Security News > 2021 > January > Hackers leak stolen Pfizer COVID-19 vaccine data online
The European Medicines Agency today revealed that some of the Pfizer/BioNTech COVID-19 vaccine data stolen from its servers in December was leaked online.
"The Agency continues to fully support the criminal investigation into the data breach and to notify any additional entities and individuals whose documents and personal data may have been subject to unauthorized access."
On December 31st, BleepingComputer became aware of threat actors leaking what they claimed was the stolen EMA data on several hacker forums.
Sources in the cybersecurity intelligence community have told BleepingComputer that the leaked stolen data includes email screenshots, EMA peer review comments, Word documents, PDFs, and PowerPoint presentations.
"Today, we were informed by the European Medicines Agency that the agency has been subject to a cyberattack and that some documents relating to the regulatory submission for Pfizer and BioNTech's COVID-19 vaccine candidate, BNT162b2, which has been stored on an EMA server, had been unlawfully accessed," Pfizer's and BioNTech's joint statement said.
EMA also found that the data breach was limited to a single IT application with the attackers primarily targeting data related to COVID-19 medicines and vaccines.