>
A10 Networks has confirmed that it has suffered a data breach involving a popular ransomware (opens in new tab) group infiltrated his system, deployed malware and stole sensitive company data.
The application delivery controller manufacturer filed a K-8 form with the Securities and Exchange Commission (SEC), describing a security incident that occurred on January 23, 2023.
During the incident, a threat actor accessed the company’s shared drives, installed malware, and took data related to human resources, finance, and legal issues. However, the attack was reportedly quickly contained and did not affect the company’s operations or its customers.
Does not affect customers
“Working with outside experts, the company managed to contain the attack within its network and notified the appropriate law enforcement authorities of the incident,” A10 said in the filing. “The company does not currently expect this incident to have a material impact on its business.”
At the same time, the Play ransomware operators added A10 Networks data to their leak site and threatened to release it. The attackers claim that the database contains sensitive information such as technical data, employee and customer data, agreements and personal information.
A10 Networks is a company that builds application delivery controllers based in San Jose, California. It also offers firewalls and distributed denial of service (DDoS) security solutions. According to the company, it has customers in 117 countries around the world, including a number of high-profile technology and telecom customers, such as Yahoo, Deutsche Telekom, Twitter, Samsung, Sony Pictures and more.
Other than the K-8 filing, the company has not further discussed the incident with the media.
Play is a relatively young ransomware operator (first spotted in the early summer of 2022), but has already made a name for itself after successfully targeting a number of government organizations in Latin America.
Through: Beeping computer (opens in new tab)