Hackers have published a vast amount of stolen data from CommScope, a U.S. network infrastructure giant. Among the leaked data are thousands of personal records of the company’s employees, including Social Security numbers and bank account information. The company was listed on the dark web leak site of the Vice Society ransomware gang, indicating that efforts to secure a financial ransom failed.
The hackers apparently gained deep access to CommScope’s network, exfiltrating backups of data related to the company’s MyCommScope customer portal and its internal intranet. Some of the data was unencrypted and appeared to include both customer and employee email addresses. The total number of affected employees is unknown, but CommScope employs over 30,000 people globally.
CommScope spokesperson Cheryl Przychodni confirmed that the company detected “unauthorized access to a portion of our IT infrastructure that we determined was the result of a ransomware incident” on March 27. The company immediately launched a forensic investigation with the help of a leading cybersecurity firm and reported the matter to law enforcement.
Przychodni also stated that the company has seen no evidence that customer information was accessed during the breach. However, CommScope declined to answer questions related to the leaked employee data, and it is unclear if the company has notified affected employees. It is also unclear how the company’s systems were compromised or whether it has received any communication from the Vice Society hackers.
The Vice Society ransomware gang first made headlines in 2022 during a series of cyberattacks on the healthcare and education sectors. In one of the biggest breaches, the hackers published a 500GB trove of stolen sensitive data from the Los Angeles Unified School District (LAUSD), including highly personal information of students. Recently, the gang has turned its attention to the manufacturing sector, according to cybersecurity company Trend Micro. The company said Vice Society will likely remain a “significant player” in the ransomware landscape.
In response to the breach, CommScope is working with third-party experts to validate the hackers’ claims and to understand the nature of the information at issue. The company is also conducting a thorough review of any impacted data as a top priority. CommScope emphasized that protecting the security of its employees, customers, and partners is of the utmost importance.