Masimo announces that a cyberattack has disrupted its capacity to meet order demands.
In an unexpected turn of events, Masimo Corp., a leading medical device manufacturer based in Irvine, California, fell victim to a cyberattack on April 27, 2025. The attack, which disrupted certain manufacturing operations, caused temporary delays in order processing and impaired the company’s ability to ship customer orders effectively.
The company immediately contained the incident and isolated the affected systems, engaging external cybersecurity experts and notifying law enforcement. Preliminary investigations suggest that the attack resembled typical ransomware activity, although the exact nature of the attack and the identity of the threat actor remain undisclosed.
Despite the disruption, Masimo confirmed that its cloud-based hospital data systems remained unaffected, and there was no evidence of employee or patient data being compromised. The company has been actively restoring its affected systems, with progress updates filed in SEC reports as of May and June 2025.
The attack has not altered Masimo's financial guidance for fiscal 2025, with the company forecasting revenue of between $1.5 billion and $1.53 billion. The first fiscal quarter, ending on March 29, saw non-GAAP revenue of $371 million and non-GAAP earnings rise 56% to $1.36 a share.
It's worth noting that Masimo had previously announced a strategic review of the Sound United consumer audio business to focus on its core healthcare business. The sale of the Sound United consumer audio business to Harman International for $350 million in cash is still proceeding, subject to certain adjustments.
This attack is part of a broader trend of cyber threats targeting the manufacturing and medical device sectors in 2025. Masimo is working diligently to bring the affected portions of its network back online and restore normal business operations. The company is also working with third-party incident response experts to assess, mitigate, and remediate the attack.
The unauthorized activity on Masimo's network was discovered on April 27. The company has not disclosed further details about the incident, but the internal impacts are evident, as evidenced by a notable resignation by the Chief Operating Officer effective July 1, 2025.
In summary:
- The Masimo cyberattack occurred on April 27, 2025, disrupting certain manufacturing operations and causing temporary delays in order processing. - The attack did not impact Masimo's cloud-based hospital data systems or employee/patient data. - Masimo is working to restore affected systems and coordinate its response with law enforcement. - The attack is part of a broader trend of cyber threats targeting the manufacturing and medical device sectors in 2025. - Masimo's financial guidance for fiscal 2025 remains unchanged, with revenue forecasted between $1.5 billion and $1.53 billion. - The sale of Masimo's Sound United consumer audio business to Harman International is still proceeding. - The company has undergone executive changes during its recovery phase, including a notable resignation by its Chief Operating Officer.
- Masimo's incident response team, upon detecting the cyberattack, immediately isolated the affected systems and engaged external cybersecurity experts to support investigation and remediation efforts.
- Recognizing the role of technology in business operations, Masimo is leveraging incident response strategies to assess, mitigate, and remediate the attack, ensuring its technology infrastructure remains robust and secure.
- In light of the financial impact on various sectors, Masimo's commitment to cybersecurity becomes essential, as businesses grapple with increasingly complex cyber threats in the industry.
