Global IT services provider DXC Technology has confirmed that its subsidiary managed service business, Xchanging, was recently targeted by a ransomware attack.
The company is confident that the attack was isolated to the confines of the Xchanging network, with no data that belongs to the managed services subsidiary for the insurance sector compromised or stolen.
Little information on the timescale of the attack or the scale of resultant disruption has been offered by DXC, but the company confirmed it implemented a series of containment and remediation measures to resolve the situation.
DXC is also working with affected customers to restore access to their operating environment as quickly as possible. This is in addition to a continued dialogue with law enforcement and cyber security agencies.
The company assists global firms with the smooth running of mission-critical systems and operations while also engaging in digital transformation endeavours, and ensuring security and scale across several types of cloud environment. Prominent customers include DreamWorks Animation, Aviva and the NHS.
Xchanging, meanwhile, is a business process and technology services provider and systems integrator, headquartered in London, with customers exclusively in the insurance sector.
Ransomware has been on the rise in recent months in years, causing disruption for a number of high profile targets of late, including Japanese car manufacturer Honda, in June. The ransomware attack forced the company to put manufacturing on hold in some locations.
Another key firm in the IT channel, Cognizant, suffered a large ransomware attack in April 2020, which directly involved internal systems and led to service disruptions for a handful of its clients.
The kind of ransomware that may potentially target your business also varies depending on the sector you’re in and where your business is geographically-based. In the UK, for instance, Leeds-based companies are most likely to fall victim to Rapid ransomware, while GrandCrab ransomware will be the cause for most ransomware attacks in Manchester.
What’s indisputable, however, is that ransomware threats are becoming more present, with a 195% increase in reported incidents between 2018 and 2019.
-
Cleo attack victim list grows as Hertz confirms customer data stolenNews Hertz has confirmed it suffered a data breach as a result of the Cleo zero-day vulnerability in late 2024, with the car rental giant warning that customer data was stolen.
-
Lateral moves in tech: Why leaders should support employee mobilityIn-depth Encouraging staff to switch roles can have long-term benefits for skills in the tech sector
-
Cleo attack victim list grows as Hertz confirms customer data stolen – and security experts say it won't be the last
News Hertz has confirmed it suffered a data breach as a result of the Cleo zero-day vulnerability in late 2024, with the car rental giant warning that customer data was stolen.
-
‘Phishing kits are a force multiplier': Cheap cyber crime kits can be bought on the dark web for less than $25 – and experts warn it’s lowering the barrier of entry for amateur hackersNews Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
Healthcare systems are rife with exploits — and ransomware gangs have noticedNews Nearly nine-in-ten healthcare organizations have medical devices that are vulnerable to exploits, and ransomware groups are taking notice.
-
Alleged LockBit developer extradited to the USNews A Russian-Israeli man has been extradited to the US amid accusations of being a key LockBit ransomware developer.
-
February was the worst month on record for ransomware attacks – and one threat group had a field dayNews February 2025 was the worst month on record for the number of ransomware attacks, according to new research from Bitdefender.
-
CISA issues warning over Medusa ransomware after 300 victims from critical sectors impactedNews The Medusa ransomware as a Service operation compromised twice as many organizations at the start of 2025 compared to 2024
-
Warning issued over prolific 'Ghost' ransomware groupNews The Ghost ransomware group is known to act fast and exploit vulnerabilities in public-facing appliances
-
The Zservers takedown is another big win for law enforcementNews LockBit has been dealt another blow by law enforcement after Dutch police took 127 of its servers offline
