Intuitive, a biotechnology company manufacturing and marketing surgical robotics, announced it was the victim of a targeted phishing attack. According to a released statement regarding the incident, this phishing attack enabled the threat actor to access “certain internal IT business applications.” The malicious actor gained unauthorized entry by compromising an employee’s access to the organization’s internal network for business administration. 

Compromised information includes: 

• Customer business data
• Customer contact information 
• Intuitive’s corporate data
• Intuitive’s employee data 

Upon discovery of the incident, the organization has taken steps to contain and investigate the incident. Affected customers will receive communication and updates will be given as appropriate. 

At this time, there has been no impact on the company’s operations. Since the company’s network infrastructure is segmented, customer networks are unaffected.