CYBERCRIME group Lapsus$ claims it hacked AstraZeneca, stating it stole about 3GB of data, including credentials, tokens, internal code repositories (Java, Angular, Python), and employee information. The company has not yet confirmed the breach or publicly addressed the extortion group's claims, according to Security Affairs.
The breach was advertised on a Dark Web forum and appeared on a data leak site associated with LAPSUS$, with the listing claiming the attackers obtained a large archive containing internal data, including source code, infrastructure-related material, and access-linked information, reported SocRadar.
If confirmed, the incident could be one of the most serious healthcare cyber incidents this year, given healthcare organisations’ valuable assets such as intellectual property, sensitive data, and critical infrastructure. The leak appears to represent a substantial internal exposure rather than a minor leak, and the report notes that the breach, if validated, would be framed as a claim by LAPSUS$ through Dark Web channels and related data-leak listings.