Data breach at Insight Partners due to ransomware

Venture capital firm Insight Partners has announced that the data breach disclosed earlier this year was the result of a ransomware attack. Insight Partners publicly reported on February 18 that it had been the target of a cyberattack. The attack was detected on January 16, and the company stated that there was a possibility that the attackers had accessed confidential data. In fact, on May 6, it was confirmed that personal, financial, and other information relating to employees and partners had been compromised.

Insight Partners has revealed that the attackers first gained access to the company's systems around October 25, 2024, and that the intrusion, detected on January 16, began encrypting files on the compromised servers using ransomware.

On September 2, Insight Partners began sending notifications about the data breach to those affected. The notifications show that the attackers used social engineering to access their servers. Apparently, the hackers had enough time to extract information from the venture capital firm's systems. In total, the data breach is estimated to affect more than 12,000 people.

So far, no known cybercrime group appears to have claimed responsibility for the attack on Insight Partners.