AstraZeneca is strengthening its cybersecurity following a cyberattack

In March 2026, the pharmaceutical company AstraZeneca suffered a major cyberattack that resulted in the disruption of its IT systems and the theft of confidential data. Although AstraZeneca has not issued an official statement confirming all the details, the attack raised serious concerns due to the nature of the data involved and the vulnerability of technology infrastructures at large corporations.
The cyberattack, allegedly carried out by the hacker group LAPSUS$, resulted in the exfiltration of approximately 3 GB of data, including internal source code, access credentials, and other highly confidential files. According to initial reports, the stolen information does not include data related to patients or customers, suggesting that the impact may have been limited in terms of end-user privacy. However, the theft of technical data and infrastructure jeopardizes the security of the systems and the company’s reputation. So far, AstraZeneca has not disclosed the measures it has taken, and it has not been publicly confirmed whether the attackers have attempted to sell the data on the dark web.
Despite the attackers’ claims that they have put the data up for sale, there have been no official reports of any direct impact on business operations or relationships with third parties. The situation is still unfolding, and it is possible that further details will be released in the coming weeks or that the company will issue a detailed statement regarding corrective actions and ongoing investigations.