Cyber Incident Victim: Advanced Technology Ventures

Advanced Technology Ventures (ATV), a Silicon Valley-based venture capital and private equity firm managing over $1.8 billion in capital across IT, healthcare, and clean-tech sectors, experienced a ransomware attack discovered in July 2021. The firm’s investigation confirmed that attackers encrypted and exfiltrated data from two servers containing financial information. The compromised data included sensitive personal details of individual investors, specifically names, email addresses, phone numbers, and Social Security Numbers. ATV formally disclosed the incident via a notification letter to the Maine Attorney General’s office, revealing that 300 individuals were impacted by the breach. The firm stated it detected the ransomware infection during July but did not specify the exact date of initial intrusion or the ransomware variant involved. No evidence of fraud or misuse of the stolen data had been identified at the time of disclosure.

In response to the incident, ATV implemented immediate containment measures including mandatory credential resets for all employees and enhanced endpoint protection across its corporate network. The company emphasized these steps as preventive safeguards against future attacks but did not disclose whether a ransom was demanded or paid. The breach exclusively affected investor data stored on the compromised servers, with no mention of impacts to portfolio companies or internal operational systems. ATV’s public communication focused on the theft of personally identifiable information rather than broader operational disruption, indicating the attack’s primary objective was data exfiltration coupled with encryption for extortion. The firm concluded its notification by reiterating its remediation efforts while maintaining there was no ongoing risk to investor assets beyond the exposed personal information.