Europe's largest pharmaceutical company, Novo Nordisk, has been targeted in a significant cyberattack. The cyber extortion group FulcrumSec claims to have spent over two months inside the company's network and stolen more than one terabyte of data. According to a Reuters report, the hacking group gained access to Novo Nordisk's systems, collected sensitive information, and later demanded $25 million from the company. After Novo Nordisk allegedly refused to pay, FulcrumSec stated it is now exploring selling parts of the stolen data. Reuters noted that it could not independently verify the authenticity of the information released by the group.
Cyber Group FulcrumSec Claims It Stole Sensitive Company Data
In a message posted on its website, FulcrumSec asserted that it spent more than two months inside Novo Nordisk's network gathering data. The group claims the stolen information includes company source code, internal documents, details related to released and unreleased drugs, clinical trial data, employee records, doctor and patient information, production facility details, and information related to internal AI models. FulcrumSec emerged in October 2025 and has since been linked to several cyber extortion operations.
Novo Nordisk Confirms Cyberattack Claims
A Novo Nordisk spokesperson told Reuters that the company is aware of claims that data allegedly copied from its systems has been published online. The spokesperson stated: 'We are aware of claims that data allegedly copied externally without authorization from our systems has been published online. We take this matter seriously and maintain continued operations of our main platforms. We are in contact with the relevant authorities.' The company added that its major platforms continue to operate normally.
Cyber Group Allegedly Demanded $25 Million
According to the report, FulcrumSec said it contacted Novo Nordisk executives and later demanded $25 million. The group claimed Novo Nordisk refused to pay the ransom demand. Consequently, FulcrumSec said it was 'exploring private sales' of some of the stolen information, including data related to certain drugs and internal company operations. However, the group stated it would not release some categories of information, including data linked to thousands of employees, physicians, and approximately 11,500 pseudonymized clinical trial participants.
