Unveiling the Digital Heist: A Pharmaceutical Giant Under Siege
Allegations of Extensive System Infiltration
FulcrumSec, a cyber extortion group, has made bold claims regarding their prolonged access to Novo Nordisk's internal networks. According to a Reuters report citing FulcrumSec's statements, the group successfully maintained a presence within the pharmaceutical company's systems for over two months, systematically gathering a vast amount of data.
The Scope of Compromised Information
The alleged stolen data is said to be highly sensitive and comprehensive. FulcrumSec claims to have acquired source code, proprietary details pertaining to both existing and unreleased pharmaceutical products, critical clinical trial information, personal data of employees, medical professionals, and patients, as well as specifics about production facilities. Furthermore, the hackers assert they have compromised information related to Novo Nordisk's advanced internal artificial intelligence models, indicating a deep and wide-ranging infiltration.
Novo Nordisk's Response to the Accusations
In response to these serious allegations, Novo Nordisk has issued a statement through Reuters. The company confirmed its awareness of the claims made by FulcrumSec, particularly those concerning the unauthorized publication of data supposedly exfiltrated from its systems. This acknowledgment signals the gravity with which the pharmaceutical firm is treating the situation.
Direct Communication Between Hackers and the Company
FulcrumSec has also provided details about their direct interactions with Novo Nordisk representatives. The group informed Reuters that contact was initiated by Novo Nordisk on June 3, approximately 48 hours after FulcrumSec first attempted to reach out to undisclosed company executives. The hackers stated that Novo Nordisk used a Proton Mail address for communication and validated their identity by requesting specific files, which, according to FulcrumSec, only the company would have known to ask for, further lending credibility to the hackers' claims.
Magnitude of the Stolen Data: Over 700,000 Files
Further reports from DataBreaches.net, a cybersecurity blog, corroborate the timeline of the attack, indicating that FulcrumSec initially gained access to Novo Nordisk's network in March. The blog also revealed that the group shared alleged correspondence with the company, dating back to June 1, and provided a list detailing over 700,000 files, amounting to an astonishing 1.3 terabytes of data. Despite the extensive breach, FulcrumSec indicated a "harm-reduction strategy," stating they would refrain from releasing information related to operational technology and software used in manufacturing facilities.
Distinction from Other Cyber Incidents
Separately, the malware research site VX-Underground reported another incident involving an unnamed hacker compromising Novo Nordisk on Monday. However, FulcrumSec explicitly clarified that the incident they were involved in was distinct and unrelated to the one referenced by VX-Underground, suggesting potentially multiple, independent cyber threats targeting the company.
