The incransom threat actor has gained access to personal data, electronic signatures, and sensitive financial information of BDO Peru’s department heads, clients, partners, and over 500 companies, exposing serious lapses in information security. This data breach underscores the organization’s inadequate handling of confidential information, impacting Peru.
Incident Details
Information
- Access to personal data of department heads, including electronic signatures, has been obtained.
- Information and signatures of clients, along with accounting data and audit-related materials, are compromised.
- Data on more than 500 companies, including partners and clients, has been accessed.
- The leak reflects poorly on the organization’s handling of confidential information.
- The incident indicates a low level of information security within the organization.
Disclaimer: This post is based on public claims made by the ransomware group "incransom". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.