UFP TECHNOLOGIES INC 8-K

What Happened

• UFP Technologies, Inc. (Item 1.05) filed an 8-K on Feb 24, 2026 reporting that it detected suspicious activity in its IT systems on or about Feb 14, 2026. The company isolated affected systems, engaged external cybersecurity advisors, and believes the unauthorized party has been removed and system access restored "in all material respects." The filing was signed by Ronald J. Lataille, Chief Financial Officer and Senior Vice President.

Key Details

• Detection date: on or about February 14, 2026; 8-K filed February 24, 2026.
• Impacted functions: many (but not all) IT systems, including billing and label-making for customer deliveries.
• Data impact: certain Company or Company-related data were reportedly stolen (exfiltrated) or destroyed; investigation continues into whether any personal information was accessed.
• Financial/operational impact: as of the filing date, the incident has not had a material impact on the Company’s financial systems, operations, or financial condition; the company expects a significant portion of direct containment, investigation and remediation costs will be reimbursed by insurance.

Why It Matters

• For investors, this explains an operational disruption risk that affected customer-facing functions (billing/labeling) but, per the company, did not materially affect overall operations or financial condition as of the filing date.
• The scope of any sensitive data exposure, possible regulatory or litigation consequences, and final remediation costs remain uncertain while the investigation continues. The company’s expectation of insurance reimbursement reduces near-term financial risk, but outcomes depend on the ongoing investigation and any required legal/regulatory notifications.