Hackers belonging to the Vice Society ransomware gang published a trove of data stolen from CommScope, a North Carolina-based network infrastructure giant. The data includes internal documents, invoices, technical drawings, and personal information of thousands of CommScope employees, including full names, postal addresses, email addresses, personal numbers, Social Security numbers, and bank account information.
The hackers seemed to have deep access to the company’s network, exfiltrating backups of data concerning its customer portal and internal intranet. The company confirmed the unauthorized access and ransomware incident, adding that it immediately launched an investigation with the help of a leading cybersecurity firm and reported the matter to law enforcement.
It is unclear how many employees have been affected, but CommScope employs over 30,000 people worldwide. CommScope declined to answer questions related to the leaked employee data, and it is uncertain if the company has notified affected employees. The company declined to comment on how its systems were compromised or whether it has received communication from the Vice Society hackers.
CommScope has seen no evidence that customer information was accessed during the breach, but the company did not say if it has the means to determine what data was taken from its systems.
The Vice Society ransomware gang first made headlines in 2022 when it targeted the healthcare and education sectors. In one of its biggest breaches, the gang published a 500GB trove of stolen sensitive data from the Los Angeles Unified School District, including psychological assessments and other highly personal information of students.
The gang recently turned its attention to the manufacturing sector, according to cybersecurity company Trend Micro, which said Vice Society will likely remain a “significant player” in the ransomware landscape.
