Insight Partners Confirms Data Breach Involving Sensitive Investor Information

Venture capital firm Insight Partners has disclosed that sensitive employee and limited partner data was compromised during a cyberattack that took place in January 2025.

As a leading global venture capital and private equity firm, Insight Partners specializes in high-growth technology, software, and internet companies, managing assets exceeding $90 billion. The portfolio includes significant investments in over 800 companies around the world, such as Twitter, HelloFresh, and Veeam Software.

On February 18, 2025, Insight Partners issued a statement regarding a cybersecurity incident that occurred on January 16, 2025. The breach involved unauthorized access to certain IT systems, facilitated by a sophisticated social engineering attack.

According to the firm’s communication, the incident was contained within a single day, and there were no disruptions to its business operations. An investigation was initiated to assess the full extent of the breach.

In a more recent update, Insight Partners confirmed the occurrence of a data breach following a thorough examination with the assistance of experts from an eDiscovery vendor. The company is currently in the process of identifying the individuals affected by this breach.

The type of data exposed varies among individuals and investors and may include:

– Fund information
– Management company information
– Portfolio company information
– Banking details
– Tax information
– Personal data of current and former employees
– Information pertaining to Limited Partners

Individuals whose information has been confirmed as compromised will be notified, with communications being dispatched in phases beginning shortly.

In light of this incident, potentially affected parties are advised to change their personal and corporate passwords and enable two-factor authentication (2FA) on all financial accounts. It is also recommended to monitor financial statements and credit reports closely, and consider placing a fraud alert or freeze on accounts.

As of now, Insight Partners has not been identified on any ransomware sites or extortion platforms, leaving the nature of the attack and the identity of the perpetrators still uncertain.