Ransomware victim disclosure
← All victimsPACIFIC BIOLABS
Claimed by Cicada3301 · listed 1 year ago
Status timeline
- ListedJul 11, 2025
- Data leakeddate unknown
At a glance
- Group
- Cicada3301
- Status
- Data leaked
- Country
- United States
- Sector
- Healthcare
- Listed on leak site
- Jul 11, 2025
- Data size
- 900 GB
About the victim
AI dossier — public-source company profilePacific BioLabs is a preclinical contract research organization (CRO) established in 1972, providing life science testing services for pharmaceutical, biopharmaceutical, and medical device industries. They offer services including manufacturing support, drug development testing, clinical trial bioanalysis, and medical device testing, with ISO 17025 accreditation and cGMP/GLP compliance.
- Industry
- Contract Research Organization (CRO) / Life Science Testing
- Founded
- 1972
Attack summary
Severity: critical — Healthcare/CRO sector with regulated data (clinical trials, drug development); 900 GB exfiltration indicates large-scale data exposure; confirmed data publication by threat actor; potential exposure of sensitive pharmaceutical and medical device data affecting multiple client companies and regulatory bodies.Cicada3301 claims to have exfiltrated 900 GB of data from Pacific BioLabs. No specific data categories are detailed in the available leak post excerpt, though the nature of the company suggests potential exposure of clinical trial data, pharmaceutical development records, and client test results.
Data the group says was taken
AI dossier — extracted from the leak post- Clinical trial data
- Pharmaceutical development records
- Medical device testing reports
- Client study results
- Regulatory submission materials
What the group claims
Status: 19d 16h 47m 12s - Size Data: 900 GB
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

