Pharmaceutical giant Novo Nordisk last week disclosed a cybersecurity incident involving unauthorized access to personal data.
Novo Nordisk is a Danish pharmaceutical company renowned for developing treatments for diabetes and weight management, including widely popular drugs such as Ozempic, Wegovy, Rybelsus, Victoza, and Saxenda, along with a broad lineup of insulin products.
In a notice posted on its website, the company revealed that it recently discovered unauthorized access to a limited number of internal IT systems, including ones that stored personal data.
“The incident affected a limited amount of information related to patients participating in some of our clinical trials,” Novo Nordisk said.
“This information is not directly linked to any patients by name or other direct identifiers. Information about identity would therefore require access to underlying information, identifying patients by name etc. This information was not exposed. We therefore do not consider the incident to enable any third party to identify participants in our clinical trials,” it added.
The company informed patients that the exposed personal data included a randomly assigned patient ID, information on trial participation, sex, birth year, biomarkers, health or immunogenicity data, and lifestyle factors.
Healthcare providers have been told that their names, registration numbers, email addresses, phone numbers, WhatsApp details, and office locations may have been compromised as a result of the hack.
No known cybercrime group appears to have taken credit for the attack on Novo Nordisk.
Related: Hackers Leak DentaQuest Information Impacting 2.6 Million
Related: Oncology Institute Discloses Data Breach
Related: 266,000 Affected by Data Breach at Radiology Associates of Richmond
Related: Millions Impacted Across Several US Healthcare Data Breaches
