SeaChange International

SeaChange International operates as a provider of video-on-demand and streaming platform technologies, delivering solutions that enable the distribution of digital video content. The company's services support major clients within the media and telecommunications sectors, including established entities such as the BBC and Verizon. This positions SeaChange within the infrastructure layer of the streaming economy, supplying the technological backbone for content delivery to consumers. Its business model revolves around enterprise-level software and services, indicating a focus on business-to-business transactions rather than direct consumer engagement. The nature of its offerings places it within the broader information technology and media technology industries, where reliability and security are critical for client operations. Serving high-profile broadcasters and network providers suggests a competency in handling large-scale, complex deployment requirements. The company's United States headquarters situates it within a major global market for technology development and media innovation.

The 2020 incident involving the Sodinokibi (REvil) ransomware group provides specific evidence of SeaChange's operational context and the sensitivity of data it handles. Attackers exfiltrated and subsequently leaked internal corporate documents, including a bank statement, insurance certificates, and personal identification like a driver's license. Critically, the leaked data also contained a cover letter for a proposal related to the Pentagon, demonstrating the company's involvement in projects with direct ties to national defense contracting. This breach underscores that SeaChange's clientele extends into sectors with stringent security and confidentiality requirements. The ransomware group's actions, including public data leakage to coerce payment, highlight the company as a target for financially motivated cybercrime due to the perceived value of its proprietary and client-related information. SeaChange's reported non-response to breach inquiries and the Department of Defense's declination to comment further illustrate the discreet and often non-public nature of such cybersecurity incidents within the contractor ecosystem. The event confirms that the company processes and stores data of sufficient sensitivity to be targeted by sophisticated ransomware operations.