Advanced Technology Ventures, a Silicon Valley venture capital firm with more than $1.8 billion in assets under its management, was hit by a ransomware attack in July that saw cybercriminals steal personal information on its private investors or limited partners (LPs).
In a letter to the Maine attorney general’s office, ATV said it became aware of the attack on July 9 after its servers storing financial information had been encrypted by ransomware. By July 26, the ATV learned that data had been stolen from the servers before the files were encrypted, a typical “double extortion” tactic used by ransomware groups, which then threatened to publish the files online if the ransom decrypts the files is not paid.
The letter said ATV believes the names, email addresses, phone numbers, and Social Security numbers of the individual investors in ATV’s funds were stolen in the attack. According to a listing on the Maine attorney general’s data breach notification portal, some 300 individuals were affected by the incident, including one person in Maine.
To the public, venture capital firms often do not disclose all of their LPs — the investors who have thrown millions into an investment vehicle. Several pre-approved names may be included in an announcement, but overall, a company’s private investors try to stay that way: private. The reasons vary, but it comes down to secrecy and a degree of competitive advantage: The firm may not want competitors to know who is backing them, and an investor may not want others to know where their money is going. This particular attack likely stole vital information on a hush-hush part of how venture money works.
ATV said it notified the FBI about the attack. A spokesperson for the FBI did not immediately comment when reached by TechCrunch. ATV’s managing director Mike Carusi did not respond to questions sent by TechCrunch on Monday.