DXC Technology
| Primary URL | Location | Industry | dxc[.]com |
Country
United States of America
|
Technology
|
|---|
Profile
DXC Technology is headquartered in the United States of America. The company operates as an information technology services provider. DXC Technology maintains a subsidiary named Xchanging. Xchanging delivers technology services to clients operating in the insurance, financial services, and other industries.
On July 6, 2020, a ransomware attack targeted systems operated by Xchanging, a subsidiary of DXC Technology. The attack affected an undisclosed number of clients across the insurance, financial services, and other industries served by Xchanging. Client access to their operating environments was disrupted as a result of the incident. The ransomware activity was contained within Xchanging's network, with no evidence of data compromise or broader infrastructure spread. Remediation efforts restored services for most affected customers, while work continued on the remaining cases. DXC Technology engaged law enforcement and authorities to support the investigation. The company stated that the financial impact of the attack was not material to its overall position. No ransomware group claimed responsibility for the incident, and no specific malware details were disclosed publicly.
In January 2010, a major IT services provider was compromised by Chinese state-sponsored hackers. The attackers were identified as the group known as APT10. Using the compromised access, the actors exfiltrated sensitive data over several years. The exfiltrated information included intellectual property and strategic data intended to advance economic interests. Despite detection efforts and the existence of a multinational cybersecurity agreement, the campaign persisted. The persistence was attributed to vulnerabilities in shared cloud environments and insufficient information sharing between service providers and affected organizations. The incident highlighted systemic risks associated with third-party IT outsourcing arrangements. Organizations that were compromised often remained unaware of the breach or the full extent of the data losses incurred.