Cyberattack on Novo Nordisk Exposes Medical and AI Data

Cyberattack on Novo Nordisk Exposes Medical and AI Data

Posted on By CWS

Global pharmaceutical leader Novo Nordisk has revealed a significant cybersecurity incident involving unauthorized access to its internal IT systems. The breach resulted in the exfiltration of pseudonymized patient information from clinical trials and proprietary AI model assets.

Details of the Data Breach

The company announced the breach on June 11, 2026, confirming that certain non-public data, including personal information, was taken from a limited number of systems. Novo Nordisk, known for its weight-loss drugs like Ozempic and Wegovy, stated that the breach impacted data related to ongoing clinical studies.

The exposed categories of data include patient identifiers, sex, birth year, biomarkers, health data, and lifestyle factors such as BMI and smoking habits. Critically, the company highlighted that no direct personal identifiers were exposed, maintaining that the data is pseudonymized and would require additional information to identify patients.

Implications for Patients and Professionals

Novo Nordisk has advised affected patients to remain vigilant, although it believes there is no immediate risk. The breach also impacted healthcare professionals, exposing names, registration numbers, emails, and other contact details.

A hacking group named Dragonfly has claimed responsibility for the attack, alleging a more extensive intrusion than acknowledged by Novo Nordisk. They shared screenshots suggesting the theft of a 16.7 GB AI model checkpoint, a 407 MB training dataset, and source code files, among other data.

Company’s Response and Ongoing Investigation

The company has not verified Dragonfly’s claims and no ransomware has been identified. Novo Nordisk has taken the affected IT systems offline and is collaborating with external cybersecurity experts to fully assess the breach’s scope.

Authorities have been informed, and efforts are underway to restore systems safely. Despite the breach, core business functions, including drug production and distribution, continue without disruption.

Stay updated with the latest developments by following us on Google News, LinkedIn, and X.

Cyber Security News Tags:, , , , , , , , , , ,

Related Posts

Malicious VS Code Extension as Icon Theme Attacking Windows and macOS Users Malicious VS Code Extension as Icon Theme Attacking Windows and macOS Users Cyber Security News
XWiki RCE Vulnerability Actively Exploted In Wild To Deliver Coinminer XWiki RCE Vulnerability Actively Exploted In Wild To Deliver Coinminer Cyber Security News
Critical Sophos Firewall Vulnerabilities Enables pre-auth Remote Code Execution Critical Sophos Firewall Vulnerabilities Enables pre-auth Remote Code Execution Cyber Security News
ShinyHunters Breaches Canvas LMS via Free Accounts ShinyHunters Breaches Canvas LMS via Free Accounts Cyber Security News
Email Worms Target Industrial Control Systems Globally Email Worms Target Industrial Control Systems Globally Cyber Security News
New EggStreme Malware With Fileless Capabilities Leverages DLL Sideloading to Execute Payloads New EggStreme Malware With Fileless Capabilities Leverages DLL Sideloading to Execute Payloads Cyber Security News