Ransomware continues to hit hard, and this time the victim was Inotiv, a U.S.-based pharmaceutical and biotechnology company that confirmed it had been attacked on August 8, 2025. The incident forced the company to disconnect parts of its IT infrastructure and has caused disruptions that are still affecting its operations.
In a report submitted to the U.S. Securities and Exchange Commission (SEC), Inotiv explained that its systems had been compromised and that attackers managed to encrypt critical sections of the network.
As is common in these situations, the company responded by shutting down access, notifying authorities, and hiring external cybersecurity experts to conduct a forensic investigation and reinforce its defenses.
However, the impact has been significant. According to the company:
“The cybersecurity incident has caused — and is expected to continue causing — disruptions in certain business operations, affecting the availability of internal networks, data storage systems, and corporate applications.”
Similar titles: What is Incident Response in Cybersecurity?
Although Inotiv did not name any threat actor, the Qilin ransomware group claimed responsibility for the attack. On their leak site, the cybercriminals stated that they had stolen approximately 162,000 files (176 GB of data) from the pharmaceutical company. They even shared some samples to pressure the company, although their authenticity has not yet been confirmed.
As Inotiv works toward recovery, it has opted to migrate certain critical operations to offline processes to maintain business continuity. There is no specific date yet for when all systems will be fully operational again.
This type of attack highlights an increasingly common pattern: organizations are often forced to implement temporary improvisations while investigating how they were compromised and reinforcing their cybersecurity posture.
Learn more: What Is Ransomware? How to Prevent
Inotiv is a contract research organization (CRO) providing analytical and drug discovery services to pharmaceutical and biotech companies. With over 2,000 specialists and annual revenue nearing $500 million, it's a high-value target for ransomware groups aiming to extract large sums through extortion.
Cases like Inotiv's are a clear reminder that no company is safe, regardless of its size or industry. Ransomware is no longer just about encrypting files — it’s also about stealing and leaking sensitive data, which amplifies legal and reputational damage.
At TecnetOne, we believe the most effective defense is preparation. The key is to:
Investing in prevention will always be more cost-effective than dealing with the aftermath of an attack.