Skip to main content
Explore our brands An Informa TechTarget Publication
close search
site logo

UFP Technologies investigating cyberattack that impacted company data

The medical device maker warned of short-term shipment delays, but does not see a material impact.

Published Feb. 26, 2026
David Jones's headshot
Reporter
A hand holds a magnifying glass over a digital warning sign with red exclamation marks.
Getty Images

UFP Technologies, a Massachusetts-based medical device maker, said it is investigating a cyberattack in mid-February that led to some of its company data being stolen or potentially destroyed, according to a regulatory filing

The company said the attack, which was detected Feb. 14, impacted most of its IT network, as well as its billing and label-making capabilities for customer deliveries. The company said it was able to continue operations using data backups and implementing contingency plans.

“This was a classic ransomware attack that appeared to have impacted many, but not all, of our IT systems,” Ronald Lataille, chief financial officer at UFP Technologies, said Wednesday on a quarterly conference call with analysts. “Data was taken and then destroyed.”

The company is still trying to figure out how much sensitive information, including personally identifiable data, may have been impacted by the attack, according to the 8-K filing with the Securities and Exchange Commission. However, the company does not currently believe the attack will have a material impact on its financial condition.

UFP Technologies has insurance coverage, and company executives said they believe most of the direct costs related to containing, investigating and mitigating the attack will be reimbursed. The firm is also evaluating what additional regulatory filings will be required. 

Lataille said the company believes that its primary information systems will be restored this week. 

During the conference call, UFB Technologies chairman and CEO R. Jeffrey Bailly told analysts some product shipments might be delayed. 

Lataille said there may be some softness during February due to the attack impact, but the company will be able to make up for that during the month of March.

Filed Under: Breaches, Cyberattacks

Editors' picks

Company Announcements

View all | Post a press release
AU10TIX Enters a New Phase to Support Enterprises Navigating Risk and Regulatory Complexity
From AU10TIX
February 25, 2026
AU10TIX logo
EC-Council Expands AI Certification Portfolio to Strengthen U.S. AI Workforce Readiness and Se…
From EC-Council
February 11, 2026
EC-Council logo
CyberFOX Named a 2026 Best Place to Work by the Tampa Bay Business Journal
From CyberFOX
February 24, 2026
CyberFOX logo
100 Telcos, 1.6 Billion Users, 700 % Growth – Whalebone to Become the Fastest-Growing Cybersec…
From Whalebone
February 09, 2026
Whalebone logo
Editors' picks
Latest in Breaches
This website is owned and operated by Informa TechTarget, a global network that informs, influences and connects the world's technology buyers and sellers.

© 2025 TechTarget, Inc. or its subsidiaries. All rights reserved. An Informa PLC company.
Privacy policy | Terms of use | Take down policy | Cookie Preferences / Do Not Sell