West Pharmaceutical discloses ransomware breach, operations disrupted

West Pharmaceutical Services disclosed a ransomware attack in a filing to the Securities and Exchange Commission on Monday evening, confirming that an adversary breached its network on May 4, stole data, and encrypted systems. The company supplies containment and delivery systems for injectable drugs and medical devices.

The breach has disrupted business operations, though the company has not specified which production lines or customer relationships are affected. West Pharmaceutical reported the incident eight days after the initial intrusion, meeting SEC disclosure requirements for material cybersecurity events.

The attack adds pressure to pharmaceutical supply chains already strained by consolidation and single-source dependencies. West Pharmaceutical serves major drug manufacturers globally, and any prolonged disruption could delay production of injectable medications, vaccines, and biologics that rely on specialized containment systems.

• 01Pharmaceutical manufacturers relying on West components face potential production delays
• 02Healthcare providers may experience shortages of injectable drugs if disruption extends
• 03Insurers and risk managers should review supply chain concentration in medical device sectors
• 04Regulators may scrutinize West's incident response timeline and customer notification protocols