Inotiv, a U.S. pharmaceutical contract research organization, said a ransomware intrusion encrypted a portion of its systems and data, disrupting several business operations. The company disclosed the incident occurred on August 8, 2025 and that it has been actively investigating with the help of external security experts while notifying law enforcement.
Inotiv, based in Indiana and employing about 2,000 specialists, said its preliminary review shows a threat actor gained unauthorized access to certain systems and encrypted data. The company disclosed the incident in a filing with the U.S. Securities and Exchange Commission, noting that it has taken steps to contain the breach. For the filing details, see SEC filing.
The attack has been claimed by the Qilin ransomware gang, which said it stole around 162,000 files totaling roughly 176 GB and has published data samples on its own leak site. Inotiv declined to comment on the veracity of the gang’s claims, as the investigation remains ongoing and authorities are involved.
Inotiv has described the impact as limited to certain networks and systems, including databases and internal business applications. To mitigate the outages, the company has migrated some affected operations to offline alternatives while it works to restore affected systems. The company did not provide a timeline for a full recovery.
Inotiv is an Indiana-based firm specializing in drug development, discovery and safety assessment, and it conducts live animal research modeling. The company noted its revenue exceeds $500 million annually and that the disruption affects business operations across several areas, though no broader impact on patient care or clinical trials has been disclosed.