Bristol Myers Squibb Data Breach Investigation

Turke & Strauss LLP, a leading data breach law firm, is investigating Bristol Myers Squibb regarding its recent data breach. The Bristol Myers Squibb data breach involved sensitive personal identifiable information belonging to an undetermined number of individuals.

ABOUT BRISTOL MYERS SQUIBB:

Bristol Myers Squibb is a pharmaceutical manufacturing company located in Lawrence Township, New Jersey. As a pharmaceutical company, Bristol Myers Squibb produces drugs designed to treat cardiovascular disease, various cancers, HIV/AIDS, diabetes, and psychiatric disorders. Founded in 1887, Bristol Myers Squibb began by selling a variety of pills and tablets as well as “elixirs” and wine. Today, Bristol Myers Squibb has grown into one of the largest global manufacturers of pharmaceuticals. Headquartered in Lawrence Township, New Jersey, Bristol Myers Squibb has locations across the east coast of the United States as well as locations in Europe and a location in China. Bristol Myers Squibb employs approximately 36,000 individuals and has an annual revenue of over $46 billion.

WHAT HAPPENED?

On May 31, 2023, Bristol Myers Squibb discovered that it had experienced a data breach in which the sensitive personal identifiable information in its systems may have been accessed. Through its investigation, Bristol Myers Squibb determined that an unauthorized actor may have accessed and obtained this sensitive information through a vulnerability in the MOVEit file transfer application between May 27 and May 31, 2023. On June 29, 2023, Bristol Myers Squibb began contacting individuals whose information may have been impacted. The type of information exposed includes:

• Name
• Social Security number
• Date of birth
• Email address
• Address
• Phone number