Ransomware victim disclosure
← All victimsGreenLight Biosciences
Claimed by Blackbyte · listed 1 year ago
Status timeline
- ListedJul 16, 2025
- Data leakeddate unknown
At a glance
- Group
- Blackbyte
- Status
- Data leaked
- Country
- United States
- Sector
- Technology
- Listed on leak site
- Jul 16, 2025
About the victim
AI dossier — public-source company profileGreenLight Biosciences is a synthetic biology company founded in 2008 and based in Medford, Massachusetts. The company develops a proprietary cell-free RNA production platform for creating high-performing biological products, with a current focus on RNA-based solutions for sustainable agriculture, including insecticides, fungicides, and herbicides. Their commercialized products include Calantha (Colorado potato beetle control) and Norroa (Varroa mite treatment for honeybees).
- Industry
- Synthetic Biology & Agricultural Biotechnology
- Address
- Medford, Massachusetts, United States
- Founded
- 2008
Attack summary
Severity: medium — Data has been published by the threat actor, but no proof files, screenshots, or data inventory details are evident in the available leak post. The company handles proprietary synthetic biology research and product pipeline information which could be valuable intellectual property, but no regulated data categories (PII at scale, medical records, financial data) are confirmed exposed.Blackbyte claims to have compromised GreenLight Biosciences and published data from the breach. No specific details on the scope of exfiltration, operational impact, or data categories are provided in the leak post excerpt.
What the group claims
Founded in 2008, GreenLight Bioscience is a pre-commercial stage synthetic biology company with a proprietary cell-free ribonucleic acid (RNA) production platform for the discovery, development and commercialization of high-performing products. The company is based in Medford, Massachusetts.
Sources
- Victim sitegreenlightbiosciences.com
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

