penligent.ai • 2w
Novo Nordisk Breach: GitHub Secrets Management Failure Exploited by FulcrumSec
The threat actor group FulcrumSec successfully compromised Novo Nordisk's internal IT infrastructure by exploiting mismanaged or exposed credentials within GitHub repositories. This failure in secrets management served as the initial entry vector, allowing the actor to exfiltrate approximately 1.3TB of highly sensitive data. The stolen dataset includes proprietary pharmaceutical research, internal IT system logs, and confidential patient information from clinical trials. Following Novo Nordisk's refusal to meet a $25 million ransom demand, FulcrumSec initiated a public data leak to maximize extortionary pressure, highlighting the critical risks of improper credential lifecycle management in DevOps workflows.