SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Data Breaches

160,000 Impacted by Valsoft Data Breach

VMS firm Valsoft Corporation says the personal information of over 160,000 people was compromised in a February 2025 data breach.

Canada-based vertical market software (VMS) firm Valsoft Corporation (dba AllTrust) is notifying over 160,000 people that their personal information was compromised in a data breach.

The incident, discovered on February 14, involved unauthorized access to a non-production network of AllTrust subsidiary Aspire USA.

“Aspire’s internal security team identified an in-progress file transfer which they were able to interrupt mid-transfer,” the company says in a notification letter to the impacted individuals, a copy of which was submitted to the Maine Attorney General’s Office.

The attackers, the company says, had access to Aspire’s network between February 12 and February 15, and stole certain files during that time.

“While the investigation was able to confirm that certain systems were accessed, it was unable to confirm which specific files within those systems were actually accessed or taken. Aspire also believes their immediate actions stopped the activity in process and that there is minimal risk of harm to individuals,” AllTrust says.

However, the company determined that the impacted systems contained personal information such as names, driver’s license numbers, Social Security numbers, and financial account details.

“Please note that we are not aware of any information which has been subject to actual misuse as a result of this event, and we are notifying you out of an abundance of caution,” the company said in an initial notification letter sent on February 27.

This week, AllTrust told the Maine AGO that 161,359 people were affected by the incident and that it is providing them with 12 months of free credit monitoring services.

Advertisement. Scroll to continue reading.

The company also notes that it has implemented additional security measures and is reviewing existing security policies, and that it has notified the relevant state regulators of the attack.

Related: Kelly Benefits Data Breach Impact Grows to 400,000 Individuals

Related: Ascension Discloses Data Breach Potentially Linked to Cleo Hack

Related: 4 Million Affected by VeriSource Data Breach

Related: African Telecom Giant MTN Group Discloses Data Breach

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

More from

Latest News

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Virtual Event: Threat Detection and Incident Response Summit
May 21, 2025

Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.

Register

Webinar: Cut Through the Noise: Why Context is a Secret Weapon in ASPM
May 29, 2025

Learn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.

Register

People on the Move

Shane Barney has been appointed CISO of password management and PAM solutions provider Keeper Security.

Edge Delta has appointed Joan Pepin as its Chief Information Security Officer.

Vats Srivatsan has been appointed interim CEO of WatchGuard after Prakash Panjwani stepped down.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.