Cyber Incident Victim: Artivion

On November 21, 2024, Artivion—an Atlanta-based medical device manufacturer specializing in cardiac and vascular surgical products—detected a ransomware attack that encrypted company files. The incident prompted immediate containment measures, including the voluntary shutdown of affected systems to prevent further spread. Artivion disclosed the attack in an SEC 8-K filing on November 25, confirming operational disruptions primarily impacting order fulfillment and shipping processes, alongside unspecified corporate functions. Despite these disruptions, the company maintained its ability to deliver products and services to customers, implementing workarounds that largely mitigated the interruptions by the time of the filing. External cybersecurity experts were engaged to assist with forensic analysis, system restoration, and evaluation of potential data breach notification obligations. Artivion emphasized ongoing efforts to securely restore systems but acknowledged unresolved risks, including potential delays in full recovery.

The attack’s financial implications include uninsured costs beyond Artivion’s cyberinsurance coverage, though specific figures remain undisclosed. While immediate operational impacts were contained, the company cautioned that material consequences could still arise depending on restoration timelines. No ransomware group claimed responsibility for the incident as of November 25. Artivion, which reported $95.8 million in Q3 2024 revenue and operates manufacturing facilities in Georgia, Texas, and Germany, highlighted its global reach across 100+ countries but did not specify whether international operations were affected. The incident aligns with broader 2023 trends targeting healthcare manufacturers, including firms like Zoll, Henry Schein, and CardioComm. Artivion’s product lines—aortic stent grafts, surgical sealants, mechanical heart valves, and implantable human tissues—remained in production and distribution throughout the response.