Novo Nordisk reports cyberattack as UK gives Wegovy pill the nod
Summary
Novo Nordisk, a major pharmaceutical company, has reported a cyberattack where clinical trial participant data was stolen. The company stated that the exposed records were pseudonymized, meaning they were de-identified. This incident occurred as the UK approved the use of Novo Nordisk's Wegovy weight-loss drug.
IFF Assessment
The theft of clinical trial participant data, even if pseudonymized, represents a breach of sensitive information and a direct attack on a healthcare organization, which is detrimental to defenders.
Defender Context
This incident highlights the continued targeting of the healthcare and pharmaceutical sectors by threat actors. Organizations should ensure robust data protection measures, including strong encryption and access controls, are in place for all sensitive data, especially clinical trial information.