Iron Mountain hit by ransomware attack
Incident
Summary
Hide ▲
Show ▼
Iron Mountain confirmed an unauthorized access incident in which a compromised login credential reached one folder on a public-facing file-sharing site, limiting the exposure to mostly marketing materials. The company said no other systems were breached, no ransomware or malware was involved, and no customer confidential or sensitive information was exposed. The narrower scope matters because it shows a contained credential-based intrusion rather than the broader theft claim made by the extortion group.
Related Happenings
Wyden urges FTC probe of Microsoft cybersecurity practices
Public Sector Action
First: 11.09.2025 17:51
Last: 11.09.2025 17:51
Sources 1
About this happening:
On **2025-09-11**, **U.S. Senator Ron Wyden** urged the **FTC** to probe **Microsoft** over alleged **gross cybersecurity negligence**, warning that the company's defaults and **R...
Wyden urges FTC probe of Microsoft cybersecurity practices
Public Sector ActionAbout this happening: On **2025-09-11**, **U.S. Senator Ron Wyden** urged the **FTC** to probe **Microsoft** over alleged **gross cybersecurity negligence**, warning that the company's defaults and **R...
Ascension hit by ransomware attack linked to Black Basta
Incident
First: 11.09.2025 17:51
Last: 11.09.2025 17:51
Sources 1
About this happening:
**Ascension** suffered a **Black Basta** ransomware attack that stole personal and medical information tied to **nearly 5.6 million individuals**. The intrusion also disrupted acc...
Ascension hit by ransomware attack linked to Black Basta
IncidentAbout this happening: **Ascension** suffered a **Black Basta** ransomware attack that stole personal and medical information tied to **nearly 5.6 million individuals**. The intrusion also disrupted acc...
Timeline
-
03.02.2026 18:49 2 articles · 3mo ago
Everest claims Iron Mountain data theft, company says scope was limited
Initial DisclosureEverest claims it stole 1.4 TB of Iron Mountain internal company documents, but Iron Mountain says attackers used a single compromised login credential to access one folder on a public-facing file-sharing site containing mostly marketing materials. Iron Mountain says no customer confidential or sensitive information was involved, no ransomware or malware was deployed, and no other Iron Mountain systems were breached.
Show sources
- Iron Mountain: Data breach mostly limited to marketing materials — www.bleepingcomputer.com — 03.02.2026 18:49
- Iron Mountain: Data breach mostly limited to marketing materials — www.bleepingcomputer.com — 03.02.2026 18:49