Insight Partners Warns Thousands Following Ransomware Attack
▼ Summary
– Insight Partners is notifying thousands of individuals whose personal data was stolen in a ransomware attack that occurred after a sophisticated social engineering breach.
– The stolen data includes banking and tax information, personal details of employees and partners, as well as fund and portfolio company information.
– The attackers gained access to the network in October 2024, exfiltrated data, and encrypted servers on January 16, 2025.
– The breach affects 12,657 individuals, who are being offered complimentary credit or identity monitoring services.
– Insight Partners manages over $90 billion in assets and has invested in more than 800 software and technology startups worldwide.
A major cybersecurity incident has impacted Insight Partners, a prominent New York-based venture capital and private equity firm, resulting in the exposure of sensitive personal and financial data belonging to thousands of individuals. The breach, initially disclosed in February, stemmed from a sophisticated social engineering attack that allowed threat actors to infiltrate the company’s network and exfiltrate confidential information.
According to the firm’s investigation, the attackers first gained access to affected servers on or around October 25, 2024. Over the following months, they systematically extracted data before encrypting the compromised servers on January 16, 2025. Insight Partners confirmed that the stolen information includes banking and tax details, personal records of current and former employees, and sensitive data related to limited partners, fund operations, and portfolio companies.
In breach notifications filed with state authorities, the company revealed that the incident affects 12,657 people. Formal notification letters are being mailed to all impacted individuals, along with offers for complimentary credit or identity monitoring services. Those who do not receive a letter by the end of September 2025 are considered unaffected.
No ransomware group has publicly claimed responsibility for the attack as of this reporting. Insight Partners, which manages more than $90 billion in regulatory assets and has a three-decade history of investing in software and tech startups, has not yet responded to multiple requests for comment regarding the breach.
(Source: Bleeping Computer)
