Pharmaceutical company Inotiv is notifying over 9,500 individuals that their personal information was stolen in a data breach resulting from a ransomware attack.
The incident occurred on August 8 and was blamed for causing disruptions to certain business operations and for preventing access to certain networks and systems, including internal data storage.
In a December 3 filing with the US Securities and Exchange Commission (SEC), the company revealed that it has restored access to its network and systems, and that its investigation into the matter has concluded.
“Between approximately August 5-8, 2025, a threat actor gained unauthorized access to the company’s systems and may have acquired certain data,” Inotiv said.
In a filing with the Maine Attorney General’s Office, the company revealed that the hackers stole personal, financial, and health information pertaining to 9,542 people.
The compromised information, it told the Texas AGO, includes names, addresses, Social Security numbers, driver’s license numbers, ID numbers, credit or debit card numbers, medical and health insurance information, and dates of birth.
The Inotiv data breach impacts current and former employees, employee family members, other individuals who have interacted with the company, as well as companies that were acquired by Inotiv.
The pharmaceutical firm is providing the affected people with 24 months of free credit monitoring and identity theft protection services.
According to Inotiv, the full operational and financial impact of the incident are still being assessed and it is yet unclear if the attack would have a material impact.
Inotiv has not shared information on the threat actor behind the attack. On August 11, however, the Qilin ransomware group added the company to its Tor-based website, claiming the theft of 176 gigabytes of data. The listing has since been removed from the site.
Related: Marquis Data Breach Impacts Over 780,000 People
Related: Personal Information Compromised in Freedom Mobile Data Breach
Related: Arizona Attorney General Sues Chinese Online Retailer Temu Over Data Theft Claims
