Hackers May Have Grabbed Investor Data from VC Firm Insight Partners in Recent Breach

Venture capital firm Insight Partners says hackers may have downloaded client data in a security breach early this year.

Insight Venture Management, LLC, commonly referred to as Insight Partners, is a global venture capital and private equity firm known for its outbound-driven sourcing model.

The company has over 300 employees and $90 billion in assets under management as of 2025.

Unauthorized third-party access

On Jan. 16, the VC firm detected an intruder accessing “certain Insight information systems through a sophisticated social engineering attack.”

“As soon as this incident was detected, we moved quickly to contain, remediate, and start an investigation within a matter of hours,” said the company’s original breach notice, posted Feb 18. “We notified stakeholders connected to Insight in January to alert them and encourage vigilance and tightened security protocols irrespective of having shared data compromised. We also notified law enforcement in relevant jurisdictions.”

According to the initial warning, Insight had found no evidence that the threat actor still had a foothold in its systems after discovering the breach.

“Further,” it said, “there has been no additional disruption to Insight’s operations as a result of the incident.”

The backer enlisted the help of eDiscovery experts and external legal counsel to conduct a thorough assessment of the incident.

‘We recommend remaining vigilant’

Investigators later uncovered that the intruder may have made off with troves of client data.

In an update this week, the company says:

Based on our investigation to date, we understand that the impacted data may include certain fund, management company, and portfolio company information, banking and tax information, and certain personal information of our current and former employees, as well as information related to our Limited Partners […] We remain committed to providing formal notification to affected individuals as promptly as possible, and will do so on a rolling basis as relevant information becomes available.

The company recommends that clients:

·      change personal and enterprise passwords

·      ensure two-factor authentication is enabled on all financial accounts

·      monitor financial accounts and credit information

·      initiate a fraud alert with credit bureaus and consider placing a freeze on credit reports

“We anticipate that we will begin notifying affected individuals on a rolling basis beginning in the next few days,” the company says.

What to do if your data is caught up in a breach

Anyone affected by a data breach should consider a data monitoring service. Bitdefender Digital Identity Protection lets you know if your data has been compromised or leaked online, what risks you face, and how to protect yourself.

Personal and financial information stolen in breaches fuels socially engineered scams and fraud. When in doubt about a suspicious text, phone call, or social media interaction that cites your personal data, use Scamio, our free, scam-fighting AI bot.

Consider using a security solution on all your personal devices for peace of mind.

You may also want to read:

How Scammers Stole $20 Million by Hacking Emails of Real Estate Agents – Here’s Why Small Firms Must Take Cybersecurity Seriously

US Healthcare Giant Tells Patients to Watch Out Following Cyberattack