Cencora, a major US pharmaceutical company, has disclosed that a cyberattack earlier this year led to a data breach that compromised highly sensitive medical information of American patients.
Cencora Reports Cyberattack Compromising Sensitive Data of US Patients
According to TechCrunch, the cyberattack started on February 21 and exposed personal details, including patient names, addresses, dates of birth, health diagnoses, and medication information.
The company revealed that the data was obtained through partnerships with drug manufacturers as part of its "patient support programs." These partnerships include companies like Abbvie, Acadia, Bayer, Novartis, and Regeneron.
The Extent of the Cencora Cyberattack
Cencora, which manages around 20% of the pharmaceuticals sold and distributed in the US, reported the breach to government regulators on February 27. The company has yet to disclose the full extent of the cyberattack or the number of people impacted.
However, TechCrunch reported that the public data breach notifications filed by Cencora with US state authorities revealed that the company has notified around half a million people since learning of the data breach, and the number is expected to rise.
Cencora spokesperson Mike Iorfino told TechCrunch that the company was still assessing the total number of affected individuals and that there was no connection between the cyberattack incidents at Cencora and in Change and Ascension.
Join the Conversation