Abbott Laboratories Investigates Cyber Incidents Amid Extortion Threats

Abbott Laboratories Investigates Cyber Incidents Amid Extortion Threats

First seen 17 Jul 2026, 21:52 UTC AbbottCybersecuritydiveBleepingcomputer 84% similarity 51.9

Article Content

Browse articles
ThreatCluster

Abbott Laboratories is probing two cybersecurity incidents involving unauthorized access to its Cancer Diagnostics business and claims of a breach of its LabCentral portal. The Cancer Diagnostics incident was linked to the ShinyHunters extortion gang, which threatened to publish stolen data unless negotiations were initiated by July 21. Abbott confirmed that the incidents are unrelated and do not affect other business operations or financial results. The attackers reportedly gained access through a vishing attack targeting Abbott employees, compromising a Microsoft Entra single sign-on account. ShinyHunters claimed to have stolen over 30 million rows of customer personally identifiable information (PII) from various datasets. Abbott has engaged cybersecurity experts and law enforcement to investigate the breaches and has activated its incident response procedures.

Key Points: • Abbott Laboratories is investigating two separate cybersecurity incidents affecting its Cancer Diagnostics business. • The ShinyHunters extortion gang is threatening to publish stolen data unless negotiations occur by July 21. • Unauthorized access was reportedly gained through a vishing attack targeting Abbott employees.

ThreatCluster AI

Timeline

2026-06-15
Vishing attack targeting Abbott employees
ShinyHunters claimed to have compromised a Microsoft Entra SSO account through a vishing attack on Abbott employees.
BleepingComputer
2026-07-16
Abbott issues statement on cyber incident
Abbott confirmed unauthorized access to internal systems in its Cancer Diagnostics business, stating no impact on other operations.
Abbott
2026-07-17
Abbott discloses cyberattack details
Abbott disclosed the cyberattack on its cancer diagnostics business, confirming unauthorized access and ongoing investigations.
Cybersecuritydive

Community

Browse all →