The Information Highway

The Information Highway
Font size: +
  Print
2 minutes reading time (336 words)

Xerox says subsidiary XBS U.S. breached after ransomware gang leaks data

350 Hits

The U.S. division of Xerox Business Solutions (XBS) has been compromised by hackers with a limited amount of personal information possibly exposed, according to a statement by the parent company, Xerox Corporation.


XBS specializes in document technology and services, providing various products, including printers, copiers, digital printing systems, and associated consultation and supply services.

INC Ransom ransomware gang added the corporation to its extortion portal on December 29, claiming to have stolen sensitive data and confidential documents from its systems.

After contacting Xerox about the security incident, the company shared a statement over the weekend.

"Recently, Xerox's subsidiary, Xerox Business Solutions, which was detected and contained by Xerox cybersecurity personnel," Xerox said in a statement.

"The event was limited to XBS U.S. We are actively working with third-party cybersecurity experts to conduct a thorough investigation into this incident and are taking necessary steps to further secure the XBS IT environment."

The company says that the attack has had no impact on the Xerox's or XBS' operations. However, a preliminary investigation has indicated that limited personal information was exposed in the attack.

The data samples shared on the INC Ransom data leak site include email communications (with content and addresses exposed), payment details, invoices, filled-out request forms, and purchase orders.


Xerox listed on the INC Ransom data leak site
Source: @omvapt

The threat actors may hold data on multiple XBS clients, partners, and employees, but the extent of the breach remains unknown at this time.

Xerox assures it will notify all affected individuals confirmed to have been impacted by this incident.

It's been noticed that the Xerox entry has been removed from INC Ransom's leak portal for unknown reasons, usually indicative of resumed negotiations between a victim and the threat actors.

Xerox had previously suffered a ransomware attack in the summer of 2020, when the Maze ransomware group added the company to its list of victims, threatening to publish over 100GB of stolen data.

0
How do you feel about this post?
Happy (0)
Love (0)
Surprised (0)
Sad (0)
Angry (0)
Tags:
Xerox Corporation parent company statement XBS Xerox Business Solutions
Online museum collections down after cyberattack o...
Google Groups is ending support for Usenet to comb...

About the author

Bill Toulas

Bill Toulas

Bill Toulas is a technology writer and infosec news reporter with over a decade of experience working on various online publications. An open source advocate and Linux enthusiast, is currently finding pleasure in following hacks, malware campaigns, and data breach incidents, as well as by exploring the intricate ways through which tech is swiftly transforming our lives.
Author's recent posts
More posts from author

Related Posts

 

Comments

No comments made yet. Be the first to submit a comment
Wednesday, 26 June 2024

Captcha Image