Insight Partners, a venture capital firm, has announced plans to inform an unspecified number of individuals about the theft of their personal information during a cyberattack in January.
The firm confirmed in an updated statement that notifications to those affected will commence on a rolling basis within the next few days. The stolen data includes personal information related to current and former employees, as well as information about the firm’s limited partners—investors in Insight’s venture funds whose identities are usually kept confidential.
The compromised data also pertains to certain funds, management companies, and portfolio companies and includes banking and tax details.
This marks the first time Insight Partners has acknowledged the extraction of data during the January cyberattack. The attack has been attributed to a “sophisticated” social engineering incident, although evidence for this claim is yet to be provided, and the exact nature of the attack remains unclear.
A spokesperson for Insight Partners did not immediately respond to requests for comment.
With more than $90 billion in regulated assets under management, Insight Partners is one of the largest tech startup investors globally. The firm has financed cybersecurity companies such as Wiz and Armis.
Insight Partners joins a list of venture capital firms that have faced cyberattacks in recent years. For instance, in 2021, Advanced Technology Ventures, a Silicon Valley firm, experienced a ransomware attack that resulted in the theft of data concerning its limited partners.
