Artivion Discloses Cybersecurity Incident, Impacts Operations and Financial Outlook
Artivion, Inc., a global leader in the development and manufacturing of cardiovascular surgical devices, announced a cybersecurity incident that has disrupted its operations and compromised sensitive data. In a filing with the U.S. Securities and Exchange Commission (SEC), the company detailed the incident and outlined its ongoing response and recovery efforts.
Artivion, renowned for its innovative portfolio of products including stent grafts, heart valves, surgical adhesives, and implantable tissues, confirmed that unauthorized actors gained access to its systems, resulting in the encryption of certain files and unauthorized access to data. Upon discovery of the incident, Artivion immediately activated its incident response plan, which included isolating affected systems, initiating a comprehensive investigation, and engaging leading cybersecurity experts and legal counsel.
The cybersecurity incident has impacted various aspects of Artivionβs operations, including corporate functions, order processing, and product deliveries. While the company has taken steps to mitigate disruptions and restore essential services, it anticipates incurring additional expenses related to recovery efforts, potential regulatory fines, and legal obligations. In its SEC filing, Artivion acknowledged the possibility of protracted recovery timelines and the potential for material impacts on its business operations and financial performance.
While the investigation is ongoing, Artivion confirmed that data stored on affected systems was subject to unauthorized access. The company is working diligently to determine the full scope of the incident, including the specific types of data involved and the potential for data exfiltration. Artivion is committed to fulfilling all notification obligations to affected individuals and regulatory bodies, as required by applicable laws and regulations.
