Insight Partners Data Breach: Ransomware Attack Exposes Personal Data

Insight Partners Data Breach: Personal Information Compromised

Insight Partners, a prominent venture capital firm, has informed a significant number of individuals, including its limited partners, about a security incident involving the theft of their personal data.

Details of the Incident

The firm released a statement on September 4th, detailing the completion of its review, initiated following a data breach earlier in the year. This breach was characterized as a “social engineering attack,” with further specifics remaining undisclosed.

A formal data breach notification, submitted to California’s attorney general, reveals that unauthorized access occurred in mid-October 2024, targeting Insight’s human resources system.

Ransomware Attack Confirmed

The attackers successfully exfiltrated data from Insight Partners’ servers. Subsequently, on January 16, 2025, systems were encrypted, indicating a ransomware attack.

Separate notification to the Maine attorney general confirms that over 12,600 individuals are affected by this incident.

Data Potentially Compromised

While the exact nature of the stolen data hasn't been publicly disclosed in the breach notification letters, earlier statements from the company provide some clarity.

The compromised information includes data related to Insight Partners’ funds, management companies, and portfolio companies. Banking and tax details were also accessed.

Critically, personal information belonging to both current and former employees, as well as the firm’s limited partners – the investors providing capital – was also taken.

Extortion and Response

Insight Partners has not yet revealed whether a ransom demand was made by the attackers, or if any payment was ultimately made. It is common practice for cybercriminals to demand payment in exchange for not publishing stolen data.

Attempts to reach Kristen Zeck, a spokesperson for Insight Partners, for further comment were unsuccessful prior to publication.

Firm Profile and Industry Context

Insight Partners currently manages assets exceeding $90 billion and has made substantial investments in leading cybersecurity firms, including Databricks and Wiz.

This incident is not isolated; several other venture capital firms have experienced similar attacks in recent years.

Previous Incidents

In 2021, both Advanced Technology Ventures and Sequoia Partners were targeted by ransomware attacks and data breaches, respectively. These incidents also resulted in the compromise of personal information belonging to their limited partners.

This article was updated on September 17th to include additional details regarding the ransomware attack.