- A major medical device manufacturer revealed a cyberattack affecting the company’s IT systems
- The company stressed that products, patient safety and operations are not affected.
- Ransomware group claimed to have stolen millions of records, although details remain unclear
Medtronic, one of the world’s largest medical device manufacturers, has confirmed that it was the victim of a cyberattack in which crooks “accessed data on certain Medtronic company computer systems.”
In a security notification posted on its website, Medtronic stated that the attack does not affect its customers or products, and also stressed that it will continue to operate as usual, without any interruption:
“We have not identified any impacts to our products, patient safety, customer relationships, manufacturing and distribution operations, financial reporting systems or our ability to meet patient needs,” Medtronic said in its statement. “The networks that support our business information systems, our products, and our manufacturing and distribution operations are separate. »
Article continues below
Were the subsidiaries also affected?
It said its hospital customers’ networks are separate from Medtronic’s IT networks and are “secured and managed by the customers’ IT teams.”
In addition to the data breach notification, the company also filed a new 8-K Report with the United States Securities and Exchange Commission (SEC). Some sources have discovered that a Medtronic subsidiary called MiniMed Group also filed a regulatory complaint, stating that the attack was unlikely to have spread into its computer system and that it did not expect any material impact.
Medtronic is widely recognized as the world’s largest medical device manufacturer by revenue. It is present in more than 150 countries and employs nearly 100,000 people.
Last week, the infamous ShinyHunters ransomware group added Medtronic to its website, claiming to have stolen more than nine million records. The recordings allegedly included personally identifiable information (PII) and internal company data. Since then, Medtronic’s entry has been removed from the leak site, suggesting that the company has paid the ransom or is, at least, negotiating to release the files.
Medtronic has not yet commented on its removal from the website over the data leaks.
Via BeepComputer
The best antivirus for every budget
Follow TechRadar on Google News And add us as your favorite source to get our news, reviews and expert opinions in your feeds.
