CommScope Employee Data Published Online Following Ransomware Attack

Thousands of employees' bank account details and social security numbers have been published online following a breach at network infrastructure giant CommScope. Documents leaked include internal documents, invoices, and technical drawings. Invaluable personal data was leaked for thousands of CommScope employees, which included full names, postal addresses, email addresses, bank account information and Social Security numbers. Some scans of employee passports and visas were also among the documents leaked to the dark web.

The Vice Society ransomware gang has claimed responsibility for the attack, with the hackers appearing to gain deep access to the company’s internal network, before exfiltrating backups of data pertaining to CommScope's 'MyCommScope' customer portal. Of note was that some of the confidential data exfiltrated had no level of encryption whatsoever.

CommScope spokesperson Cheryl Przychodni confirmed that the company detected "unauthorized access to a portion of our IT infrastructure that we determined was the result of a ransomware incident" on March 27th. "Upon discovery, we immediately launched a forensic investigation with the assistance of a leading cybersecurity firm and reported the matter to law enforcement," Przychodni said. "We are working with our third-party experts to validate those claims, and to understand the nature of the information at issue as a top priority. We are undergoing a thorough review of any impacted data with all possible speed."

CommScope declined to answer questions related to the leaked employee data, and it’s currently unclear if the company has notified affected employees. Additionally, CommScope declined to answer questions on whether the company has any tools such as access logs to determine exactly what data was exfiltrated from its systems. It is also unclear whether or not CommScope had received any communication from the Vice Society hackers prior to their publication.