Pharmaceutical company Inotiv has notified the US Securities and Exchange Commission (SEC) that its business operations took a hit after hackers compromised and encrypted its internal systems. The incident, the organization said in a Form 8-K filing, occurred on 08 August 2025, and prompted Inotiv to initiate containment and remediation processes. “The company’s preliminary investigation determined that a threat actor gained unauthorized access to, and encrypted certain of, the company’s systems,” Inotiv says.
“The cybersecurity incident has caused, and is expected to continue to cause, disruptions to certain business operations of the company,” it continues. According to Inotiv, the ransomware attack prevented it from accessing certain networks and systems, including parts of its internal data storage and internal business applications.
To reduce impact from the incident while working on restoring the affected systems, Inotiv transitioned some of its operations into offline alternatives. “While the company is working diligently to restore affected functions and systems access, the timeline for a full restoration is not yet known,” Inotiv told the SEC.
While the pharmaceutical firm has not shared details on the threat actor responsible for the attack, the Qilin ransomware group claimed the incident on 11 August 2025, when it added Inotiv to its Tor-based leak site. Qilin says it stole roughly 176 gigabytes of data from Inotiv, representing agreements, internal procedures, financial documents, purchase orders, and other business documents. Based in West Lafayette, Indiana, Inotiv is a contract research organization focused on new drugs and medical devices. It has about 2,000 employees.
Red Sky Alliance is a Cyber Threat Analysis and Intelligence Service organization. For questions, comments or assistance, please contact the office directly at 1-844-492-7225, or feedback@redskyalliance.com
Weekly Cyber Intelligence Briefings:
- Reporting: https://www. redskyalliance. org/
- Website: https://www. redskyalliance. com/
- LinkedIn: https://www. linkedin. com/company/64265941
Weekly Cyber Intelligence Briefings:
REDSHORTS - Weekly Cyber Intelligence Briefings
https://attendee.gotowebinar.com/register/5504229295967742989
https://www.securityweek.com/pharmaceutical-company-inotiv-confirms-ransomware-attack/
Comments