The INC Ransomware group has allegedly targeted Marlborough Partners, a prominent independent investment advisory firm headquartered in London, United Kingdom. The cybercriminal group claims to have exfiltrated 2 terabytes of confidential data from the firm’s systems and has begun leaking the information on its dark web portal. Marlborough Partners is a significant player in the European financial sector, providing debt advisory and capital-raising services for private equity, corporate, and public clients.
The alleged breach appears to be substantial, with screenshots shared by the attackers suggesting a wide range of sensitive information has been compromised. The leaked data purportedly includes highly confidential documents related to corporate strategy, private debt investments, and detailed financial contracts. This incident could have significant repercussions for the firm and its clients, given the sensitive nature of financial advisory services that involve mergers, acquisitions, and capital structuring.
Among the allegedly leaked files, evidence points to the exposure of internal company and client data. Specific data types that have been compromised reportedly include:
- Completed project archives
- Confidential client presentations and draft agreements
- Detailed spreadsheets of financial deals, including revenue and EBITDA information
- Internal spreadsheets containing usernames and passwords for various corporate services
- Contracts and financial agreements with numerous European companies
