Ransomware victim disclosure
← All victimsOrganon
Claimed by Medusa · listed 9 months ago
Status timeline
- ListedOct 4, 2025
- Data leakeddate unknown
At a glance
- Group
- Medusa
- Status
- Data leaked
- Country
- United States
- Sector
- Healthcare
- Listed on leak site
- Oct 4, 2025
- Data size
- 478.2 GB
- Records
- 10.000 Employees
About the victim
AI dossier — public-source company profileOrganon & Co. is a global pharmaceutical company spun off from Merck & Co. in 2021, headquartered in Jersey City, New Jersey. The company focuses on women's health, biosimilars, and established medicines, operating in more than 140 countries. Organon employs approximately 10,000 people worldwide and is publicly traded on the NYSE.
- Industry
- Pharmaceutical & Women's Health
- Address
- 30 Hudson Street, Floor 33, Jersey City, NJ 07302, United States
- Employees
- 10000+
- Founded
- 2021
Attack summary
Severity: critical — Organon is a major global pharmaceutical company operating in healthcare; 478.2 GB of published data in a regulated sector strongly implies exfiltration of sensitive business, employee PII, and potentially clinical or financial data at scale, meeting the threshold for critical severity.The Medusa ransomware group claims to have exfiltrated approximately 478.2 GB of data from Organon and has published the data (disclosed status: data_published). The nature of the exfiltrated content is not detailed in the truncated leak post, but the volume and sector suggest significant corporate and potentially regulated data.
Data the group says was taken
AI dossier — extracted from the leak post- Corporate files
- Potentially regulated pharmaceutical data
- Potentially employee PII
- Potentially financial records
- Potentially clinical or product data
What the group claims
Organon creates, manufactures and markets innovative prescription medicines that improve the health and quality of human life. Through a combination of innovation and business partnerships, Organon seeks to leverage each of its core therapeutic fields. company is headquartered in 30 Hudson Street, Jersey City, New Jersey 07302, USA. 10,000 Employees. The total amount of data leakage is 478.2 GB
The leak post
captured from the group's siteHuman Verify Human verification required We need to ensure you're a real person. Please solve the captcha below to continue. Verify
Sources
Source
Indexed 9 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

