Pharmaceutical giant Cencora is behind the record $75 million payment made to the Dark Angels ransomware operators, following a cyberattack in February. Bloomberg reports this, citing informed sources.

According to their information, the payments were made in three transactions in March. The initial ransom demand was $150 million.

Representatives of Cencora declined to comment on “speculations and rumors” but stated that cybersecurity-related expenses had been reported in the company’s quarterly filings. According to documents from March and July, these expenses amounted to $28.5 million and $31.3 million, respectively. However, it remains unclear exactly what these amounts covered in relation to the breach.

Two months after the breach was disclosed, Cencora began notifying both individuals and government bodies about the theft of personal data, including names, addresses, dates of birth, diagnoses, prescriptions, and medications.

In a SEC filing from February, the pharmaceutical giant stated that the incident did not significantly affect its operations, though the full financial impact is yet to be assessed.

The report of the record ransom payment to the hackers was first disclosed by Zscaler ThreatLabz researchers in July, who identified the victim as an unnamed company from the Fortune 50 list.

According to an August report from Chainalysis, the year 2024 has seen a rise in the revenue generated by ransomware operators. In total, the six-month revenue amounted to $459.8 million, slightly higher than $449.1 million from the previous year. However, analysts noted a sharp increase in the size of losses from attacks.

Earlier, Cryptol reported that Nick Dreikon, the former CEO of the educational and research crypto platform Revelo Intel, became a victim of an armed extortion attack and transferred company funds to the criminals.