Insight Partners Confirms Data Breach Following January Cyberattack
Venture capital giant Insight Partners has confirmed that personal data was stolen during a cyberattack in January. The firm is notifying affected individuals on a rolling basis.
In an updated statement, Insight Partners disclosed that the stolen data includes personal information belonging to current and former employees. Data relating to the firm's limited partners, the investors in Insight's venture funds, was also compromised.
Additionally, the breach affected information related to certain funds, management companies, and portfolio companies, including sensitive banking and tax information.
While Insight Partners previously attributed the January incident to a "sophisticated" social engineering attack, the specific details of the attack remain unclear. The firm has not yet provided evidence to support the social engineering claim.
This confirmation marks the first time Insight Partners has publicly acknowledged data exfiltration resulting from the January cyberattack.
With over $90 billion in assets under management, Insight Partners is a major tech startup investor, backing cybersecurity companies like Wiz and Armis. This incident highlights the vulnerability of even large, well-resourced firms to cyber threats.
This is not the first cyberattack targeting a venture capital firm. In 2021, Advanced Technology Ventures suffered a ransomware attack that exposed data on its limited partners. The increasing frequency of these attacks underscores the growing need for robust cybersecurity measures within the venture capital industry.
A spokesperson for Insight Partners did not immediately respond to a request for comment.
