CyberHappenings logo
Home Browse Watchlists Experimental About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

West Pharmaceutical Services sustains cyber intrusion with data theft and partial system encryption

First reported
Last updated
1 unique sources, 1 articles

Summary

Hide ▲

A cyber intrusion against West Pharmaceutical Services, a U.S.-based pharmaceutical manufacturer with over 10,800 employees and annual revenues exceeding $3 billion, resulted in data exfiltration and partial system encryption. The compromise was detected on May 4, 2026, with an SEC filing on May 7, 2026 confirming material impact. The attacker accessed and stole data from the corporate network and encrypted select systems, triggering a global response that included containment measures, law enforcement notification, and engagement of external forensic experts. The incident disrupted global business operations, with core enterprise systems supporting shipping and manufacturing restored and partial manufacturing resumption achieved. Full system restoration remains incomplete, and no timeline or financial impact estimate has been provided.

Timeline

  1. 14.05.2026 01:23 1 articles · 2h ago

    West Pharmaceutical Services discloses material cyberattack with data exfiltration and system encryption

    On May 7, 2026, West Pharmaceutical Services disclosed a cybersecurity incident detected on May 4, 2026, involving unauthorized data exfiltration and system encryption. The company activated containment protocols, notified law enforcement, and engaged Palo Alto Networks’ Unit 42 for incident response and recovery. As of the disclosure, core enterprise systems supporting shipping and manufacturing have been restored with partial manufacturing resumption, while full system restoration and financial impact assessment remain pending.

    Show sources
    Open in new tab

Information Snippets

  • Detection occurred on May 4, 2026, with material disclosure filed on May 7, 2026 via SEC filing.

    First reported: 14.05.2026 01:23
    1 source, 1 article
    Show sources

  • The intrusion led to data exfiltration from the corporate network and encryption of certain systems.

    First reported: 14.05.2026 01:23
    1 source, 1 article
    Show sources

  • West Pharmaceutical Services activated incident response protocols, including isolating global on-premise infrastructure, restricting enterprise system access, and engaging Palo Alto Networks’ Unit 42 for forensic and recovery support.

    First reported: 14.05.2026 01:23
    1 source, 1 article
    Show sources

  • Core enterprise systems supporting shipping and manufacturing have been restored; manufacturing has partially resumed, but full system restoration is pending.

    First reported: 14.05.2026 01:23
    1 source, 1 article
    Show sources

  • No ransomware group has publicly claimed responsibility as of the time of reporting.

    First reported: 14.05.2026 01:23
    1 source, 1 article
    Show sources

  • West Pharmaceutical Services is a publicly traded S&P 500 company with annual revenues exceeding $3 billion and over 10,800 employees globally, specializing in injectable drug packaging and containment systems.

    First reported: 14.05.2026 01:23
    1 source, 1 article
    Show sources