MathWorks, the software company best known for developing MATLAB and Simulink, has confirmed that a ransomware attack in April resulted in the theft of sensitive data belonging to over 10,000 individuals. The company first disclosed the breach on May 27, linking ongoing service outages to a ransomware incident that affected both internal systems and customer-facing applications.
The attack disrupted key services, including multi-factor authentication (MFA), single sign-on (SSO), the MathWorks cloud center, file exchange, license center, and its online store. According to a filing with Maine’s Attorney General, MathWorks discovered the intrusion on May 18—more than a month after the attackers first gained access.
MATLAB Online. Source: mathworks.com.
The data breach notification reveals that 10,476 people were impacted. Stolen information varied by individual but included names, addresses, dates of birth, Social Security Numbers, and in some cases, non-U.S. national identification numbers. This level of exposure makes victims vulnerable to identity theft, fraud, and further social engineering attacks.
Although MathWorks has acknowledged the ransomware incident, the company has not disclosed the name of the ransomware group behind the attack. No gang has claimed responsibility, which could suggest that negotiations are ongoing or that the ransom may have already been paid.
Founded in 1984 and headquartered in Massachusetts, MathWorks employs over 6,500 people across 34 global offices and serves more than 100,000 organizations and 5 million customers worldwide. Given its prominence in engineering, science, and research communities, the breach has raised concerns about supply chain risks for enterprises relying on its platforms.
The MathWorks breach illustrates the growing scale and impact of ransomware attacks on critical software providers. Organizations should review their own exposure to MathWorks services, monitor for suspicious identity activity among employees, and reinforce zero-trust practices to limit the fallout of potential third-party compromises.
