Inotiv Confirms Ransomware Attack on Pharmaceutical Systems
▼ Summary
– Inotiv experienced a ransomware attack in early August that encrypted internal systems and disrupted business operations.
– The Qilin ransomware gang claimed responsibility and stated they stole 176 GB of data including financial records and employee information.
– Inotiv took systems offline, implemented manual workarounds, and engaged cybersecurity experts and law enforcement.
– Experts warn such attacks pose significant risks to operational continuity and intellectual property in healthcare research organizations.
– This incident reflects a broader trend of increasing ransomware attacks targeting healthcare sector data in 2024 and 2025.
Pharmaceutical research company Inotiv has confirmed a significant ransomware attack that disrupted its internal operations earlier this month. The Indiana-based firm detected unauthorized access to its systems on August 8, leading to the encryption of critical data and temporary shutdown of several business functions. While the company has engaged cybersecurity experts and notified law enforcement, full operational recovery remains uncertain.
The Qilin ransomware group publicly claimed responsibility for the breach just three days after the initial detection. On their dark web leak site, they alleged the theft of approximately 176 GB of sensitive information, including financial records, research contracts, and employee details. To support their claims, the group released a selection of sample documents, underscoring the severity of the data exposure.
In response to the attack, Inotiv took immediate containment measures, shifting certain operations to manual processes while investigators work to assess the full scope of the incident. The company has not provided a timeline for restoration, indicating that disruptions may persist for an extended period.
Cybersecurity experts emphasize the dangerous implications of such attacks, particularly within the healthcare and life sciences sectors. Ensar Seker, Chief Information Security Officer at SOCRadar, noted that the encryption of core systems combined with large-scale data exfiltration poses a dual threat to both business continuity and intellectual property security.
The incident reflects a broader trend of cybercriminals targeting organizations that manage extensive datasets across multiple entities. According to Rebecca Moody, Head of Data Research at Comparitech, companies like Inotiv are attractive targets due to their vast repositories of sensitive and proprietary information. She warned that employees and partners should remain vigilant for phishing attempts and monitor accounts for unusual activity.
Globally, ransomware attacks against healthcare and research organizations have already resulted in millions of compromised records this year. The growing focus on data theft—in addition to system encryption—suggests that similar incidents are likely to continue affecting the sector.
Inotiv, which employs around 2,000 people and reported revenues exceeding $490 million last year, continues to manage the aftermath of the attack. The company has yet to issue further public statements regarding the long-term impact on its research activities or client operations.
(Source: InfoSecurity Magazine )
