, “At this stage in our investigation, we are not able to provide specifics on the nature or extent of employee personal information potentially impacted. Our review is underway, but due to and the extent of system damage caused by this cyber incident, we expect this review will take some time to perform.”
