Cyber Incident Victim: Nazária Distribuidora Farmacêutica

On May 12, 2025, Nazária Distribuidora Farmacêutica and Drogarias Globo issued notes informing that their systems were targeted by a cyber attack that caused operational instabilities. The notes were published after the attack was identified. They stated that since identification, their technical teams acted with maximum priority on containment and resolution, adopting all necessary security measures to protect data and fully restore services. They emphasized working to normalize service as soon as possible and guaranteeing continuity of commitment. The notes were directed to clients and partners to inform them of the impact on business.

The attack resulted in operational instabilities for both organizations, though the notes did not specify which systems were affected, whether internal data were compromised, or if the two incidents shared a common origin. Both organizations said they immediately identified the foci of instability and reinforced all cybersecurity measures, dedicating their information security teams to the full resumption of activities. No further technical details were disclosed in the public statements.

The article also notes that the Grupo Jorge Batista, which manages the two affected companies, did not issue a statement regarding the incident, and that the Security Report had contacted the group for information on the extent and impact. Separately, the pharmaceutical sector had recently experienced another cyber incident at the Instituto de Pesquisa Nuclear (IPEN), where, according to a CNEN communiqué, a hacker attack forced the paralysis of production and supply of various radiopharmaceuticals, with normal manufacturing resuming only one week later.