Alleged ransomware claim targets Nang Kuang Pharmaceutical Co., Ltd. in Taiwan, with threat actor incransom claiming access to about 430GB of data including clients and partners, agreements, emails, ID scans, CDA and NDA, clinical reports, and confidential project records for drugs such as Eroxon, Cinacalcet, Icatibant, Exparel, and bupivacaine. The claim states that full publication will occur within four weeks. #Taiwan
Incident Details
- Victim: Nang Kuang Pharmaceutical Co., Ltd.
- Sector: Healthcare
- Country: TW
- Actor: incransom
- Source: http://incblog6qu4y4mm4zvw5nrmue6qbwtgjsxpw6b7ixzssu36tsajldoad.onion/blog/disclosures/699237258f1d14b743d10b9a
- Discovered: 2026-02-15 22:08:26.083950
- Published: 2026-02-15 00:00:00.000000
Information
- Nang Kuang Pharmaceutical Co. Ltd — Revenue: $70M; website: nangkuang.com.tw; total leaked data: 430GB
- Ransomware actor: incransom
- Leaked clients and partners: Rosetta, PeptiStar Inc, Shiratori Pharmaceutical Co Ltd, Apexcela Co. Ltd, Somerset Pharma LLC, CureLeads FZ-LLC, Pfizer and other companies worldwide
- Data classification: Confidential / Secret
- Projects exposed: Eroxon, Cinacalcet, Icatibant, Exparel, bupivacaine and many other medical drugs
- Types of leaked files: agreements, project documents, lawsuits involving Pfizer, clinical reports from inception to late phase
- Personal data included: ID scans and other personal information
- Other leaked materials: emails, CDAs and NDAs, clinical reviews, product risk assessments, RGD, RDO, DMF, GMP, CRF
- Full publication scheduled within four weeks
- Additional note: a lot of other very important information included
Disclaimer: This post is based on public claims made by the ransomware group "incransom". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.