Copy that? Xerox confirms ‘security incident’ at subsidiary

Copy that? Xerox confirms 'security incident' at subsidiary

January 3, 2024 at 08:23AM

Xerox has confirmed a cybersecurity breach at its US subsidiary, XBS, following claims by INC Ransom of data exfiltration. The attack potentially compromised personal information, and Xerox is working with cybersecurity experts to investigate. The group behind the attack, INC Ransom, is known for indiscriminate targeting and previously threatened Xerox with ransom negotiations.

Based on the meeting notes, the key takeaways are:

1. A cyberattack by the INC Ransom group targeted Xerox Business Solutions (XBS) in the US, leading to the exfiltration of confidential files and a potential compromise of limited personal information.

2. Xerox has confirmed that the security incident was contained to XBS and did not impact the company’s corporate systems, operations, or data. They are actively working with cybersecurity experts to investigate the incident and are prioritizing data privacy and protection.

3. The INC Ransom gang, a relative newcomer to the threat landscape, is known for using various techniques to gain access to victims’ networks, and targets victims indiscriminately.

4. There is a possibility that negotiations with the cybercriminal group have been re-engaged by Xerox in an effort to recover the stolen data, potentially avoiding having to rely on paying for a decryptor.

5. Previous cyberattacks on Xerox, including an alleged ransomware attack in 2020 by the Maze gang, indicate a history of cyber threats faced by the company.

These takeaways provide a clear understanding of the cyber incident and the actions being taken by Xerox to address the situation and protect the company’s data and operations.

Full Article