- Insight Partners confirms 12,657 people affected in October 2024 Ransomware Attack
- The attackers exfiltrated and encrypted data; But no group has claimed responsibility
- The victims offered an identity protection; No evidence of abusive use of the data reported so far
Months after having undergone a cyber attack and confirmed the theft of data, the venture capital company Insight Partners began to inform the affected people.
The company has submitted a new report to the Maine Prosecutor General’s Office, which also included a copy of the letter sent.
Insight Partners is a global venture capital and investment capital company that invests in software and strong growth technologies. In the letter, he said that when the violation was spotted, how long the attackers have empowered and what they did after having exfiltrating the data.
How to stay safe
“Insight Partners’ investigation on the incident determined that, around October 25 or around October 25, 2024, a threat actor successfully used a sophisticated social engineering attack to access the assigned servers,” said the letter. “Once inside, the threat actor began to exfiltrate data from these servers, and from 10:00 am from the HNE or around 10:00 on January 16, 2025, began to quantify these servers.”
The letter does not indicate who are the actors of the threat or what their requests were. To date, no group has publicly claimed the responsibility of the attack.
Elsewhere in the file, Insight Partners confirmed that exactly 12,657 people had their stolen sensitive information, which included banking and tax information, personal information from current and old employees, information relating to limited partners, as well as funds on funds, management companies and the portfolio company.
The company also said that all victims will be informed by the end of September 2025 and that customers who are not informed by then have not compromised their files.
Insight Partners was founded in 1995, with a head office in New York and offices in London, Tel Aviv and Palo Alto. In April 2025, the company managed approximately $ 90 billion in assets and has so far invested in more than 875 companies worldwide.
To stay safe, the company recommends users to register for additional identity flight services, provided via Experian. They should also modify all corporate and staff passwords, activate multi-factor authentication (MFA) and consider placing a freeze on their credit reports.
At the time of the press, there was no evidence that the files had been mistreated in the wild.
Via Bleeping Compompute
