The ransomware claim targets Incyte Corporation, a US biopharmaceutical company, with threat actor dragonforce claiming to have breached and exfiltrated data. You have been given clear instructions, reach out to us before it’s too late.. #UnitedStates
Incident Details
- Victim: INCYTE
- Sector: Healthcare
- Country: US
- Actor: dragonforce
- Source: http://z3wqggtxft7id3ibr7srivv5gjof5fwg76slewnzwwakjuf3nlhukdid.onion/blog/?post_uuid=d1477049-52b4-49f0-bbd4-82cb2f93a8d4
- Discovered: 2026-04-22 19:49:18.373939
- Published: 2026-04-21 18:54:19.351917
Information
- INCYTE targeted by the DragonForce ransomware group in the United States.
- Incyte Corporation is a biopharmaceutical company focusing on discovery, development, and commercialization of therapeutics in the U.S.
- JAKAFI — a drug for the treatment of myelofibrosis and polycythemia vera.
- Iclusig — a kinase inhibitor used to treat chronic myeloid leukemia and Philadelphia-chromosome–positive acute lymphoblastic leukemia.
- Extortion message: “You have been given clear instructions, reach out to us before it’s too late.”
Disclaimer: This post is based on public claims made by the ransomware group "dragonforce". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.