Husain Parvez
Published on: September 4, 2025
MathWorks, the maker of MATLAB and Simulink, has confirmed that a ransomware attack earlier this year disrupted its core services and stole sensitive data belonging to more than 10,000 individuals.
The incident, first detected on May 18, knocked out access to multiple MathWorks applications, including MATLAB Online, MATLAB Mobile, licensing services, account SSO, and the company’s online store. The Massachusetts-based firm initially described the outage as a technical issue before confirming days later that ransomware was the root cause.
“Some of our online applications used by customers became unavailable, and certain internal systems used by staff became unavailable, beginning on Sunday, May 18,” the company said, adding that it has since restored many systems with the assistance of cybersecurity experts.
In filings with the Maine Attorney General’s Office, MathWorks revealed that the attackers had been active inside its network since mid-April, exfiltrating documents with personal data on 10,476 people. Depending on the individual, the stolen information may include names, addresses, dates of birth, Social Security Numbers, and other national ID numbers.
The company said in its disclosure, “We have brought many of these systems back online and are continuing to bring other systems back online,” but it did not share details on the threat actor or whether ransom negotiations had taken place.
No ransomware group has claimed responsibility, an unusual move that has fueled speculation about behind-the-scenes dealings. Security experts note that the absence of a public claim often suggests that negotiations are ongoing or that a ransom may have already been paid.
MathWorks has begun notifying affected individuals and is offering them two years of complimentary identity protection services, including credit monitoring and insurance coverage. While the company emphasized there is no evidence yet of misuse, it urged vigilance against fraud and identity theft.
The breach marks one of the most significant attacks against a US engineering software vendor in recent years, with potential ripple effects across the 100,000 organizations and more than five million users who rely on MATLAB and Simulink worldwide.
