Global pharmaceutical corporation Cencora, previously known as AmerisourceBergen, disclosed a significant cyberattack in a recent regulatory filing. The Fortune 500 company, with a reported revenue of $262.2 billion for 2023, revealed that unauthorized intruders had exfiltrated data from its IT systems.
Detected on February 21st, the breach prompted immediate containment and investigation efforts involving law enforcement, cybersecurity experts, and external counsel. Despite the potential severity of the data breach, Cencora reported that the incident has not significantly affected its day-to-day operations, although the long-term implications on financial conditions or operational results remain uncertain.
Why it matters: The incident at Cencora is part of a worrying trend, as other major pharmaceutical companies and healthcare organizations have also experienced breaches.
- Swift Disclosure Response: Cencora’s swift and prompt SEC filing about the breach falls in line with new regulatory expectations for timely public disclosure of significant cybersecurity events.
- Emphasis on IoT Security: The incident highlights the need for improved security measures around IoT devices within the healthcare sector, as these are often seen as vulnerable points in an organization’s security infrastructure.
- Regulatory Compliance and Updates: As cyberattacks continue to escalate within the healthcare sector, Cencora has committed to providing updates on any new developments within the investigation, stressing the importance of transparency during and after a breach.
Go Deeper -> Pharmaceutical giant Cencora reports cyberattack – The Record
Pharma Giant Cencora Reports Cybersecurity Breach – Infosecurity Magazine