Now on Demand Ransomware Resilience & Recovery Summit - All Sessions Available
Connect with us

Hi, what are you looking for?


Data Breaches

Xerox Confirms Data Breach at US Subsidiary Following Ransomware Attack

Xerox says personal information was stolen in a cyberattack at US subsidiary Xerox Business Solutions.

Xerox ransomware data breach

Printing solutions giant Xerox over the weekend confirmed that its US-based subsidiary Xerox Business Solutions experienced a data breach.

The incident, the company says, was limited to Xerox Business Solutions US and was contained by its cybersecurity team.

While the attack did not affect Xerox’s corporate systems and had no impact on the company’s operations or data, the investigation launched into the matter determined that personal information was compromised.

“Our preliminary investigation indicates that limited personal information in the XBS environment may have been affected. As per our policy and standard operating procedure, we will notify all affected individuals as required,” Xerox said in an incident notice on its website.

To date, however, the company has not provided details on whether the incident impacts clients, employees, or partners.

Xerox shared no details on the type of cybersecurity incident its subsidiary fell victim to, but the ransomware gang known as Inc Ransom was quick to claim responsibility for the attack.

On December 30, the group listed Xerox on its Tor-based leak site, posting screenshots of documents allegedly stolen from the company, as proof of intrusion.

Since then, however, the entry was taken down, suggesting that Xerox might have engaged in communication with the attackers, to prevent the stolen data from being published online.

Advertisement. Scroll to continue reading.

SecurityWeek has emailed Xerox for additional information on the attack and will update this article as soon as a reply arrives.

Related: LoanCare Notifying 1.3 Million of Data Breach Following Cyberattack on Parent Company

Related: CBS Parent National Amusements Discloses Year-Old Data Breach

Related: Integris Health Data Breach Could Impact Millions

Written By

Ionut Arghire is an international correspondent for SecurityWeek.


Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.


SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.


People on the Move

Bill Dunnion has joined telecommunications giant Mitel as Chief Information Security Officer.

MSSP Dataprise has appointed Nima Khamooshi as Vice President of Cybersecurity.

Backup and recovery firm Keepit has hired Kim Larsen as CISO.

More People On The Move

Expert Insights

Related Content


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Data Breaches

OpenAI has confirmed a ChatGPT data breach on the same day a security firm reported seeing the use of a component affected by an...


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.


A SaaS ransomware attack against a company’s Sharepoint Online was done without using a compromised endpoint.


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.

Data Breaches

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...

CISO Strategy

Okta is blaming the recent hack of its support system on an employee who logged into a personal Google account on a company-managed laptop.

Data Breaches

Delta Dental of California says over 6.9 million individuals were impacted by a data breach caused by the MOVEit hack.