Ethical Hacking News
FulcrumSec, a notorious group known for its brazen data breaches and extortion tactics, has set its sights on Novo Nordisk, a leading pharmaceutical company. In a shocking turn of events, FulcrumSec claimed to have exfiltrated an astonishing 1.3 terabytes of sensitive data from the Danish multinational's systems, including clinical records, AI research assets, and proprietary biological and chemical training datasets. The attack has raised concerns about the potential consequences for Novo Nordisk's research programs and highlighted the significance of the AI models themselves.
FulcrumSec group carried out a data breach on Novo Nordisk, stealing an astonishing 1.3 terabytes of sensitive data. The attack began on June 15, 2026, and saw FulcrumSec leak files from Novo Nordisk's systems, including AI research assets and proprietary biological and chemical training datasets. FulcrumSec's attack was characterized by its sophistication and stealth, with the attackers seeming to have access to the company's systems for an extended period. The stolen data could potentially fall into the wrong hands, compromising Novo Nordisk's competitive edge in research programs, particularly those focused on drug discovery and molecular design. Novo Nordisk has confirmed unauthorized access to internal IT systems and exposure of pseudonymized clinical-trial data, but has not validated the full scope of the breach. FulcrumSec's operation is notable for its lack of encryption and use of a clearnet leak site, raising concerns about the group's motivations and potential ties to state-sponsored actors or organized crime groups.
FulcrumSec, a notorious group known for its brazen data breaches and extortion tactics, has set its sights on Novo Nordisk, a leading pharmaceutical company. In a shocking turn of events, FulcrumSec claimed to have exfiltrated an astonishing 1.3 terabytes of sensitive data from the Danish multinational's systems, including clinical records, AI research assets, and proprietary biological and chemical training datasets.
The attack, which began on June 15, 2026, saw FulcrumSec leaking files from Novo Nordisk's systems, including samples and a detailed inventory of the company's internal AI and machine-learning assets. This revelation sent shockwaves through the cybersecurity community, as it highlighted the severity of the breach and the potential consequences for Novo Nordisk.
According to reports, FulcrumSec's attack was characterized by its sophistication and stealth, with the attackers seemingly having access to the company's systems for an extended period. The group published a detailed list of Novo Nordisk's internal AI and machine-learning assets, including a 16.7 GB multimodal model checkpoint reportedly handling text, image, and transcriptomic data, around 407 MB of proprietary biological and chemical training datasets, roughly 50 MB of source code for an internal tool called NovoPert, complete logs from 113 training runs, HPC infrastructure maps, Slurm scheduler configs, SSH settings, about 53 GB of internal container images, developer identities, and private GitHub URLs.
The attack has raised concerns about the potential consequences for Novo Nordisk's research programs, particularly those focused on drug discovery and molecular design. As one expert noted, "A model checkpoint plus its training data and pipeline code is the distilled output of years of that work, and unlike a stolen customer database it does not lose value when it leaks." This highlights the significance of the AI models themselves, which could potentially fall into the wrong hands, compromising the company's competitive edge.
Novo Nordisk has confirmed unauthorized access to a limited number of internal IT systems and exposure of pseudonymized clinical-trial data, but has not validated the full scope of what FulcrumSec claims to have taken. The company has also acknowledged that drug production and supply chains continued uninterrupted during the attack, demonstrating its swift response to the incident.
FulcrumSec's operation is notable for its lack of encryption and use of a clearnet leak site. This approach has led to concerns about the group's motivations and potential ties to state-sponsored actors or organized crime groups.
As this story unfolds, cybersecurity experts and analysts will continue to scrutinize the attack and its implications, assessing the potential risks and consequences for Novo Nordisk and the broader industry. One thing is clear: FulcrumSec's brazen heist has exposed a critical vulnerability in the pharmaceutical sector, one that demands immediate attention from companies, regulators, and law enforcement agencies alike.
Related Information:
https://www.ethicalhackingnews.com/articles/FulcrumSecs-High-Stakes-Heist-Unveiling-the-Scope-of-Novo-Nordisks-Data-Breach-ehn.shtml
https://securityaffairs.com/193763/security/fulcrumsec-targets-novo-nordisk-leaks-clinical-and-research-data.html
Published: Thu Jun 18 01:51:14 2026 by llama3.2 3B Q4_K_M
