Strauss Borrelli PLLC, a leading data breach law firm, is investigating Zydus Pharmaceuticals (USA) Inc. (“Zydus USA”), regarding its recent data breach. The Zydus USA data breach may have involved sensitive personal identifiable information belonging to an undetermined number of individuals.
ABOUT ZYDUS PHARMACEUTICALS (USA) INC.:
Zydus USA is a pharmaceutical manufacturing company based in New Jersey. Founded in 2005, Zydus USA is the US generics division of Zydus Lifesciences Limited and has grown to become one of the top 10 pharmaceutical companies in the US by unbranded dispensed prescriptions.2 To date, Zydus USA has filed over 129 drug master files, received final USFDA approval on 287 Abbreviated New Drug Applications (ANDAs), and has over 85 ANDAs pending approval with the USFDA.3 Additionally, Zydus USA has approximately 300 additional products in various stages of development.3 Headquartered in Pennington, New Jersey, Zydus USA operates over 30 manufacturing facilities in the United States and India.
WHAT HAPPENED?
Recently, Zydus USA reported to the Attorney General of New Hampshire that it had experienced a data breach in which sensitive personal identifiable information in its systems may have been accessed. According to the breach notice, on July 28, 2024, Zydus USA became aware of unauthorized activity within its computer system. As a result, Zydus USA launched an investigation to determine the nature of the incident.
Through its investigation, Zydus USA discovered that sensitive personal information in its systems may have been compromised by an unauthorized third party during the incident. As a result, Zydus USA began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. The exact type of personal information potentially exposed has not been made publicly available by Zydus USA. However, according to state reporting guidelines, “personal information” can include the following types of information:
- Name
- Social Security number
- Driver’s license or other government identification number
- Account number, credit or debit card number, in combination with any required security code, access code, or password that would permit access to an individual’s financial account
On October 29, 2024, Zydus USA began mailing data breach notification letters to impacted individuals. Based on the breach notice sent to New Hampshire residents, Zydus USA is providing affected individuals with a list of the specific types of sensitive information impacted and complimentary credit monitoring services. A link to the form breach notification letters that Zydus USA filed with the Attorney General of New Hampshire is below.
If you received a breach notification letter from Zydus Pharmaceuticals (USA) Inc.:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
