Amarin Corporation

Amarin became aware of media reports suggesting that a database containing information about consumers who use or have expressed interest in Vascepa have been subject to unauthorized access.

Amarin promptly began investigating these reports and determined that the database in question was maintained by the vendor.

The vendor informed them that due to a database misconfiguration, information could have been accessed without proper authorization.

Information in the database subject to unauthorized access and acquisition included names, postal and email addresses, phone numbers, and information about consumers’ use of certain supplements or medications, including Vascepa.

The vendor confirmed the database did not contain Social Security numbers or
financial account information.

Source: https://oag.ca.gov/system/files/Data%20Issue%20-%20Individual%20Notification.pdf

"id": "AMA1599423",
"linkid": "amarin-corporation",
"type": "Data Leak",
"date": "08/2019",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"