Enzo Biochem

History

2023: Theft of clinical trial data 2.5 million people

On May 30, 2023, the American biotech company Enzo Biochem announced a hacker invasion that stole confidential information about 2.5 million patients. A preliminary investigation showed that the hack was carried out using a ransomware program.

Documents sent to the US Securities and Exchange Commission (SEC) say that the attack was carried out on April 6, 2023. No ransomware group has claimed responsibility for infiltrating Enzo Biochem's IT infrastructure. The company said it disconnected its systems from the Internet, hired cybersecurity experts, and notified law enforcement agencies and relevant structures about the incident.

Biotech company Enzo Biochem stole data from clinical trials of 2.5 million people

Enzo Biochem, which produces DNA-based tests to detect viral and bacterial diseases, including COVID-19 and cancer, said that on April 11, 2023, as part of an investigation into the incident, the theft of a huge amount of data was confirmed. These are, in particular, patient names, information about clinical studies of 2,470,000 people and approximately 600,000 Social Security numbers. How exactly the hack was carried out and whether the attackers requested a ransom for the stolen files is not reported.

Enzo Biochem notes that information security experts continue to study the consequences of the invasion. The company warns that it bears and will continue to bear the costs associated with eliminating the consequences of the attack. In addition, there is a possibility that the incident will lead to additional inspections by regulators. Stolen information can theoretically be used by cybercriminals to organize phishing schemes and other fraudulent campaigns on the Internet aimed at obtaining financial benefits.^[1]

Notes