Masimo, a California-based manufacturer of patient monitoring and medical devices, experienced a cyberattack on its on-premises network discovered on April 27. The incident temporarily disrupted the company’s ability to fulfill customer orders, though it clarified that the attack would not materially impact its fiscal 2025 revenue (projected between $1.5B–$1.53B) or its capacity to meet seasonal demand. Critical systems—including order processing, distribution, and shipping—were restored to near-full operational capacity, with ongoing optimizations to address delayed orders. The company engaged third-party forensic experts and law enforcement for investigation and mitigation. While the attack caused operational disruptions, Masimo confirmed its cyber insurance policy would cover most remediation costs. No evidence of data exfiltration, ransomware demands, or compromise of sensitive customer/employee data was reported, limiting the incident’s financial and reputational fallout to temporary logistical delays.
Source: https://www.cybersecuritydive.com/news/masimo-cyberattack-fulfilling-orders/749076/
TPRM report: https://www.rankiteo.com/company/masimo-corporation
"id": "mas5192551112725",
"linkid": "masimo-corporation",
"type": "Cyber Attack",
"date": "4/2025",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Medical Devices (Patient Monitoring)',
'location': 'Irvine, California, USA',
'name': 'Masimo',
'type': 'Public Company'}],
'date_detected': '2024-04-27',
'date_publicly_disclosed': '2024-05-06',
'description': 'Medical device maker Masimo disclosed a cyberattack on its '
'on-premises network, initially impacting order fulfillment '
'but later confirming that manufacturing facilities are '
'running at near-full capacity. The company does not expect '
'the incident to materially affect its fiscal 2025 revenue or '
'ability to meet customer demand. An investigation was '
'launched with third-party forensic experts, and law '
'enforcement was notified. Masimo maintains cyber insurance to '
'cover remediation costs.',
'impact': {'downtime': 'Partial (order fulfillment delays, later resolved)',
'operational_impact': 'Temporary disruption in order processing; '
'manufacturing facilities at near-full '
'capacity during incident',
'revenue_loss': 'None expected (fiscal 2025 revenue outlook '
'reaffirmed: $1.5B–$1.53B)',
'systems_affected': ['on-premises network',
'order fulfillment systems (temporarily)']},
'investigation_status': 'Ongoing (with third-party forensic experts)',
'references': [{'source': 'Masimo SEC Filing (May 6, 2024)'},
{'source': 'Masimo Public Statement (June 2024)'}],
'regulatory_compliance': {'regulatory_notifications': ['U.S. Securities and '
'Exchange Commission '
'(SEC) filing']},
'response': {'communication_strategy': ['SEC filing (May 6, 2024)',
'Public statement (reaffirming '
'financial outlook)'],
'incident_response_plan_activated': True,
'law_enforcement_notified': True,
'recovery_measures': 'Optimization of order taking, '
'distribution, and shipping systems to '
'process delayed orders',
'third_party_assistance': ['forensic experts']},
'title': "Cyberattack on Masimo's On-Premises Network",
'type': 'Cyberattack (Unauthorized Network Activity)'}