Blog

VC giant Insight Partners warns thousands after ransomware breach

1 hour ago
1 minute read

New York-based venture capital and private equity firm Insight Partners is notifying thousands of individuals whose personal information was stolen in a ransomware attack.

The company disclosed the cybersecurity incident in February, when it said that a threat actor gained access to its network following a “sophisticated social engineering attack.”

Two months later, Insight Partners confirmed that the attackers had also stolen sensitive data during the breach, including banking and tax information, personal information of current and former employees, information related to limited partners, as well as fund, management company, and portfolio company information.

“Formal notification letters are being mailed to all individuals whose data was impacted, including complimentary credit or identity monitoring services. Please note that, if you have not received a notification letter by the end of September 2025, then we have determined your personal data was not impacted by the incident,” it said in a subsequent statement.

While no ransomware gangs have yet claimed responsibility, Insight Partners revealed in breach notifications filed with California’s attorney general on Monday and first spotted by TechCrunch, that the threat actors breached its network in October and encrypted servers on January 16 after exfiltrating data.

“Insight Partners’ investigation into the incident determined that, on or around October 25, 2024, a threat actor successfully used a sophisticated social engineering attack to gain access to the affected servers,” the company said.

“Once inside, the threat actor began exfiltrating data from these servers, and beginning at or around 10:00 a.m. EST on January 16, 2025, began encrypting these servers.”

In a filing with Maine’s attorney general this week, the company also disclosed that the resulting data breach affects 12,657 individuals.

See also  Hackers breach fintech firm in attempted $130M bank heist

Insight Partners manages over $90 billion in regulatory assets and has invested in more than 800 software and technology startups worldwide throughout its 30-year history.

An Insight Partners spokesperson has not yet responded to several requests for comment from BleepingComputer regarding the incident.


Picus Blue Report 2025

46% of environments had passwords cracked, nearly doubling from 25% last year.

Get the Picus Blue Report 2025 now for a comprehensive look at more findings on prevention, detection, and data exfiltration trends.


Source link

Related posts:

  1. HR giant Workday discloses data breach after Salesforce attack
  2. Google warns Salesloft breach impacted some Workspace accounts
  3. Major US delivery company hit in data breach with full names, SSNs and medical info of thousands exposed online
  4. Pandora confirms data breach amid ongoing Salesforce data theft attacks
Tags
1 hour ago
1 minute read
Back to top button
close