Biopharma company confirms ransomware attack as 176 GB data trove is posted

Chad Van Alstin | | Health Exec | Cybersecurity
cybersecurity hacker ransomware cyber data breach

An Indiana-based pharmaceutical company confirmed it was hit with a cyberattack that resulted in its data being encrypted by ransomware. An infamous hacker cell claimed credit in a dark web posting, claiming it was able to move sensitive information offsite. 

In a filing with the U.S. Securities and Exchange Commission (SEC), biotech firm Inotiv confirmed an Aug. 8 disruption of its systems was a data breach, and that it’s working with a third-party cybersecurity group to conduct a full investigation. 

The company stated in the Monday filing that it is still working to bring its systems back online, warning regulators and investors that further disruption of normal business operations is possible. 

It says certain on-site data storage servers and software it uses to conduct its core—research and drug development support for large pharmaceutical companies—were accessed during the intrusion. Inotiv added that it has moved some operations offline, “with the aim of reducing disruption” and maintaining business continuity. 

It stopped short of confirming that data was taken. 

Subscribe to Health Exec News

Ransomware group posts data trove

Infamous cybercrime syndicate Qilin, known for its ransomware attacks across various industries, confirmed in a post on its dark web site that it is in possession of 176 GB of data from the breach, totaling 161,967 files. 

According to Cybernews, the group posted nine sample documents, including lab reports, research contracts and financial statements that appear to be from Inotiv. The outlet said the files date back to 2018, and were posted on Aug. 11. 

Other revealed data reportedly includes employee information, including names, hand-written signatures and professional titles. 

The data is now posted for sale. It is not clear if a ransom was ever demanded from Inotiv, nor if they paid it. Its stock price has dropped nearly 12% over the last 5 days. 

HealthExec reached out to the company for comment. 

More Cybersecurity News:

It’s official: Breach of Change Healthcare impacted 193M people
70% of healthcare cyberattacks result in delayed patient care, report finds
103K Medicare beneficiaries issued new IDs after ‘data incident’ at CMS
UnitedHealth subsidiary exposes 5.5M patient records to hackers
Hackers were inside an Iowa hospital’s network for two weeks
Chad Van Alstin Health Imaging Health Exec
Chad Van Alstin

Chad is an award-winning writer and editor with over 15 years of experience working in media. He has a decade-long professional background in healthcare, working as a writer and in public relations.

Related Content

Connecticut Medicaid program hit by data breach impacting 22,500 patients
Data breach on New York public health system claims 1.8M victims, leaking biometric data to hackers
Race tightens between cybersecurity pros in healthcare and cyber bad guys everywhere
Newly developed ransomware accidentally deletes files, making extortion difficult
Hackers say they breached Medtronic's servers—the company confirms access from an 'unauthorized party'
Users on a Discord chat are playing with Mythos, an AI deemed too dangerous for the public

Around the web

Cardiovascular Business
Radiologists: Take the deep dive into advanced cardiovascular CT at SCCT
Cardiovascular Business
Plaque imaging, AI and structural heart disease in the spotlight at SCCT 2026 meeting
Radiology Business
Private equity firm invests in radiology services provider RadX Inc.

Subscribe to Health Exec News

Subscribe to Health Exec News