Ransomware Group
IdeaLab is notifying individuals impacted by a data breach incident that occurred last October, when hackers accessed sensitive information.
While the organization does not specify the type of attack, the Hunters International ransomware group has claimed responsibility for the breach and has already leaked the stolen data on the dark web.
IdeaLab, a California-based technology startup incubator, has launched over 150 companies since 1996, including GoTo.com, CitySearch, eToys, Authy, Pet.net, Heliogen, and Energy Vault.
As one of the longest-running and most influential venture capital firms in the U.S., the company has consistently generated significant economic impact, job creation, and investment value.
On October 7, 2024, IdeaLab detected suspicious activity on its network. Following that discovery, investigators confirmed that threat actors had gained unauthorized access to its systems three days earlier.
To respond effectively, the company hired third-party cybersecurity experts to assist with the investigation, which concluded on June 26 of this year.
The investigation confirmed that attackers stole data from its systems, affecting current and former employees, current and former support service contractors, and their dependents.
IdeaLab Data
In the sample notification submitted to authorities, IdeaLab did not fully describe the exposed information, stating only that the hackers accessed names in combination with various other types of personal data.
Subsequently, on October 23, 2024—likely following a failed extortion attempt—Hunters International published the stolen data from IdeaLab.
IdeaLab data leaked on the Hunters International website
Source: BleepingComputer
The leak includes 137,000 files totaling 262.8 GB. Although the download link is no longer functional at the time of writing, multiple threat actors most likely downloaded the files earlier.
Earlier today, the threat actor announced the shutdown of Hunters International and removed all company-related entries and files from its extortion portal. They also offered free decryption keys to all of their victims.
Nevertheless, this move may represent a rebranding attempt. Back in April, cybersecurity researchers at Group-IB reported that the threat actor had launched a new, extortion-only operation named World Leaks.
To help mitigate the risks associated with the breach, IdeaLab is offering affected individuals complimentary 24-month coverage for credit protection, identity theft protection, and dark web monitoring services through IDX. Impacted individuals must enroll by October 1.
Source: BleepingComputer. Bill Toulas
Read more at Impreza News
