The US arm of Xerox Business Solutions (XBS) suffered a ransomware attack just before the New Year in which hackers stole sensitive information, but the incident reportedly did not disrupt the company’s activities.
a report of beepcomputer I detected that XBS was being added to the data breach site belonging to the INC Ransom threat actor and contacted the company, which provided the following statement:
“Recently, Xerox subsidiary Xerox Business Solutions experienced a security incident that was detected and contained by Xerox cybersecurity personnel. The event was limited to XBS US. “We are actively working with third-party cybersecurity experts to conduct a thorough investigation of this incident and are taking the necessary steps to further protect the XBS IT environment.”
Added and then removed from data leak site.
The statement, later published in the Xerox Editorial Site, further states that the incident did not affect the company’s corporate systems, operations or data. It had no effect on XBS’s operations, the company added. “However, our preliminary investigation indicates that limited personal information in the XBS environment may have been affected. In accordance with our policy and standard operating procedure, we will notify all affected individuals as necessary.”
On the data breach site, INC Ransom said the stolen information includes email communications (both the addresses and content of the emails), payment details, invoices, completed application forms and purchase orders. While it is not clear who the data belongs to, media outlets speculate that it could be from customers, partners and employees.
Shortly after, INC Ransom removed XBS from its website, which could mean that the company paid the ransom demand or continued negotiations.
XBS provides document technology and services, including printers, copiers, digital printing systems, and similar products and services. Last year, the company posted revenue of $1.94 billion, up 9.2% year-over-year or up 13.9% in constant currency.
