Joe Warminsky reports:
Global pharmaceutical corporation Cencora reported on Tuesday that it recently discovered that intruders had stolen data from its networks.
The Fortune 500 company said in a regulatory filing that data from IT systems “had been exfiltrated” in an incident that came to light on February 21.
Read more at The Record.
The filing simply stated:
Material Cybersecurity Incidents.
On February 21, 2024, Cencora, Inc. (the “Company”), learned that data from its information systems had been exfiltrated, some of which may contain personal information. Upon initial detection of the unauthorized activity, the Company immediately took containment steps and commenced an investigation with the assistance of law enforcement, cybersecurity experts and external counsel.
As of the date of this filing, the incident has not had a material impact on the Company’s operations, and its information systems continue to be operational. The Company has not yet determined whether the incident is reasonably likely to materially impact the Company’s financial condition or results of operations.
The filing doesn’t reveal when the breach occurred.
Read more at The Record.
As The Record reports, Cencora was formerly known as AmerisourceBergen. As AmerisourceBergen, the firm appeared to have experienced a ransomware attack that was claimed by the Lorenz ransomware group in January 2023 and appeared to affect MWI Animal Health. Whether there is any connection between the 2022 incident and the recent report is unknown to DataBreaches, who reached out to Cencora this afternoon but received no reply by publication.