The Qilin ransomware group has allegedly targeted PathoQuest, a prominent biotechnology research firm with operations in both France and the United States. PathoQuest specializes in next-generation sequencing (NGS) based biosafety testing for global biopharmaceutical companies, playing a crucial role in the characterization and release of biological products. On their leak site, the threat actors claimed responsibility for the attack, stating they have published 147 GB of data, encompassing over 171,000 files, allegedly exfiltrated from the company’s systems.
The data, which the ransomware group claims is now publicly available, appears to be highly sensitive and could severely impact the company’s operations and reputation. The group boasted that the leak could “destroy” the company’s reputation by exposing research data that may differ from what is submitted to regulatory authorities. Samples provided by the attackers suggest the leak includes a wide range of confidential information. The compromised data allegedly includes:
- Proprietary research and development data, including details on ongoing clinical studies and genetic guide sequences.
- Personal data of employees, including signed documents and internal communications.
- Confidential client and supplier information, such as service provider qualification and planning documents for 2025.
- Internal emails and project management trackers detailing company priorities and challenges.
