West Pharmaceutical Services Confirms Ransomware Breach, SEC Filing Reveals Global Operational Disruption

West Pharmaceutical Services, a major Pennsylvania-based pharmaceutical manufacturer, disclosed a ransomware attack that has disrupted global shipping, receiving, and manufacturing operations. The company filed an 8-K form with the Securities and Exchange Commission (SEC) on Monday evening, revealing that threat actors breached its network on May 4, exfiltrated data, and encrypted critical systems. The incident prompted an immediate shutdown of operations to contain the breach.

According to the company's general counsel, while core enterprise systems have been restored, the timeline for full operational recovery remains uncertain. Critical processes for shipping, receiving, and manufacturing have restarted at some sites, but restoration across all facilities is still in progress. A company spokesperson confirmed to Recorded Future News that the disruption has been global in scope, affecting the company's ability to fulfill orders across multiple regions.

The attack underscores the pharmaceutical sector's growing exposure to ransomware operations, where operational shutdowns carry direct consequences for healthcare supply chains. The 8-K filing signals potential regulatory scrutiny over the company's disclosure timeline and incident response. West Pharmaceutical has not specified what data was exfiltrated or identified the threat actors responsible, leaving questions about potential exposure of proprietary information or sensitive patient-related records. The company stated it is cooperating with law enforcement and has engaged external cybersecurity firms to investigate the breach.