The Novo Nordisk breach shows cyber extortion now targets far more than personal data – what risk and compliance leaders can learn from this 

Key takeaways

• Reuters reported that a cyber extortion group claimed it stole more than 1.3 terabytes of data from Novo Nordisk and attempted a $25m extortion demand. 
• Novo Nordisk confirmed an IT security incident involving unauthorized access to a limited number of internal IT systems and said certain non-public data, including personal data, was copied externally without authorization. 
• Reuters said the claimed data categories go beyond personal data and include proprietary drug information, clinical trial data, source code, internal AI model information and operational technology data. 
• The wider trend is clear: cyber extortion is no longer only about locking systems or leaking customer records  
• For GRC leaders, the practical question is whether cyber risk, data privacy, AI governance and operational resilience are connected enough to support a fast, defensible response. 

What happened at Novo Nordisk? 

Reuters reported that cyber extortion group FulcrumSec claimed it spent more than 2 months inside Novo Nordisk’s network and stole more than 700,000 files, equal to roughly 1.3 terabytes of data. The group also claimed Novo Nordisk refused to pay a $25m extortion demand. Reuters said it could not immediately verify the authenticity of the data posted by the group, so those claims should be treated carefully. 

Novo Nordisk has separately confirmed an IT security incident involving unauthorized access to a limited number of internal IT systems. The company said certain non-public data, including personal data, was copied externally without authorization, and that it is working with external cybersecurity experts and relevant authorities. Novo Nordisk also said its core business operations remain up and running. 

A Novo Nordisk spokesperson told Reuters,  

“We take this matter seriously and maintain continued operations of our main platforms.”  

That distinction matters. Novo Nordisk has confirmed a cybersecurity incident, but it has not confirmed the full scope of the hacking group’s claimed data set. 

The story matters because the claimed target set is much broader than personal data. If confirmed, it shows how cyber extortion can pressure a business through intellectual property, research integrity, AI systems, production data and operational trust. For risk and compliance leaders, this is not only a cyber incident. It is a governance test. 

Why does this breach story go beyond personal data? 

Most breach stories start with personal data exposure. That matters, particularly in healthcare and clinical research, where the information involved can be sensitive and trust is central. But the claimed Novo Nordisk incident points to a wider extortion model. Reuters reported that cyber extortion group FulcrumSec claimed it stole more than 1.3 terabytes of data from Novo Nordisk after spending more than 2 months inside the company’s network.  

The claimed data categories go far beyond ordinary personal information. According to Reuters, FulcrumSec said the data included proprietary information on released and unreleased drugs, clinical trial data, employee, doctor and patient data, company source code, information related to processing facilities and internal AI model information. Novo Nordisk has separately confirmed an IT security incident involving unauthorized access to a limited number of internal IT systems and said certain non-public data, including personal data, was copied externally without authorization. 

That personal data risk still matters. Reuters reported that Novo Nordisk said the potential affected categories may include patient ID, year of birth, sex and health or immunogenicity data. The company also said,  

“The incident affected a limited amount of information related to patients participating in some of our clinical trials.” That keeps the privacy angle firmly in view, but it is only 1 part of the story. 

For risk and compliance leaders, the wider question is what else becomes exposed when cyber extortion moves into research, source code, AI model information and operational data. Privacy impact is important, but leaders also need to assess commercial sensitivity, research integrity, operational exposure, regulatory obligations and trust. If those risk areas are handled separately, the organization may struggle to understand the full business impact quickly enough. 

Is cyber extortion becoming a broader business resilience issue? 

Cyber extortion is no longer only about encryption. Attackers increasingly use stolen data, business disruption, reputational pressure and operational exposure as leverage. The CISA StopRansomware Guide now covers ransomware and data extortion together, reflecting how the response problem has widened beyond restoring locked systems. 

The data backs this up. The Verizon 2026 Data Breach Investigations Report says ransomware was involved in 48% of breaches, while the NCSC and NCA white paper on ransomware and extortion explains that criminal groups have adapted their models to improve efficiency and profit. As the paper puts it, “Ransomware and extortion attacks have expanded dramatically, with cyber criminals adapting their business models to gain efficiencies and maximize profits.” 

That changes the resilience conversation. Backup and recovery remain essential, but they are not enough if attackers have already copied sensitive data before systems are restored. The NCSC’s ransomware-resistant backups guidance says backup services should be assessed in the context of the ransomware threat, but data theft can still create pressure through regulatory exposure, reputational harm, commercial loss and operational uncertainty. 

For GRC leaders, the question is whether the organization can coordinate quickly when cyber extortion cuts across several risk categories at once. Teams need to know what data would create maximum leverage if exposed, which systems hold sensitive research, source code, AI data or operational data, who owns the business decision when extortion involves multiple functions, and how quickly legal, cyber, privacy, compliance, communications and leadership can act together.

Why does clinical trial data raise the stakes? 

Clinical trial data is not ordinary business data. It can involve sensitive health information, research integrity, patient trust and regulatory oversight. In the Novo Nordisk incident, Reuters reported that the company said the incident affected “a limited amount of information related to patients participating in some of our clinical trials.” 

The potential affected categories matter. According to Reuters, Novo Nordisk said these may include patient ID, year of birth, sex and health or immunogenicity data. Novo Nordisk’s own incident update also lists biomarkers and lifestyle factors such as smoking, alcohol use and BMI among the involved categories of personal data about affected patients. 

Novo Nordisk said the exposed data was pseudonymized and that knowledge of patient identity would require access to further information, which was not part of the incident. That is important context. But even where patient identity risk is limited, clinical trial data still creates governance questions because it sits at the intersection of privacy, research integrity, patient confidence and regulatory accountability. 

The wider breach context shows why this cannot be treated as a narrow privacy issue. IBM’s 2025 Cost of a Data Breach Report found the global average cost of a data breach was $4.4m, while IBM’s 2025 report announcement said nearly all organizations studied suffered operational disruption following a breach. For risk leaders, the takeaway is simple: trial data needs to be mapped, access-controlled, monitored and included in incident response planning before an incident happens. 

Why do proprietary drug data and source code matter? 

The claimed Novo Nordisk data categories suggest cyber extortion can directly target enterprise value. Reuters reported that FulcrumSec claimed the data included proprietary information on released and unreleased drugs, as well as company source code. Reuters also made clear that it could not immediately verify the authenticity of the group’s claims, so this should be treated as alleged rather than confirmed. 

If verified, those categories would push the incident beyond privacy and into commercial resilience. Proprietary drug information, unreleased product data and source code can affect IP protection, competitive advantage, research pipelines and technical risk. In a pharmaceutical business, this kind of information is not just sensitive. It can be central to the value and future direction of the organization. 

That wider risk is reflected in recent cyber research. The Verizon 2026 Data Breach Investigations Report says ransomware was involved in 48% of breaches, while IBM’s 2025 Cost of a Data Breach Report announcement found that security incidents involving shadow AI led to intellectual property being compromised in 40% of cases, compared with 33% in the global average. That shows how quickly cyber exposure can become business exposure. 

For GRC leaders, the practical question is whether commercially sensitive information is governed with the same discipline as personal data. Leaders should be asking: 

• Which systems hold commercially sensitive IP? 
• Are access rights proportionate to role and business need? 
• Are source code repositories monitored and protected? 
• Is IP exposure included in cyber incident scenarios? 
• Can incident teams assess commercial sensitivity quickly? 

The response to an incident like this cannot sit with cyber teams alone. If source code or proprietary research is involved, legal, cyber, R&D, commercial, compliance and board stakeholders need a shared view of what has happened, what is exposed and what action is being taken. 

Why does AI model information change the governance conversation? 

The claimed inclusion of internal AI model information makes the Novo Nordisk story especially relevant to AI governance. AI risk is not only about how organizations use AI in the business. It is also about whether AI models, training data, prompts, outputs, source code and model documentation are properly controlled.  

In this case, Reuters reported that FulcrumSec claimed the stolen data included internal AI model information, although Reuters also said it could not immediately verify the authenticity of the group’s claims. 

That detail matters because AI adoption is already moving faster than AI oversight in many organizations. IBM’s 2025 Cost of a Data Breach Report announcement found that 63% of breached organizations either did not have an AI governance policy or were still developing one. IBM also found that 13% of organizations reported breaches of AI models or applications, and 97% of those compromised reported lacking proper AI access controls. 

The impact of AI-related security incidents is not theoretical. IBM found that 60% of AI-related security incidents led to compromised data and 31% led to operational disruption. 

Suja Viswesan, Vice President, Security and Runtime Products at IBM, put the issue clearly:  

“The data shows that a gap between AI adoption and oversight already exists, and threat actors are starting to exploit it.” 

For GRC leaders, the lesson is straightforward. AI assets should be treated as sensitive enterprise assets, not experimental side projects. That means AI governance needs to connect with cyber risk, access control, data classification, source code protection and third-party oversight. If an organization does not know where its AI models sit, who owns them, what data feeds them and what access controls protect them, it cannot confidently manage the risk when an incident occurs. 

Where do organizations usually struggle in cyber extortion response? 

The issue is rarely that no controls exist. The issue is that visibility is fragmented across systems, teams and evidence. A cyber extortion incident can touch privacy, cyber security, AI governance, operational resilience, legal, communications, suppliers and the board at the same time. If those teams are working from different records, different systems and different versions of the truth, response becomes slower and harder to defend. 

Common failure points include: 

• No live inventory of sensitive data assets. 
• Poor mapping between critical systems, business services and accountable owners. 
• AI assets not included in cyber risk registers. 
• Clinical, research or IP data governed separately from enterprise cyber risk. 
• OT risk managed separately from IT risk. 
• Incident evidence spread across emails, tickets, spreadsheets and external advisers. 
• Board reporting focused on status updates, not control effectiveness. 
• Third-party and supplier dependencies missing from response scenarios. 

The wider cyber resilience data shows why this matters. The World Economic Forum Global Cybersecurity Outlook 2026 reported that 65% of large companies by revenue identify third-party and supply chain vulnerabilities as their greatest cyber resilience challenge, up from 54% in 2025. The World Economic Forum also found that only 33% of organizations comprehensively map their supply chain ecosystems and only 27% simulate cyber incidents or conduct recovery exercises. 

The World Economic Forum summarized the direction of travel clearly:  

“Cybersecurity risk in 2026 is accelerating, fueled by advances in AI, deepening geopolitical fragmentation and the complexity of supply chains.”  

For GRC leaders, that makes cyber extortion a visibility problem as much as a technical one. Response depends on speed, ownership and evidence. If teams need to scramble across disconnected systems to understand exposure, the organization is already behind. 

The common failure points are usually practical. Many organizations do not have a live inventory of sensitive data assets.  

That gap matters because cyber extortion does not respect internal reporting lines. As the World Economic Forum puts it,  

“Cybersecurity risk in 2026 is accelerating, fuelled by advances in AI, deepening geopolitical fragmentation and the complexity of supply chains.”  

For GRC leaders, the takeaway is clear: extortion response depends on speed, ownership and evidence. If teams need to scramble across disconnected systems to understand exposure, the organization is already behind. 

What does good cyber extortion readiness look like? 

The CISA StopRansomware Guide frames ransomware and data extortion response around prevention best practices and response planning, which reflects the wider point: preparation cannot start once data has already been copied. 

In practice, that means maintaining a live inventory of sensitive data assets and classifying data by business impact, not just personal data status. Clinical trial data, proprietary research, source code, AI model information and OT data should be included in cyber risk assessments. Systems should be mapped to critical services and business owners, so the organization can quickly understand who needs to act when exposure changes. 

Access and monitoring also matter. Organizations should enforce role-based access controls and least privilege, monitor unusual access, downloads, copying and external transfers, and test incident response against data theft and extortion scenarios, not only encryption. The NCSC’s ransomware-resistant backups guidance says backup services should be assessed in the context of the ransomware threat, but backup resilience is only 1 part of readiness when attackers may already hold sensitive data. 

The response model should also be clear. Legal, privacy, cyber, R&D, operations, communications and leadership teams need defined escalation routes before a crisis. Remediation actions should have owners, deadlines and evidence. Board-level reporting should show risk exposure, control performance, incidents and unresolved actions, not just broad status updates. 

The NCSC and NCA white paper on ransomware and extortion warns that ransomware and extortion attacks can affect every aspect of an organization’s operation, including finances, customer data, operational delivery, trust and reputation. That is why a backup plan is not the same as an extortion readiness plan. Organizations need to prepare for the possibility that the pressure point is not system downtime, but data exposure. 

How can CoreStream GRC help?  

Technology should not replace cyber judgment. It should make risk, control and response information easier to connect. A connected GRC platform helps leaders understand what has happened, who owns the response, what actions are open and what evidence exists. 

CoreStream GRC is designed to help organizations bring governance, risk and compliance activity into a clearer operating model. Instead of managing cyber risks, privacy risks, AI risks, controls, incidents, issues and evidence in separate documents or systems, teams can connect them in 1 place. That gives leaders a more practical view of exposure, ownership and progress when a fast response is needed. 

As Steve Biggs, Head of Infrastructure and Security at CoreStream GRC, puts it: 

“Cyber extortion is becoming a governance problem as much as a security problem. When attackers claim access to personal data, IP, AI model information and operational data, leaders need a connected view of risk, ownership and evidence. Otherwise, the organization may know it has an incident, but not understand the full business impact quickly enough.” 

Explore CoreStream GRC’s IT Risk Management solution or book a GRC workshop to assess whether your current cyber governance model gives leaders the visibility they need when cyber extortion pressure increases. 

Discover our sister company’s cybersecurity services here:

Frequently asked questions on the Novo Nordisk cyber incident