Network infrastructure provider CommScope investigating data leak following ransomware attack

North Carolina-based network infrastructure provider CommScope confirmed that it suffered a ransomware attack late last month and is now investigating claims of stolen information leaked on the dark web.

A spokesperson for the company — which makes products for home networks, broadband networks, venue and campus networks, and outdoor wireless networks — said it discovered during the week of March 27 that hackers had accessed portions of its IT infrastructure. An investigation was started and law enforcement was notified before it was determined that the company was hit with ransomware.

“Our proactive monitoring efforts identified that the group that carried out the attack has claimed to have taken information from our network and posted it on a forum on the dark web,” a spokesperson told Recorded Future News.

“We are working with our third-party experts to validate those claims and to understand the nature of the information at issue as a top priority. We are undergoing a thorough review of any impacted data with all possible speed.”

The CommScope spokesperson claimed there was “no evidence” that customer information was stolen during the ransomware attack and they noted that the company’s services were not interrupted.

“Should we determine sensitive information pertaining to our customers was involved in this incident, we will notify them consistent with our obligations and applicable law,” the spokesperson said.

On Saturday, the notorious Vice Society ransomware group posted the company’s name on its leak site and shared troves of information allegedly stolen from CommScope that included sensitive data on the company’s more than 30,000 employees.

The data included employee passports, as well as invoices, company files, and bank documents.

The company did not respond to requests for comment about the specifics of the data stolen and what protections will be provided to employees.

While Vice Society typically goes after educational institutions, the group has branched out in recent months, attacking the agency that manages Puerto Rico’s water supply, San Francisco’s Bay Area Rapid Transit and Ikea outlets in Kuwait and Morocco.