Infosys BPM
Company Details
Linkedin ID:
infosys-bpm
Website:
Employees number:
41,762
Number of followers:
2,055,276
NAICS:
5415
Industry Type:
Homepage:
infosysbpm.com
IP Addresses:
0
Company ID:
INF_1064000
Scan Status:
In-progress
Infosys BPM Company CyberSecurity Posture
infosysbpm.com
Infosys BPM Ltd., the business process management subsidiary of Infosys Ltd. (NYSE: INFY), was set up in April 2002. Infosys BPM focuses on integrated end-to-end outsourcing and delivers transformational benefits to its clients through reduced costs, ongoing productivity improvements, and process re-engineering. Infosys BPM operates in India, Poland, the Czech Republic, the Netherlands, Ireland, South Africa, Brazil, Mexico, Costa Rica, the United States, Puerto Rico, China, the Philippines, Singapore, and Australia. Infosys BPM has been consistently ranked among the leading BPM companies and has received over 60 awards and recognitions in the last 5 years from key industry bodies and forums like the International Association of Outsourcing Professionals, Outsourcing Center, SSON, and NOA, among others. Infosys BPM also has very robust people practices, as substantiated by the various HR-specific awards it has won over the years. The company has consistently been ranked among the top employers of choice, on the basis of its industry-leading HR best practices. The company’s senior leaders contribute widely to industry forums as BPO strategists.
Infosys BPM A.I CyberSecurity Scoring
Infosys BPM Risk Score (AI oriented)Between 800 and 849
Infosys BPM
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Infosys BPM Global Score (TPRM)XXXX
Infosys BPM
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Infosys BPM Company CyberSecurity News & History
Past Incidents
6
Attack Types
2
Infosys McCamish Systems LLC
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The Maine Office of the Attorney General reported a data breach involving Infosys McCamish Systems LLC (IMS) on August 13, 2024. The breach occurred between October 29, 2023, and November 2, 2023, and affected 6,078,263 individuals in total, with 11,866 residents impacted in Maine. The incident was classified as an external system breach (hacking).
Infosys McCamish Systems LLC
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: On February 2, 2024, the Montana Department of Justice reported a data breach involving Infosys McCamish Systems LLC (IMS) that occurred on November 3, 2023. The breach involved unauthorized access to IMS systems, potentially compromising personal information related to deferred compensation plans affecting 52 residents.
Infosys McCamish Systems
Ransomware
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: Infosys McCamish Systems experienced a data breach resulting from a LockBit ransomware attack, impacting over 6 million individuals. The breach saw unauthorized access to a substantial amount of sensitive personal data, including names, Social Security numbers, medical information, financial account information, and passport numbers. The incident led to the non-availability of certain applications and systems, and subsequent restoration and security measures resulted in at least $30 million in losses for the company. Additional costs are anticipated due to potential indemnities or damage claims.
Infosys McCamish Systems, LLC
Ransomware
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The Maine Office of the Attorney General reported that Infosys McCamish Systems, LLC (IMS) experienced a data breach involving ransomware, affecting the personal information of 11,866 Maine residents. The breach was discovered on November 2, 2023, and the company began notifying individuals on June 27, 2024. Approximately 6,078,263 individuals were affected in total and identity theft protection services were offered for 24 months via Kroll.
Infosys McCamish Systems LLC
Ransomware
Rankiteo Explanation
Attack threatening the organization’s existence
Description: In late 2023, Infosys McCamish Systems LLC suffered a **ransomware attack** that led to a **massive data breach**, compromising the **personal, biometric, financial, and protected health information** of approximately **3.7 million individuals** in the U.S. The breach exposed sensitive data, resulting in a **$17.5 million class-action settlement** to address claims of **identity theft risks, financial fraud, and inadequate security measures**. Victims were offered **up to $6,000 in reimbursements** for documented losses (e.g., fraud, legal fees, credit monitoring) and **two years of credit monitoring with $1 million identity theft insurance**. The lawsuit alleged **failure to protect data and delayed breach notifications**, though the company denied liability. The attack’s scale and the **highly sensitive nature of leaked data**—including health and financial records—posed severe risks to affected individuals, leading to legal and reputational consequences for the company.
Infosys McCamish Systems, LLC
Ransomware
Rankiteo Explanation
Attack threatening the organization's existence
Description: On **November 2, 2023**, Infosys McCamish Systems, LLC fell victim to a **ransomware attack** that encrypted critical systems, compromising personal information of individuals. The exposed data included **names**, though the exact number of affected individuals remains undisclosed. The incident was formally reported to the **California Office of the Attorney General** on **July 19, 2024**, nearly eight months after the breach occurred. The delay in disclosure raises concerns about the company’s incident response timeline and potential risks to affected parties, such as identity theft or phishing attempts targeting the leaked personal details. While the full scope of the attack—including whether additional sensitive data (e.g., financial records, Social Security numbers) was accessed—has not been confirmed, the encryption of systems suggests operational disruptions. Ransomware attacks of this nature often involve threats of data exfiltration or permanent encryption unless a ransom is paid, though the report does not specify whether such demands were made or met.
Infosys BPM Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Infosys BPM
Incidents vs IT Services and IT Consulting Industry Average (This Year)
No incidents recorded for Infosys BPM in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Infosys BPM in 2025.
Incident Types Infosys BPM vs IT Services and IT Consulting Industry Avg (This Year)
No incidents recorded for Infosys BPM in 2025.
Incident History — Infosys BPM (X = Date, Y = Severity)
Infosys BPM cyber incidents detection timeline including parent company and subsidiaries
Infosys BPM Company Subsidiaries
Infosys BPM Ltd., the business process management subsidiary of Infosys Ltd. (NYSE: INFY), was set up in April 2002. Infosys BPM focuses on integrated end-to-end outsourcing and delivers transformational benefits to its clients through reduced costs, ongoing productivity improvements, and process re-engineering. Infosys BPM operates in India, Poland, the Czech Republic, the Netherlands, Ireland, South Africa, Brazil, Mexico, Costa Rica, the United States, Puerto Rico, China, the Philippines, Singapore, and Australia. Infosys BPM has been consistently ranked among the leading BPM companies and has received over 60 awards and recognitions in the last 5 years from key industry bodies and forums like the International Association of Outsourcing Professionals, Outsourcing Center, SSON, and NOA, among others. Infosys BPM also has very robust people practices, as substantiated by the various HR-specific awards it has won over the years. The company has consistently been ranked among the top employers of choice, on the basis of its industry-leading HR best practices. The company’s senior leaders contribute widely to industry forums as BPO strategists.
Loading...
Infosys BPM Similar Companies
IGT Solutions
IGT Solutions is a next-gen customer experience (CX) company, defining and delivering AI-led transformative experiences for the global and most innovative brands using digital technologies. With the combination of Digital and Human Intelligence, IGT becomes the preferred partner for managing end-to-
Engineering Group
Engineering Group is the Digital Transformation Company, leader in Italy and expanding its global footprint, with around 14,000 associates and with over 80 offices spread across Europe, the United States, and South America and global delivery. The Engineering Group, consisting of over 70 companies
Dimension Data is a leading African born technology provider operating in the Middle East and Africa, offering a portfolio of services including systems integration, managed services infrastructure, cloud solutions, business applications, customer experience, and intelligent security solutions. We p
SoftwareOne
SoftwareOne is a leading global software and cloud solutions provider that is redefining how companies build, buy and manage everything in the cloud. By helping clients to migrate and modernize their workloads and applications – and in parallel, to navigate and optimize the resulting software and cl
Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients’ most complex digital transformation needs. Leveraging our holistic portfolio of capabilities in consulting, design, engineering, a
NTT DATA, Inc.
NTT DATA, Inc. is a trusted global innovator of business and technology services. We're committed to helping clients innovate, optimize and transform for long-term success. Our R&D investments help organizations and society move confidently and sustainably into the digital future. As a Global Top Em
Zoom
Bring teams together, reimagine workspaces, engage new audiences, and delight your customers –– all on the Zoom AI-first work platform you know and love. 💙 Zoomies help people stay connected so they can get more done together. We set out on a mission to make video communications frictionless and se
CACI International Inc
At CACI International Inc (NYSE: CACI), our 25,000 talented and dynamic employees are ever vigilant in delivering distinctive expertise and technology to meet our customers’ greatest challenges in national security. We are a company of good character, relentless innovation, and long-standing excelle
Minsait
We are one of the world's leading consultancies in technological services for companies and the public sector. With headquarters in Spain and presence in more than 100 countries, we combine experience in AI, data, cloud and cybersecurity to help companies and organizations generate a positive impact
.png)
Infosys BPM CyberSecurity News
August 07, 2025 07:00 AM
Infosys Shares Worth Rs. 100.51 Crores Traded in NSE Block Deal
A significant block trade of Infosys shares occurred on the National Stock Exchange (NSE). The transaction involved 702295 shares at Rs.
August 06, 2025 07:00 AM
Infosys Unveils Advanced AI and Cybersecurity Center in Hubballi, Boosting Regional Innovation
Infosys has opened a new Center for Advanced AI, Cybersecurity, and Space Technology at its Hubballi Development Center in North Karnataka.
July 14, 2025 09:03 AM
Bad news for Narayana Murthy, Infosys to pay fine of Rs 10000000 for not providing…, IT company enters into…
Under the proposed terms, Narayana Murthy led Infosys McCamish Systems had agreed to pay USD 17.5 million into a fund to settle all the pending class action...
July 14, 2025 07:00 AM
Infosys McCamish to pay $125,000 penalty in US cybersecurity breach case
Infosys McCamish Systems (IMS), a subsidiary of Infosys BPM, and the State of Vermont, Department of Financial Regulation (DFR) have entered...
July 14, 2025 07:00 AM
Infosys unit in US to pay $125,000 penalty in cybersecurity probe
BENGALURU: Infosys McCamish Systems (IMS), a subsidiary of Infosys BPM, entered a stipulation and consent order with the State of Vermont's...
July 11, 2025 07:00 AM
Infosys Subsidiary Settles Cybersecurity Allegations in Vermont for $125,000
Infosys McCamish Systems (IMS), a subsidiary of Infosys BPM Limited, has agreed to pay a $125000 administrative penalty to settle...
May 02, 2025 07:00 AM
Infosys completes acquisition of Australian cybersecurity firm The Missing Link
The acquisition strengthens Infosys' cybersecurity capabilities while bolstering its presence in the fast-growing Australian market,...
March 17, 2025 07:00 AM
Infosys McCamish resolves class action lawsuits with $17.5m payment
Infosys McCamish Systems agreed to a $17.5m settlement to resolve ongoing class action lawsuits stemming from a 2023 cybersecurity incident.
March 16, 2025 07:00 AM
Infosys’ US Unit Fined ₹150 Crore For Cybersecurity Breach
Infosys McCamish Systems (IMS), a subsidiary of Infosys BPM, has agreed to pay $17.5 million (₹150 crore) to settle lawsuits related to a 2023 cybersecurity...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Infosys BPM CyberSecurity History Information
Official Website of Infosys BPM
The official website of Infosys BPM is https://www.infosysbpm.com.
Infosys BPM’s AI-Generated Cybersecurity Score
According to Rankiteo, Infosys BPM’s AI-generated cybersecurity score is 812, reflecting their Good security posture.
How many security badges does Infosys BPM’ have ?
According to Rankiteo, Infosys BPM currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Infosys BPM have SOC 2 Type 1 certification ?
According to Rankiteo, Infosys BPM is not certified under SOC 2 Type 1.
Does Infosys BPM have SOC 2 Type 2 certification ?
According to Rankiteo, Infosys BPM does not hold a SOC 2 Type 2 certification.
Does Infosys BPM comply with GDPR ?
According to Rankiteo, Infosys BPM is not listed as GDPR compliant.
Does Infosys BPM have PCI DSS certification ?
According to Rankiteo, Infosys BPM does not currently maintain PCI DSS compliance.
Does Infosys BPM comply with HIPAA ?
According to Rankiteo, Infosys BPM is not compliant with HIPAA regulations.
Does Infosys BPM have ISO 27001 certification ?
According to Rankiteo,Infosys BPM is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Infosys BPM
Infosys BPM operates primarily in the IT Services and IT Consulting industry.
Number of Employees at Infosys BPM
Infosys BPM employs approximately 41,762 people worldwide.
Subsidiaries Owned by Infosys BPM
Infosys BPM presently has no subsidiaries across any sectors.
Infosys BPM’s LinkedIn Followers
Infosys BPM’s official LinkedIn profile has approximately 2,055,276 followers.
NAICS Classification of Infosys BPM
Infosys BPM is classified under the NAICS code 5415, which corresponds to Computer Systems Design and Related Services.
Infosys BPM’s Presence on Crunchbase
No, Infosys BPM does not have a profile on Crunchbase.
Infosys BPM’s Presence on LinkedIn
Yes, Infosys BPM maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/infosys-bpm.
Cybersecurity Incidents Involving Infosys BPM
As of December 10, 2025, Rankiteo reports that Infosys BPM has experienced 6 cybersecurity incidents.
Number of Peer and Competitor Companies
Infosys BPM has an estimated 37,378 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Infosys BPM ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach and Ransomware.
What was the total financial impact of these incidents on Infosys BPM ?
Total Financial Loss: The total financial loss from these incidents is estimated to be $47.50 million.
How does Infosys BPM detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with kroll, and incident response plan activated with yes (settlement implies post-breach actions), and third party assistance with kroll settlement administration llc (claims processing), and remediation measures with class action settlement ($17.5m), remediation measures with credit monitoring for affected individuals, and communication strategy with settlement notices to class members, communication strategy with public disclosure via settlement website..
Incident Details
Can you provide details on each incident ?
Title: Infosys McCamish Systems Data Breach
Description: Infosys McCamish Systems experienced a data breach resulting from a LockBit ransomware attack, impacting over 6 million individuals. The breach saw unauthorized access to a substantial amount of sensitive personal data, including names, Social Security numbers, medical information, financial account information, and passport numbers. The incident led to the non-availability of certain applications and systems, and subsequent restoration and security measures resulted in at least $30 million in losses for the company. Additional costs are anticipated due to potential indemnities or damage claims.
Type: Data Breach
Attack Vector: Ransomware
Threat Actor: LockBit
Title: Data Breach at Infosys McCamish Systems LLC
Description: Unauthorized access to IMS systems, potentially compromising personal information related to deferred compensation plans affecting 52 residents.
Date Detected: 2024-02-02
Date Publicly Disclosed: 2024-02-02
Type: Data Breach
Attack Vector: Unauthorized Access
Title: Infosys McCamish Systems Data Breach
Description: Infosys McCamish Systems, LLC (IMS) experienced a data breach involving ransomware, affecting the personal information of 11,866 Maine residents. The breach was discovered on November 2, 2023, and the company began notifying individuals on June 27, 2024. Approximately 6,078,263 individuals were affected in total and identity theft protection services were offered for 24 months via Kroll.
Date Detected: 2023-11-02
Date Publicly Disclosed: 2024-06-27
Type: Data Breach
Attack Vector: Ransomware
Title: Data Breach at Infosys McCamish Systems LLC
Description: The Maine Office of the Attorney General reported a data breach involving Infosys McCamish Systems LLC (IMS) on August 13, 2024. The breach occurred between October 29, 2023, and November 2, 2023, and affected 6,078,263 individuals in total, with 11,866 residents impacted in Maine. The incident was classified as an external system breach (hacking).
Date Detected: 2024-08-13
Date Publicly Disclosed: 2024-08-13
Type: Data Breach
Attack Vector: External System Breach
Title: Ransomware Incident at Infosys McCamish Systems, LLC
Description: The California Office of the Attorney General reported that Infosys McCamish Systems, LLC experienced a ransomware incident that encrypted certain systems on November 2, 2023. The breach affected personal information, including names, of individuals; however, the specific number of individuals affected is unknown.
Date Detected: 2023-11-02
Date Publicly Disclosed: 2024-07-19
Type: ransomware
Title: Infosys McCamish Systems LLC Ransomware Attack and Data Breach (2023)
Description: Infosys McCamish Systems LLC experienced a ransomware attack in late 2023, compromising the personal, biometric, financial, and protected health information of approximately 3.7 million individuals. The company agreed to a $17.5 million class action settlement to resolve allegations of inadequate data protection and delayed breach notification.
Date Detected: 2023-10-29
Type: Data Breach
Attack Vector: Ransomware
Motivation: Financial GainData Theft
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach MCC449070624
Financial Loss: $30 million
Data Compromised: Names, Social security numbers, Medical information, Financial account information, Passport numbers
Systems Affected: certain applications and systems
Legal Liabilities: potential indemnities or damage claims
Incident : Data Breach MCC245071625
Data Compromised: Personal information, Deferred compensation plans
Systems Affected: IMS Systems
Incident : Data Breach MCC351072725
Data Compromised: Personal Information
Incident : ransomware MCC019091825
Data Compromised: Personal information (including names)
Systems Affected: certain systems (encrypted)
Identity Theft Risk: potential (personal information exposed)
Incident : Data Breach MCC4892848092325
Financial Loss: $17.5 million (settlement fund)
Data Compromised: Personal information, Biometric data, Financial information, Protected health information (phi)
Customer Complaints: Class action lawsuit filed by affected individuals
Brand Reputation Impact: Significant (class action settlement, public disclosure of breach)
Legal Liabilities: $17.5 million settlement, attorneys' fees up to $5.83 million, potential regulatory fines
Identity Theft Risk: High (3.7 million individuals affected, credit monitoring offered)
Payment Information Risk: Yes (financial information compromised)
What is the average financial loss per incident ?
Average Financial Loss: The average financial loss per incident is $7.92 million.
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, Social Security Numbers, Medical Information, Financial Account Information, Passport Numbers, , Personal Information, Deferred Compensation Plans, , Personal Information, Personal Information, Personal Information (Names), , Personal Information, Biometric Data, Financial Information, Protected Health Information (Phi) and .
Which entities were affected by each incident ?
Incident : Data Breach MCC449070624
Entity Name: Infosys McCamish Systems
Entity Type: Company
Industry: Technology
Customers Affected: over 6 million individuals
Incident : Data Breach MCC245071625
Entity Name: Infosys McCamish Systems LLC
Entity Type: Company
Industry: Financial Services
Customers Affected: 52
Incident : Data Breach MCC150072725
Entity Name: Infosys McCamish Systems, LLC
Entity Type: Company
Industry: Technology
Customers Affected: 6078263
Incident : Data Breach MCC351072725
Entity Name: Infosys McCamish Systems LLC
Entity Type: Company
Industry: Technology
Customers Affected: 6078263
Incident : ransomware MCC019091825
Entity Name: Infosys McCamish Systems, LLC
Entity Type: company
Customers Affected: unknown
Incident : Data Breach MCC4892848092325
Entity Name: Infosys McCamish Systems LLC
Entity Type: Subsidiary (BPO/IT Services)
Industry: Information Technology, Business Process Outsourcing, Insurance Services
Location: United States
Customers Affected: 3.7 million individuals
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach MCC150072725
Third Party Assistance: Kroll
Incident : Data Breach MCC4892848092325
Incident Response Plan Activated: Yes (settlement implies post-breach actions)
Third Party Assistance: Kroll Settlement Administration Llc (Claims Processing).
Remediation Measures: Class action settlement ($17.5M)Credit monitoring for affected individuals
Communication Strategy: Settlement notices to class membersPublic disclosure via settlement website
What is the company's incident response plan?
Incident Response Plan: The company's incident response plan is described as Yes (settlement implies post-breach actions).
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through Kroll, Kroll Settlement Administration LLC (claims processing), .
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach MCC449070624
Type of Data Compromised: Names, Social security numbers, Medical information, Financial account information, Passport numbers
Number of Records Exposed: over 6 million
Sensitivity of Data: high
Personally Identifiable Information: namesSocial Security numberspassport numbers
Incident : Data Breach MCC245071625
Type of Data Compromised: Personal information, Deferred compensation plans
Number of Records Exposed: 52
Incident : Data Breach MCC150072725
Type of Data Compromised: Personal Information
Number of Records Exposed: 6078263
Sensitivity of Data: High
Incident : Data Breach MCC351072725
Type of Data Compromised: Personal Information
Number of Records Exposed: 6078263
Incident : ransomware MCC019091825
Type of Data Compromised: Personal information (names)
Number of Records Exposed: unknown
Sensitivity of Data: moderate (personal identifiers)
Data Encryption: yes (ransomware encryption)
Personally Identifiable Information: yes (names)
Incident : Data Breach MCC4892848092325
Type of Data Compromised: Personal information, Biometric data, Financial information, Protected health information (phi)
Number of Records Exposed: 3,700,000
Sensitivity of Data: High (includes PHI, biometrics, financial data)
Data Exfiltration: Yes
Personally Identifiable Information: NamesAddressesSocial Security NumbersBiometric DataFinancial Account InformationHealth Records
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Class action settlement ($17.5M), Credit monitoring for affected individuals, .
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : Data Breach MCC449070624
Ransomware Strain: LockBit
Incident : ransomware MCC019091825
Data Encryption: yes
Incident : Data Breach MCC4892848092325
Data Encryption: Yes (implied by ransomware attack)
Data Exfiltration: Yes
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : ransomware MCC019091825
Regulatory Notifications: California Office of the Attorney General (reported on 2024-07-19)
Incident : Data Breach MCC4892848092325
Regulations Violated: Potential HIPAA (PHI exposure), State data breach notification laws (untimely notice),
Legal Actions: Class action lawsuit (settled for $17.5M),
How does the company ensure compliance with regulatory requirements ?
Ensuring Regulatory Compliance: The company ensures compliance with regulatory requirements through Class action lawsuit (settled for $17.5M), .
References
Where can I find more information about each incident ?
Incident : Data Breach MCC150072725
Source: Maine Office of the Attorney General
Incident : Data Breach MCC351072725
Source: Maine Office of the Attorney General
Date Accessed: 2024-08-13
Incident : ransomware MCC019091825
Source: California Office of the Attorney General
Date Accessed: 2024-07-19
Incident : Data Breach MCC4892848092325
Source: Class Action Settlement Notice (McNally v. Infosys McCamish Systems LLC)
Incident : Data Breach MCC4892848092325
Source: Kroll Settlement Administration LLC
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Montana Department of JusticeDate Accessed: 2024-02-02, and Source: Maine Office of the Attorney General, and Source: Maine Office of the Attorney GeneralDate Accessed: 2024-08-13, and Source: California Office of the Attorney GeneralDate Accessed: 2024-07-19, and Source: Class Action Settlement Notice (McNally v. Infosys McCamish Systems LLC), and Source: Kroll Settlement Administration LLC.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Data Breach MCC4892848092325
Investigation Status: Settled (class action lawsuit resolved)
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Settlement Notices To Class Members and Public Disclosure Via Settlement Website.
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident ?
Incident : Data Breach MCC4892848092325
Stakeholder Advisories: Settlement Notices Sent To 3.7M Affected Individuals.
Customer Advisories: Credit monitoring offered (2 years, $1M identity theft insurance)Cash payments up to $6,000 for documented losses$30 residual cash payment per claimant
What advisories does the company provide to stakeholders and customers following an incident ?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: were Settlement Notices Sent To 3.7M Affected Individuals, Credit Monitoring Offered (2 Years, $1M Identity Theft Insurance), Cash Payments Up To $6,000 For Documented Losses, $30 Residual Cash Payment Per Claimant and .
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Data Breach MCC4892848092325
High Value Targets: Personal Data, Biometric Data, Financial Data, Phi,
Data Sold on Dark Web: Personal Data, Biometric Data, Financial Data, Phi,
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Data Breach MCC4892848092325
Root Causes: Inadequate Data Protection Measures, Delayed Breach Notification,
Corrective Actions: $17.5M Settlement Fund, Credit Monitoring For Affected Individuals, Legal Compliance Improvements (Implied),
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Kroll, Kroll Settlement Administration Llc (Claims Processing), .
What corrective actions has the company taken based on post-incident analysis ?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: $17.5M Settlement Fund, Credit Monitoring For Affected Individuals, Legal Compliance Improvements (Implied), .
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an LockBit.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2024-02-02.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2024-07-19.
Impact of the Incidents
What was the highest financial loss from an incident ?
Highest Financial Loss: The highest financial loss from an incident was $30 million.
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were names, Social Security numbers, medical information, financial account information, passport numbers, , Personal Information, Deferred Compensation Plans, , Personal Information, Personal Information, personal information (including names), , Personal Information, Biometric Data, Financial Information, Protected Health Information (PHI) and .
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was IMS Systems and .
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was Kroll, kroll settlement administration llc (claims processing), .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Social Security numbers, passport numbers, Deferred Compensation Plans, medical information, names, Protected Health Information (PHI), Biometric Data, personal information (including names), Personal Information, Financial Information and financial account information.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 9.7M.
Regulatory Compliance
What was the most significant legal action taken for a regulatory violation ?
Most Significant Legal Action: The most significant legal action taken for a regulatory violation was Class action lawsuit (settled for $17.5M), .
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Kroll Settlement Administration LLC, Montana Department of Justice, Maine Office of the Attorney General, Class Action Settlement Notice (McNally v. Infosys McCamish Systems LLC) and California Office of the Attorney General.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Settled (class action lawsuit resolved).
Stakeholder and Customer Advisories
What was the most recent stakeholder advisory issued ?
Most Recent Stakeholder Advisory: The most recent stakeholder advisory issued was Settlement notices sent to 3.7M affected individuals, .
What was the most recent customer advisory issued ?
Most Recent Customer Advisory: The most recent customer advisory issued were an Credit monitoring offered (2 years, $1M identity theft insurance)Cash payments up to $6 and000 for documented losses$30 residual cash payment per claimant.
.png)
Latest Global CVEs (Not Company-Specific)
Description
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Versions 3.5.4 and below contain a Stored Cross-Site Scripting (XSS) vulnerability in the /WeGIA/html/geral/configurar_senhas.php endpoint. The application does not sanitize user-controlled data before rendering it inside the employee selection dropdown. The application retrieves employee names from the database and injects them directly into HTML <option> elements without proper escaping. This issue is fixed in version 3.5.5.
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Description
ZITADEL is an open-source identity infrastructure tool. Versions 4.0.0-rc.1 through 4.7.0 are vulnerable to DOM-Based XSS through the Zitadel V2 logout endpoint. The /logout endpoint insecurely routes to a value that is supplied in the post_logout_redirect GET parameter. As a result, unauthenticated remote attacker can execute malicious JS code on Zitadel users’ browsers. To carry out an attack, multiple user sessions need to be active in the same browser, however, account takeover is mitigated when using Multi-Factor Authentication (MFA) or Passwordless authentication. This issue is fixed in version 4.7.1.
Risk Information
cvss3
Base: 8.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N
Description
ZITADEL is an open-source identity infrastructure tool. Versions 4.7.0 and below are vulnerable to an unauthenticated, full-read SSRF vulnerability. The ZITADEL Login UI (V2) treats the x-zitadel-forward-host header as a trusted fallback for all deployments, including self-hosted instances. This allows an unauthenticated attacker to force the server to make HTTP requests to arbitrary domains, such as internal addresses, and read the responses, enabling data exfiltration and bypassing network-segmentation controls. This issue is fixed in version 4.7.1.
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
Description
NiceGUI is a Python-based UI framework. Versions 3.3.1 and below are vulnerable to directory traversal through the App.add_media_files() function, which allows a remote attacker to read arbitrary files on the server filesystem. This issue is fixed in version 3.4.0.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions are vulnerable to authentication bypass when the authentication type is set to "webserver." When providing an Authorization header with an arbitrary value, a session is associated with the target user regardless of valid credentials. This issue is fixed in versions 16.0.44 and 17.0.23.
Risk Information
cvss4
Base: 9.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/FreePBX/framework/commit/04224253156543cd9932b90458660b2f19fc0e35#diff-72f14a52840a61504a8e03cd195035b44e488aecd634b001bc6412a04bdc940bR20-R50
- https://github.com/FreePBX/security-reporting/security/advisories/GHSA-9jvh-mv6x-w698
- https://www.freepbx.org/watch-what-we-do-with-security-fixes-%f0%9f%91%80
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=infosys-bpm' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
