DXC subsidiary hit by ransomware attack
Some customers with the insurance-based company Xchanging were unable to access IT services


Global IT services provider DXC Technology has confirmed that its subsidiary managed service business, Xchanging, was recently targeted by a ransomware attack.
The company is confident that the attack was isolated to the confines of the Xchanging network, with no data that belongs to the managed services subsidiary for the insurance sector compromised or stolen.
Little information on the timescale of the attack or the scale of resultant disruption has been offered by DXC, but the company confirmed it implemented a series of containment and remediation measures to resolve the situation.
DXC is also working with affected customers to restore access to their operating environment as quickly as possible. This is in addition to a continued dialogue with law enforcement and cyber security agencies.
The company assists global firms with the smooth running of mission-critical systems and operations while also engaging in digital transformation endeavours, and ensuring security and scale across several types of cloud environment. Prominent customers include DreamWorks Animation, Aviva and the NHS.
Xchanging, meanwhile, is a business process and technology services provider and systems integrator, headquartered in London, with customers exclusively in the insurance sector.
Ransomware has been on the rise in recent months in years, causing disruption for a number of high profile targets of late, including Japanese car manufacturer Honda, in June. The ransomware attack forced the company to put manufacturing on hold in some locations.
Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ senior executives
Another key firm in the IT channel, Cognizant, suffered a large ransomware attack in April 2020, which directly involved internal systems and led to service disruptions for a handful of its clients.
The kind of ransomware that may potentially target your business also varies depending on the sector you’re in and where your business is geographically-based. In the UK, for instance, Leeds-based companies are most likely to fall victim to Rapid ransomware, while GrandCrab ransomware will be the cause for most ransomware attacks in Manchester.
What’s indisputable, however, is that ransomware threats are becoming more present, with a 195% increase in reported incidents between 2018 and 2019.

Keumars Afifi-Sabet is a writer and editor that specialises in public sector, cyber security, and cloud computing. He first joined ITPro as a staff writer in April 2018 and eventually became its Features Editor. Although a regular contributor to other tech sites in the past, these days you will find Keumars on LiveScience, where he runs its Technology section.
-
GitHub just launched a new 'mission control center' for developers to delegate tasks to AI coding agents
News The new pop-up tool from GitHub means developers need not "break their flow" to hand tasks to AI agents
-
The Allianz Life data breach just took a huge turn for the worse
News Around 1.1 million Allianz Life customers are believed to have been impacted in a recent data breach, making up the vast majority of the insurer's North American customers.
-
Average ransom payment doubles in a single quarter
News Targeted social engineering and data exfiltration have become the biggest tactics as three major ransomware groups dominate
-
BlackSuit ransomware gang taken down in latest law enforcement sting – but members have already formed a new group
News The notorious gang has seen its servers taken down and bitcoin seized, but may have morphed into a new group called Chaos
-
Google cyber researchers were tracking the ShinyHunters group’s Salesforce attacks – then realized they’d also fallen victim
News In an update to an investigation on the ShinyHunters group, Google revealed it had also been affected
-
Nearly one-third of ransomware victims are hit multiple times, even after paying hackers
News Many ransomware victims are being hit more than once, largely thanks to fragmented security tactics
-
75% of UK business leaders are willing to risk criminal penalties to pay ransoms
News A ransom payment ban is a great idea - until you're the one being targeted...
-
The Scattered Spider ransomware group is infiltrating Slack and Microsoft Teams to target vulnerable employees
News The group is using new ransomware variants and new social engineering techniques - including sneaking into corporate teleconferences
-
Hackers breached a 158 year old company by guessing an employee password – experts say it’s a ‘pertinent reminder’ of the devastating impact of cyber crime
News A Panorama documentary exposed hackers' techniques and talked to the teams trying to tackle them
-
The ransomware boom shows no signs of letting up – and these groups are causing the most chaos
News Thousands of ransomware cases have already been posted on the dark web this year