GoKawiilMedical device giant Medtronic disclosed last week that hackers breached its network and accessed data in “certain corporate IT systems.”
The confirmation comes after the infamous data extortion group ‘ShinyHunters’ claimed the intrusion and the theft of more than 9 million records from the company.
Medtronic is an international medical equipment giant with 90,000 employees and operations in 150 countries. It is the largest medical device maker in the world by revenue ($33.5 billion) and also develops healthcare technologies and therapies.
Medtronic disclosed the incident on its website, saying that the breach did not impact customers or products and that business operations remained unaffected.
“We have not identified any impact to our products, patient safety, connections to our customers, our manufacturing and distribution operations, our financial reporting systems, or our ability to meet patient needs,” reads Medtronic's announcement.
“The networks that support our corporate IT systems, our products and our manufacturing and distribution operations are separate.”
“Hospital customer networks remain separate from Medtronic IT networks and are secured and managed by customers’ IT teams.”
Although Medtronic did not provide additional information about the attack or its perpetrators, threat actor ShinyHunters listed the company among its victims, stating that their breach resulted in the theft "over 9 million records containing PII [personally identifiable information]."
The threat actor also claims to have compromised "terabytes of internal corporate data" and pressured the company to pay under the threat of a leak.
Source: BleepingComputer
... continue reading