The North American division of Xerox Business Solutions (XBS) suffered a cyber attack, according to a statement from parent company Xerox Corporation. XBS specializes in document technology and services, providing a variety of products including printers, copiers, digital printing systems and consulting services, among others.
Ransomware gang INC Ransom added the corporation to its extortion portal on December 29, claiming to have stolen confidential data and documents from its systems.
After the security incident became public, over the weekend Xerox published a statement on its corporate website. “Recently, Xerox subsidiary Xerox Business Solutions experienced a security incident that was detected and contained by Xerox cybersecurity personnel. The event was limited to XBS in the US. We are actively working with third-party cybersecurity experts to conduct a thorough investigation into this incident and are taking necessary steps to further secure the XBS IT environment.”
The company also states in the note that the attack had no impact on the operations of Xerox or XBS. However, a preliminary investigation indicates that limited personal information was exposed in the attack. Xerox says it will notify all individuals who were affected by this incident.
Data samples shared on data breach website INC Ransom include email messages — with content and addresses exposed — payment details, invoices, completed request forms, and purchase orders. However, the extent of the breach is still unknown.
Xerox previously suffered a ransomware attack in the summer of 2020, when the Maze ransomware group added the company to its list of victims, threatening to publish more than 100 GB of stolen data.
Sources: CisoAdvisor, Xerox
