Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Incidents

Massive Data Breach at Johnson & Johnson

October 19, 2023
Reading Time: 2 mins read
in Incidents

IBM has disclosed a data breach involving the personal information of 631,000 individuals due to a “technical method” that enabled unauthorized access to a third-party database used by a Johnson & Johnson patient medication support platform.

While the breach was publicly revealed last month, it has already led to two proposed federal class action lawsuits against both companies, alleging negligence in protecting sensitive health and personal information. These lawsuits are seeking financial damages for affected individuals and class members, as well as injunctions to enhance data security practices at IBM and Johnson & Johnson. IBM has taken measures to improve security controls and is providing affected individuals with one year of complimentary credit and identity monitoring. This incident underscores the need for robust cybersecurity measures and safeguards in handling sensitive personal data.

The breach was detected by Janssen CarePath, a service offering support resources to patients prescribed Janssen medications by their healthcare providers. Janssen CarePath identified a “technical method” that allowed unauthorized access to a third-party database managed by IBM.

IBM conducted an investigation and found unauthorized access to personal information in the database, although the scope of the access was undetermined. The exposed information includes names, contact details, birthdates, health insurance information, and data about medications and associated conditions, but not Social Security numbers or financial account details. Johnson & Johnson and IBM are facing allegations of negligence in protecting individuals’ protected health information and personal identifiable information.

IBM is collaborating with authorities to resolve the situation and has urged users to update their Google Chrome browsers. The incident underscores the importance of employee cybersecurity training, regular software updates, and strong security practices to safeguard sensitive data.

Cryptocurrency usage is associated with inherent risks, making it crucial for organizations to maintain robust security measures. The breach also highlights that healthcare providers and their partners must remain vigilant against evolving threats to protect patient data effectively.

References:

  • Notice of Data Incident
Tags: Cyber incidentCyber Incidents 2023CybersecurityData BreachIBMJohnson & JohnsonOctober 2023Sensitive dataThird partyThird-Party Vendor
ADVERTISEMENT

Related Posts

Indian Bank Transfer Records Exposed

Indian Bank Transfer Records Exposed

September 26, 2025

Chinese Cyberspies Hit US Defense Firms

September 26, 2025
Indian Bank Transfer Records Exposed

Neon App Shuts Down After Data Leak

September 26, 2025
Morrisroe UK Company Hit By Cyber Attack

Boyd Gaming Reports Data Breach After Attack

September 24, 2025
Morrisroe UK Company Hit By Cyber Attack

Morrisroe UK Company Hit By Cyber Attack

September 24, 2025
Morrisroe UK Company Hit By Cyber Attack

GeoServer Flaw Breaches US Agency Network

September 24, 2025

Latest Alerts

Fake PyPI Login Site Steals Credentials

Google Warns of BRICKSTORM Malware

Hidden WordPress Backdoors Create Admins

Hackers Target AWS and Steal Credentials

SonicWall SMA100 Update Removes Rootkit

BadIIS Malware Spreads Via SEO Poisoning

Subscribe to our newsletter

    Latest Incidents

    Indian Bank Transfer Records Exposed

    Chinese Cyberspies Hit US Defense Firms

    Neon App Shuts Down After Data Leak

    Boyd Gaming Reports Data Breach After Attack

    Morrisroe UK Company Hit By Cyber Attack

    GeoServer Flaw Breaches US Agency Network

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial