{"schema_version":"secwatch.filing_event.v1","accession":"0000105770-26-000068","form_type":"8-K","ticker":"WST","cik":"0000105770","company_name":"WEST PHARMACEUTICAL SERVICES INC","filed_at":"2026-05-11T21:06:38+00:00","discovered_at":"2026-05-11T21:08:00.274869+00:00","generated_at":"2026-05-11T21:09:42.327283+00:00","sec_items":["1.05","7.01","99.1","9.01"],"event_type":"cyber","sentiment":"negative","materiality_score":1.0,"calibrated_materiality_score":1.0,"confidence":"high","headline":"West Pharmaceuticals discloses material cyberattack; data exfiltrated, systems encrypted on May 4 2026","bullets":["Incident detected May 4, 2026; determined material on May 7, 2026.","Unauthorized party exfiltrated data and encrypted systems; company took systems offline globally for containment.","Engaged Palo Alto Networks' Unit 42 for investigation, containment, and recovery; law enforcement notified.","Business operations temporarily disrupted globally; core systems restored, but shipping/receiving/manufacturing restarted at some sites only.","Financial and operational impact not yet determined; investigation ongoing."],"urls":{"canonical":"https://secwatch.observer/filing/0000105770-26-000068","json":"https://secwatch.observer/filing/0000105770-26-000068.json","markdown":"https://secwatch.observer/filing/0000105770-26-000068.md","text":"https://secwatch.observer/filing/0000105770-26-000068.txt","edgar_index":"https://www.sec.gov/Archives/edgar/data/105770/000010577026000068/0000105770-26-000068-index.htm","edgar_primary_document":"https://www.sec.gov/Archives/edgar/data/105770/000010577026000068/wst-20260507.htm"},"model":{"generated_by":"deepseek-v4-flash:cloud@v2","generated_at":"2026-05-11T21:09:42.327283+00:00"},"review":{"review_status":"machine_generated","human_reviewed":false,"corrected":false,"correction_note":null,"correction_timestamp":null,"superseded_by":null,"related_filings":[]},"source_grounded_claims":[{"claim_id":"d0feab9e028cc12a18352a2eb4810f202d8f2a10","claim":"WEST PHARMACEUTICAL SERVICES INC disclosed a cybersecurity incident: Cybersecurity attack involving data exfiltration by an unauthorized party and encryption of certain systems. Impact: Temporarily disrupted business operations globally; core enterprise systems restored; shipping, receiving, and manufacturing restarted at some sites with restoration of remaining sites in process; material impact on financial condition and results of operations not yet determined. Company determined it material. Discovered 2026-05-04.","evidence_excerpt":"On May 7, 2026, West Pharmaceutical Services, Inc. (the “Company”) determined that the Company has experienced a material cybersecurity attack, in which certain data was exfiltrated by an unauthorized party and certain systems were encrypted.","evidence_source":"SEC 8-K Item 1.05","evidence_url":"https://www.sec.gov/Archives/edgar/data/105770/000010577026000068/0000105770-26-000068-index.htm","confidence":0.9,"family_label":"Cybersecurity Incidents","details":[{"label":"Nature","value":"Cybersecurity attack involving data exfiltration by an unauthorized party and encryption of certain systems"},{"label":"Impact","value":"Temporarily disrupted business operations globally; core enterprise systems restored; shipping, receiving, and manufacturing restarted at some sites with restoration of remaining sites in process; material impact on financial condition and results of operations not yet determined"},{"label":"Materiality","value":"determined material"},{"label":"Discovery","value":"2026-05-04"}],"fact_type":"cyber_incident"}],"license":"Source filings: public domain (SEC EDGAR). Summaries (headline + bullets): CC-BY-4.0; attribute https://secwatch.observer"}